$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.cer File: EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.cer (raw, json) Hash identifier: MrP625qCoawIGG0Q1EaHPiOHjP2+TjhQLLNkE5ToNwU= Subject key identifier: EF:7C:A8:2C:5B:45:FD:41:2D:E8:92:CB:6D:A7:A8:CA:15:C8:5B:17 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 75915980EBA2119F0EC56B3A2737C727B9CFA9EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.mft caRepository: rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 17 Apr 2026 23:48:39 +0000 Certificate not after: Fri 16 Apr 2027 23:53:39 +0000 Subordinate resources: IP: 157.66.86.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 13:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:91:59:80:eb:a2:11:9f:0e:c5:6b:3a:27:37:c7:27:b9:cf:a9:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 17 23:48:39 2026 GMT Not After : Apr 16 23:53:39 2027 GMT Subject: CN=EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:45:77:b6:d7:1e:1a:05:b0:dd:47:cc:b3:ff: 42:99:82:e3:5d:f4:76:24:bf:96:25:66:05:ac:67: 30:67:33:ef:8c:aa:6b:24:54:02:19:7e:5a:c3:94: 08:16:19:2d:ed:ff:55:2a:3e:87:ab:70:6f:7d:1f: 79:39:43:5c:cc:82:29:ad:1b:8b:e2:21:12:0f:f3: be:bc:12:7a:95:ab:e4:d9:9c:f0:6d:49:55:e2:e4: e5:62:6d:0c:4d:eb:be:2d:9f:cc:73:bc:86:63:77: 64:8f:95:ef:8d:ac:ca:22:c3:37:04:16:41:e9:97: 21:a9:b0:b1:87:f0:27:eb:74:ae:68:ca:70:d3:0c: 5b:d2:9b:02:bf:ae:a1:72:8f:09:6a:e2:9b:5d:dd: 4b:70:cb:75:c6:67:b9:f9:6d:fe:d6:a8:1e:37:e0: 93:52:b3:b9:bb:d3:a1:a6:6c:9a:4f:7c:dd:5b:cf: b5:33:da:fb:40:fb:bb:c6:da:8f:a1:f4:3d:4a:ef: 49:73:14:54:85:4d:47:ff:23:7b:6b:53:54:08:e9: 01:3b:54:9f:8a:da:7c:48:f0:57:5b:8f:56:f8:52: 8d:b7:6a:10:18:8c:03:fb:c1:d3:b3:59:f2:f7:88: 3c:1c:19:ca:4c:40:da:d0:ab:0f:fa:67:7a:5b:ff: 82:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: EF:7C:A8:2C:5B:45:FD:41:2D:E8:92:CB:6D:A7:A8:CA:15:C8:5B:17 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f87dd597-40cd-409b-b3c5-2852ce014889/0/EF7CA82C5B45FD412DE892CB6DA7A8CA15C85B17.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.86.0/23 Signature Algorithm: sha256WithRSAEncryption 34:a8:a3:8e:94:da:33:c4:d0:8c:6c:43:f9:f5:44:fd:ef:0a: 59:d3:e1:21:2a:49:84:a8:f7:c0:8c:05:f4:26:3d:57:18:26: 40:20:81:7e:83:d6:0b:1d:b5:1f:34:8a:9c:b2:e9:92:23:20: 72:88:32:df:9c:2e:b2:71:85:10:14:d1:fc:9b:18:c5:ce:2b: 67:59:71:08:e7:d8:31:ad:65:0f:af:46:c3:98:6f:e3:2b:58: 65:0b:13:25:f3:02:f2:2a:18:19:d6:f6:63:7f:6a:ab:0f:8f: ad:5a:1b:4a:16:f3:51:e9:7d:ff:8c:d8:da:ee:aa:ab:6e:bc: 5f:e4:2a:89:e9:1b:fd:6f:b8:4f:9f:01:94:87:81:cb:b1:e4: 48:58:d0:fc:50:21:34:b3:85:e2:62:de:55:e1:18:11:86:3e: aa:12:fb:6f:f9:55:0f:cb:3f:c6:66:8c:8e:57:d7:a1:d0:25: f1:8f:69:f7:a8:48:db:52:bc:d9:36:d9:82:4b:48:1e:16:22: 75:ba:26:d7:3f:4d:28:89:6d:5f:86:64:08:d1:be:17:4a:d8: 99:a6:18:64:5b:92:53:01:50:ba:7b:d5:60:de:2f:56:d8:3d: be:a4:b9:42:86:1b:16:d6:78:91:48:48:87:fa:e4:7a:cc:05: c3:7d:3c:71 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdZFZgOuiEZ8OxWs6JzfHJ7nPqeowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDQxNzIzNDgzOVoX DTI3MDQxNjIzNTMzOVowMzExMC8GA1UEAxMoRUY3Q0E4MkM1QjQ1RkQ0MTJERTg5 MkNCNkRBN0E4Q0ExNUM4NUIxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9Fd7bXHhoFsN1HzLP/QpmC4130diS/liVmBaxnMGcz74yqayRUAhl+WsOU CBYZLe3/VSo+h6twb30feTlDXMyCKa0bi+IhEg/zvrwSepWr5Nmc8G1JVeLk5WJt DE3rvi2fzHO8hmN3ZI+V742syiLDNwQWQemXIamwsYfwJ+t0rmjKcNMMW9KbAr+u oXKPCWrim13dS3DLdcZnuflt/taoHjfgk1KzubvToaZsmk983VvPtTPa+0D7u8ba j6H0PUrvSXMUVIVNR/8je2tTVAjpATtUn4rafEjwV1uPVvhSjbdqEBiMA/vB07NZ 8veIPBwZykxA2tCrD/pnelv/gi0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFO98qCxbRf1BLeiSy22nqMoVyFsXMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mODdkZDU5Ny00MGNkLTQwOWItYjNjNS0yODUyY2UwMTQ4ODkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4N2RkNTk3 LTQwY2QtNDA5Yi1iM2M1LTI4NTJjZTAxNDg4OS8wL0VGN0NBODJDNUI0NUZENDEy REU4OTJDQjZEQTdBOENBMTVDODVCMTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQlYwDQYJKoZIhvcNAQELBQADggEBADSoo46U2jPE0IxsQ/n1RP3vClnT4SEq SYSo98CMBfQmPVcYJkAggX6D1gsdtR80ipyy6ZIjIHKIMt+cLrJxhRAU0fybGMXO K2dZcQjn2DGtZQ+vRsOYb+MrWGULEyXzAvIqGBnW9mN/aqsPj61aG0oW81Hpff+M 2NruqqtuvF/kKonpG/1vuE+fAZSHgcux5EhY0PxQITSzheJi3lXhGBGGPqoS+2/5 VQ/LP8ZmjI5X16HQJfGPafeoSNtSvNk22YJLSB4WInW6Jtc/TSiJbV+GZAjRvhdK 2JmmGGRbklMBULp71WDeL1bYPb6kuUKGGxbWeJFISIf65HrMBcN9PHE= -----END CERTIFICATE-----Generated at Wed Apr 22 03:34:50 2026 by rpki-client