$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer File: 00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer (raw, json) Hash identifier: Vj1/8obzTDgc+/mX3JQ38j9MnFzp2Xd7o6vZqdipgjs= Subject key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 66B279EF3E2655B2D9FF6D0016D2D1DDA90773F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft caRepository: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Jun 2025 19:02:34 +0000 Certificate not after: Tue 02 Jun 2026 19:07:34 +0000 Subordinate resources: IP: 103.119.116.0/22 IP: 2403:4340::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b2:79:ef:3e:26:55:b2:d9:ff:6d:00:16:d2:d1:dd:a9:07:73:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 19:02:34 2025 GMT Not After : Jun 2 19:07:34 2026 GMT Subject: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:95:c3:f8:9d:8a:06:32:f4:06:74:e7:1e:4d: 28:94:f3:bd:77:86:cf:4d:7b:c2:5b:32:25:08:d8: 95:2f:71:57:83:b0:ee:d1:39:c9:1a:d6:df:4b:13: 2c:0c:69:75:7e:68:53:59:86:41:4d:65:4d:cd:25: 38:d8:e8:60:49:be:1b:c0:5f:a0:e7:85:a1:ec:0b: 41:f0:5e:68:e6:9e:39:ca:48:bb:7e:76:1f:dc:42: 50:78:e7:b3:24:c3:2d:04:42:d4:93:a3:56:15:db: 4b:5a:65:b1:24:b7:1e:2a:ec:b2:ae:c5:dd:0e:66: fe:ff:47:34:78:85:a0:f6:5c:3e:e4:4c:95:40:63: 78:da:73:fa:bd:0e:62:a6:f0:87:76:6f:1a:1a:6d: 9a:a3:4a:cb:92:df:3c:df:da:21:5d:75:64:09:a7: dd:24:a7:04:fe:b5:d8:3c:20:f4:14:8c:ca:3c:20: c2:5f:f4:d2:89:49:39:cc:d5:e4:79:ff:66:5b:6e: 98:ee:6c:03:a2:85:61:0e:2a:9c:e6:e0:4a:82:b5: e3:5d:bb:7f:ac:9f:46:8b:ff:e5:6a:eb:15:e9:64: 71:5b:36:f4:be:3b:3e:a1:4f:80:8f:f6:5f:69:57: b8:cc:16:12:a2:72:43:1f:06:8a:1f:f6:ff:e7:e6: 76:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.116.0/22 IPv6: 2403:4340::/32 Signature Algorithm: sha256WithRSAEncryption 1b:0d:d5:1a:b2:ed:b4:d4:dc:22:66:90:88:7a:7b:6a:fb:88: 10:f0:36:4a:ca:26:43:67:33:1c:6d:20:58:07:ef:10:95:96: 99:f0:27:a6:29:01:03:07:ad:05:9b:7e:42:15:56:b6:a0:46: 75:9d:e0:74:e0:41:83:b4:ea:b6:e6:3f:d0:5a:d3:ed:73:c6: a4:71:05:fc:62:d4:92:7b:40:a0:2b:47:61:8d:77:81:b6:22: 41:e0:da:89:e8:85:36:3b:1f:3c:32:e8:16:8a:34:3f:91:5d: ca:ae:9f:c5:42:7e:81:01:6b:ea:46:1c:ea:7d:c9:83:71:90: a3:70:8d:b8:2a:5c:91:b3:70:8b:b7:eb:98:5f:1b:90:cb:f8: 21:8d:d9:45:d4:ea:c6:35:25:ae:1a:be:63:55:07:9c:3c:20: b2:04:c0:19:d9:70:0f:ef:c4:36:77:ed:ef:6f:41:6e:c2:ec: d0:81:bc:48:60:0c:2f:2e:14:ca:8e:e2:3f:b8:f4:7a:4a:16: 88:3f:24:dc:e8:7e:15:71:81:1e:fa:aa:06:52:a5:7f:3b:6b: a8:aa:51:2a:6d:74:fe:e6:93:98:d5:53:d7:15:96:c1:68:0e: 47:13:3c:ae:38:47:94:6c:d8:49:39:b4:14:36:06:5e:e3:f7: ff:59:85:8d -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUZrJ57z4mVbLZ/20AFtLR3akHc/cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzE5MDIzNFoX DTI2MDYwMjE5MDczNFowMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQw QjhBRkU4QzdEOTEzQjY4NkQ5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6Vw/idigYy9AZ05x5NKJTzvXeGz017wlsyJQjYlS9xV4Ow7tE5yRrW30sT LAxpdX5oU1mGQU1lTc0lONjoYEm+G8BfoOeFoewLQfBeaOaeOcpIu352H9xCUHjn syTDLQRC1JOjVhXbS1plsSS3Hirssq7F3Q5m/v9HNHiFoPZcPuRMlUBjeNpz+r0O Yqbwh3ZvGhptmqNKy5LfPN/aIV11ZAmn3SSnBP612Dwg9BSMyjwgwl/00olJOczV 5Hn/ZltumO5sA6KFYQ4qnObgSoK14127f6yfRov/5WrrFelkcVs29L47PqFPgI/2 X2lXuMwWEqJyQx8Gih/2/+fmdjcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFACsZeYeSRMmjF0Liv6MfZE7aG2fMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYw LTNiMTQtNGE2ZC1iMzBmLTc1Mzc5Y2IyZWJjZS8wLzAwQUM2NUU2MUU0OTEzMjY4 QzVEMEI4QUZFOEM3RDkxM0I2ODZEOUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnd3QwDQQCAAIwBwMFACQDQ0AwDQYJKoZIhvcNAQELBQADggEBABsN1Rqy7bTU 3CJmkIh6e2r7iBDwNkrKJkNnMxxtIFgH7xCVlpnwJ6YpAQMHrQWbfkIVVragRnWd 4HTgQYO06rbmP9Ba0+1zxqRxBfxi1JJ7QKArR2GNd4G2IkHg2onohTY7Hzwy6BaK ND+RXcqun8VCfoEBa+pGHOp9yYNxkKNwjbgqXJGzcIu365hfG5DL+CGN2UXU6sY1 Ja4avmNVB5w8ILIEwBnZcA/vxDZ37e9vQW7C7NCBvEhgDC8uFMqO4j+49HpKFog/ JNzofhVxgR76qgZSpX87a6iqUSptdP7mk5jVU9cVlsFoDkcTPK44R5Rs2Ek5tBQ2 Bl7j9/9ZhY0= -----END CERTIFICATE-----Generated at Tue Jun 3 23:10:20 2025 by rpki-client