$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.cer File: F38B6752412BBA5BA6A00E0BD400D0920CA01E22.cer (raw, json) Hash identifier: eyduTUxg1Yu8Fc510/7l/QOh2xsS4igi7C5QEIiVYmE= Subject key identifier: F3:8B:67:52:41:2B:BA:5B:A6:A0:0E:0B:D4:00:D0:92:0C:A0:1E:22 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5443D3D02566929C643EA60F0B20A2CA39EADE90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.mft caRepository: rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 04 Mar 2025 14:21:40 +0000 Certificate not after: Tue 03 Mar 2026 14:26:40 +0000 Subordinate resources: IP: 157.15.212.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:43:d3:d0:25:66:92:9c:64:3e:a6:0f:0b:20:a2:ca:39:ea:de:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 4 14:21:40 2025 GMT Not After : Mar 3 14:26:40 2026 GMT Subject: CN=F38B6752412BBA5BA6A00E0BD400D0920CA01E22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9a:e1:37:9b:7c:54:ed:c1:b4:7f:4d:a0:a7: 4b:b4:cf:dd:36:88:97:aa:0c:e1:ea:36:da:69:18: 4f:94:e2:a2:5e:57:d7:ce:fc:23:20:a8:6b:06:78: 4c:54:31:66:aa:34:4e:92:89:00:47:0d:75:d1:d8: d8:72:04:1c:d9:77:1e:ca:49:05:b4:e8:de:ea:2b: 2f:69:99:dc:20:f7:17:f5:0a:4b:79:93:24:31:d9: 53:81:36:bd:79:aa:60:f6:98:67:f8:83:19:f6:a9: d2:19:d9:49:49:22:f3:82:49:5a:80:50:d9:c5:5c: 71:d1:79:90:8a:cf:d1:70:9d:3e:3f:eb:31:5d:ec: e5:47:bd:5d:0a:cc:67:e3:d3:73:88:4c:5b:e0:17: 65:aa:1e:a4:b7:5b:59:f2:eb:00:72:91:74:28:85: ca:89:39:51:05:85:b8:71:c6:cc:b2:a7:12:98:13: 25:4d:f4:60:c7:e8:5f:23:10:68:2f:1d:fa:94:72: 12:32:b7:5b:13:7d:ed:33:56:30:14:2e:ef:d7:5e: cf:b9:f3:91:2f:3a:1e:79:15:98:fb:ec:ff:29:5e: 2a:de:ef:50:77:6c:d6:c4:54:3e:fe:a1:e7:90:89: 6f:29:53:d6:c3:a2:ce:ea:01:23:80:8c:d3:c5:74: 4b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F3:8B:67:52:41:2B:BA:5B:A6:A0:0E:0B:D4:00:D0:92:0C:A0:1E:22 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fd1fc1a2-ee77-405f-9e31-adc6dfc9b74c/0/F38B6752412BBA5BA6A00E0BD400D0920CA01E22.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.212.0/24 Signature Algorithm: sha256WithRSAEncryption 91:25:20:95:34:6f:a0:ae:19:6a:0d:b6:ee:e6:7e:b7:d1:6b: 9d:eb:0c:a3:29:e0:46:a4:1e:35:82:59:a8:91:4d:c6:16:72: 1d:e0:26:a9:f3:d6:c7:41:c3:16:7e:97:91:31:91:ee:61:51: 4e:3f:68:41:2c:a9:5d:1b:91:d5:8c:e8:2c:e2:14:30:5d:8d: 73:68:47:27:a6:64:f0:3c:81:c3:30:48:50:0a:a8:b2:5a:23: 26:a7:de:35:f3:9b:7b:99:74:94:9e:d1:9d:54:43:91:35:61: b1:4b:9a:bf:a3:e2:90:e8:7f:43:a9:f6:1c:f1:7b:ba:38:2b: 31:1a:bf:b9:1c:8c:58:68:1f:47:7f:76:94:09:cd:22:5f:52: 6e:a8:0b:6b:33:67:b2:c0:b3:03:74:47:fc:36:14:7e:55:a4: 91:29:bb:67:e2:c6:06:58:63:25:60:34:fd:6f:e9:e3:c2:0d: 9e:66:9d:53:e9:22:70:c3:2e:e8:aa:b1:e3:92:09:63:eb:a4: 27:a2:a2:a0:81:d2:37:6d:a0:f7:01:43:d8:4d:de:b3:f2:59: b2:1a:67:37:29:00:c0:81:79:78:1a:cb:a4:06:eb:aa:67:c2: 83:cd:21:26:ca:49:17:5e:9e:45:76:ee:29:0a:73:0d:e2:03: fd:f1:cb:12 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVEPT0CVmkpxkPqYPCyCiyjnq3pAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDMwNDE0MjE0MFoX DTI2MDMwMzE0MjY0MFowMzExMC8GA1UEAxMoRjM4QjY3NTI0MTJCQkE1QkE2QTAw RTBCRDQwMEQwOTIwQ0EwMUUyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSa4TebfFTtwbR/TaCnS7TP3TaIl6oM4eo22mkYT5Tiol5X1878IyCoawZ4 TFQxZqo0TpKJAEcNddHY2HIEHNl3HspJBbTo3uorL2mZ3CD3F/UKS3mTJDHZU4E2 vXmqYPaYZ/iDGfap0hnZSUki84JJWoBQ2cVccdF5kIrP0XCdPj/rMV3s5Ue9XQrM Z+PTc4hMW+AXZaoepLdbWfLrAHKRdCiFyok5UQWFuHHGzLKnEpgTJU30YMfoXyMQ aC8d+pRyEjK3WxN97TNWMBQu79dez7nzkS86HnkVmPvs/yleKt7vUHds1sRUPv6h 55CJbylT1sOizuoBI4CM08V0S2sCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPOLZ1JBK7pbpqAOC9QA0JIMoB4iMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mZDFmYzFhMi1lZTc3LTQwNWYtOWUzMS1hZGM2ZGZjOWI3NGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZkMWZjMWEy LWVlNzctNDA1Zi05ZTMxLWFkYzZkZmM5Yjc0Yy8wL0YzOEI2NzUyNDEyQkJBNUJB NkEwMEUwQkQ0MDBEMDkyMENBMDFFMjIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdD9QwDQYJKoZIhvcNAQELBQADggEBAJElIJU0b6CuGWoNtu7mfrfRa53rDKMp 4EakHjWCWaiRTcYWch3gJqnz1sdBwxZ+l5Exke5hUU4/aEEsqV0bkdWM6CziFDBd jXNoRyemZPA8gcMwSFAKqLJaIyan3jXzm3uZdJSe0Z1UQ5E1YbFLmr+j4pDof0Op 9hzxe7o4KzEav7kcjFhoH0d/dpQJzSJfUm6oC2szZ7LAswN0R/w2FH5VpJEpu2fi xgZYYyVgNP1v6ePCDZ5mnVPpInDDLuiqseOSCWPrpCeioqCB0jdtoPcBQ9hN3rPy WbIaZzcpAMCBeXgay6QG66pnwoPNISbKSRdenkV27ikKcw3iA/3xyxI= -----END CERTIFICATE-----Generated at Mon Apr 7 04:12:13 2025 by rpki-client