$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer File: FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer (raw, json) Hash identifier: tsHh/I22XBuV8vX+CocoASHeR3Il66OzPfLrR036Z54= Subject key identifier: FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 590979A70AB21AE05A8A618B305AFA0CFDEEB14E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.mft caRepository: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 04 Mar 2025 17:11:33 +0000 Certificate not after: Tue 03 Mar 2026 17:16:33 +0000 Subordinate resources: IP: 157.20.222.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:09:79:a7:0a:b2:1a:e0:5a:8a:61:8b:30:5a:fa:0c:fd:ee:b1:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 4 17:11:33 2025 GMT Not After : Mar 3 17:16:33 2026 GMT Subject: CN=FE79E56CBE99C773CD721DF7AB0E5CA2809D0739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:66:95:e0:40:f4:b5:4b:43:b1:8d:3d:db: 4b:0d:7e:bd:a5:3c:6e:29:41:a0:27:60:99:49:c7: 49:f9:f9:a6:8a:3f:3f:61:11:38:1f:e8:b6:c9:67: f4:df:46:e4:c3:43:27:a0:67:ae:56:b0:28:c1:fd: 2c:b3:53:84:44:66:4c:4e:2f:cf:85:e4:45:96:75: 69:36:78:b6:f3:80:d6:99:9a:af:4c:d5:e4:ac:4c: c8:fd:3b:62:26:8a:1a:34:1b:ee:25:7f:58:e9:a5: fc:92:ce:26:00:03:9f:25:2c:6d:a8:e5:44:6d:92: b4:16:aa:19:a8:3a:2b:ac:45:2f:1f:f6:df:e4:14: 2a:61:1e:ca:3a:f4:f2:75:fe:e5:5a:c6:e7:14:87: 00:ed:bd:cb:f0:96:7a:0d:47:3a:da:50:2a:d2:10: e1:aa:0d:d6:de:77:de:04:c9:a1:31:5b:b3:d9:71: 55:5d:44:8b:e6:5d:47:76:6d:87:f0:ac:fd:d8:c0: 31:44:73:a4:73:30:f6:2e:60:18:c7:3f:f9:b3:fb: 99:3f:ea:b7:3d:ee:31:31:76:a5:7d:45:b5:a4:3a: 80:1d:d2:98:4d:ed:b0:31:ec:47:78:3f:0b:56:01: 9b:a0:6e:92:08:9b:80:fc:9d:3d:f0:91:2c:5a:5b: 8f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.222.0/23 Signature Algorithm: sha256WithRSAEncryption 94:9b:98:ac:c4:47:1a:04:2d:df:60:60:c8:fd:0f:44:be:e4: 4a:5f:eb:ab:f7:1f:bb:26:17:92:e3:e7:68:9c:45:f8:db:9d: fb:35:ba:be:ce:d7:25:71:80:2c:b5:bf:cb:44:f7:6b:80:88: 38:50:bb:4c:1c:9c:8c:a7:92:4e:71:93:b1:b7:72:b2:a4:bc: 2f:2f:19:ba:b5:f3:81:0a:21:ea:e8:dd:26:3b:1f:74:3e:7b: 4e:2b:2d:3c:02:8e:a2:8e:e7:16:ed:c1:3a:b5:5d:28:26:01: 74:b2:75:43:d6:a2:6c:ae:31:f0:d9:ac:b5:71:bd:10:f0:3d: 14:10:42:2e:49:93:45:1d:92:dc:84:b8:9e:80:b5:09:e0:5a: ba:0a:46:f2:44:6c:85:4e:cb:b0:f7:3c:e5:73:ad:95:57:36: 2b:63:04:0a:fa:b8:aa:27:f5:36:a9:0e:14:43:af:26:57:07: f2:9b:e3:ae:c0:4e:4f:07:d7:dd:c0:08:ae:8b:0e:85:f7:79: c6:a1:d7:64:0f:0c:53:d6:ff:c4:35:1c:c8:7b:f0:b4:ec:a3: dc:49:88:b4:3a:58:3a:f4:38:41:e6:60:a8:fb:6f:09:4e:fb: 1f:3e:79:4a:fc:01:5a:77:8d:9c:39:b0:dd:a6:79:2e:31:d3: b4:41:90:5a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWQl5pwqyGuBaimGLMFr6DP3usU4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDMwNDE3MTEzM1oX DTI2MDMwMzE3MTYzM1owMzExMC8GA1UEAxMoRkU3OUU1NkNCRTk5Qzc3M0NENzIx REY3QUIwRTVDQTI4MDlEMDczOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALx0ZpXgQPS1S0OxjT3bSw1+vaU8bilBoCdgmUnHSfn5poo/P2EROB/otsln 9N9G5MNDJ6BnrlawKMH9LLNThERmTE4vz4XkRZZ1aTZ4tvOA1pmar0zV5KxMyP07 YiaKGjQb7iV/WOml/JLOJgADnyUsbajlRG2StBaqGag6K6xFLx/23+QUKmEeyjr0 8nX+5VrG5xSHAO29y/CWeg1HOtpQKtIQ4aoN1t533gTJoTFbs9lxVV1Ei+ZdR3Zt h/Cs/djAMURzpHMw9i5gGMc/+bP7mT/qtz3uMTF2pX1FtaQ6gB3SmE3tsDHsR3g/ C1YBm6BukgibgPydPfCRLFpbj50CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFP555Wy+mcdzzXId96sOXKKAnQc5MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMWYxNWExZC01ZGFjLTRjYzktODExYS1lNDljYjRlN2JjZTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExZjE1YTFk LTVkYWMtNGNjOS04MTFhLWU0OWNiNGU3YmNlMS8wL0ZFNzlFNTZDQkU5OUM3NzND RDcyMURGN0FCMEU1Q0EyODA5RDA3MzkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFN4wDQYJKoZIhvcNAQELBQADggEBAJSbmKzERxoELd9gYMj9D0S+5Epf66v3 H7smF5Lj52icRfjbnfs1ur7O1yVxgCy1v8tE92uAiDhQu0wcnIynkk5xk7G3crKk vC8vGbq184EKIero3SY7H3Q+e04rLTwCjqKO5xbtwTq1XSgmAXSydUPWomyuMfDZ rLVxvRDwPRQQQi5Jk0UdktyEuJ6AtQngWroKRvJEbIVOy7D3POVzrZVXNitjBAr6 uKon9TapDhRDryZXB/Kb467ATk8H193ACK6LDoX3ecah12QPDFPW/8Q1HMh78LTs o9xJiLQ6WDr0OEHmYKj7bwlO+x8+eUr8AVp3jZw5sN2meS4x07RBkFo= -----END CERTIFICATE-----Generated at Mon Apr 7 13:34:54 2025 by rpki-client