$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer File: 129AAEFC08D204E9BE5439C807FF840DC3CE57F9.cer (raw, json) Hash identifier: mnZEPUjC1FdtvIn6TTJBgNrkJYXZAZ6P4gXS7RvYdGA= Subject key identifier: 12:9A:AE:FC:08:D2:04:E9:BE:54:39:C8:07:FF:84:0D:C3:CE:57:F9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 550F4768DA861D81B6EA3C1379266212FE33737F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.mft caRepository: rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 05 Mar 2025 00:18:29 +0000 Certificate not after: Wed 04 Mar 2026 00:23:29 +0000 Subordinate resources: IP: 45.113.228.0/22 IP: 103.91.0.0/22 IP: 2001:df0:ef00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:0f:47:68:da:86:1d:81:b6:ea:3c:13:79:26:62:12:fe:33:73:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 5 00:18:29 2025 GMT Not After : Mar 4 00:23:29 2026 GMT Subject: CN=129AAEFC08D204E9BE5439C807FF840DC3CE57F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:cd:d4:5c:46:9b:51:fb:e3:c1:c1:59:98:c4: e8:67:02:26:7d:2a:e3:5a:1d:72:1c:d9:68:b5:04: 87:dc:d4:34:75:06:49:e4:89:a4:86:a1:04:9f:7c: af:95:b9:db:0f:39:b3:e9:02:9f:0c:30:b4:4b:a4: f1:e0:4f:18:03:c9:3e:b2:0a:c8:1a:d2:d3:10:63: c9:2f:2a:80:f9:bc:e5:b8:40:d6:bd:7e:56:ec:89: f7:e7:d1:8e:af:02:82:37:23:42:24:0d:ee:fd:fc: 89:c0:95:3c:b7:3b:3b:85:7f:37:e4:c2:ea:ed:d3: 34:4e:72:29:8e:2c:eb:b8:d6:fb:e1:c0:f7:11:d2: cf:12:39:85:35:5b:16:83:83:be:c2:8b:82:48:e6: e8:d0:b8:6a:b9:4c:bf:f6:59:cb:8c:82:09:ff:a8: 52:cf:a3:cc:e8:25:c1:9e:06:2a:d0:bf:b2:66:9b: 1c:69:4b:00:85:a3:83:2f:fd:e4:77:fa:04:48:8b: a5:47:69:84:8b:a9:08:b3:44:65:c3:6e:e9:4a:b8: c4:32:c3:8a:0a:f7:95:4b:1c:f5:4b:c7:34:3c:74: 0d:68:e2:61:99:73:7d:c4:53:13:13:d7:37:63:89: c9:f7:4e:f8:94:c2:ec:ba:98:3d:05:3e:f3:8a:10: 7b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 12:9A:AE:FC:08:D2:04:E9:BE:54:39:C8:07:FF:84:0D:C3:CE:57:F9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a63655f1-38b6-4415-8faf-2b5b9153e52d/0/129AAEFC08D204E9BE5439C807FF840DC3CE57F9.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.113.228.0/22 103.91.0.0/22 IPv6: 2001:df0:ef00::/48 Signature Algorithm: sha256WithRSAEncryption 98:72:eb:e0:30:b2:0b:ee:e7:a4:34:34:c2:ad:6d:5d:17:2b: 9b:93:89:7d:de:ef:65:15:c0:a5:de:2c:e2:3f:9b:8b:6f:ee: ef:a6:0e:d2:27:ed:5d:3a:00:e1:8d:ca:11:ed:a6:15:8e:2c: 39:bd:60:5d:8e:22:f3:84:9f:40:65:3b:c3:9a:77:ab:49:53: a5:96:7f:9a:24:51:e6:39:f2:96:06:74:63:7a:5d:15:8b:c4: 1b:55:91:a6:eb:9b:e8:38:ff:71:93:cc:93:da:5c:ac:8c:16: 56:14:b5:db:f8:0e:ab:94:13:31:4c:50:86:6a:3d:f7:f5:1c: 53:dd:c7:6f:85:81:b7:8b:30:66:9d:e0:31:a7:73:3d:7b:1e: 7c:98:87:2e:3c:c1:7a:9b:17:b3:34:06:3f:03:52:59:75:ef: 24:60:b9:49:66:df:12:4c:67:48:b7:1f:26:99:50:19:32:85: 41:a7:70:18:48:00:eb:af:70:07:34:66:e1:2c:fb:2f:ee:73: c5:ea:f4:87:cd:75:00:78:60:ef:dd:82:12:05:ce:96:28:92: 3a:d5:74:f8:d6:92:e4:32:de:4e:46:02:92:04:46:78:85:ae: 69:1e:8c:d9:50:96:0d:3b:3d:63:89:08:ea:13:0f:31:cd:ea: 10:19:89:a8 -----BEGIN CERTIFICATE----- MIIF3DCCBMSgAwIBAgIUVQ9HaNqGHYG26jwTeSZiEv4zc38wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMwNTAwMTgyOVoX DTI2MDMwNDAwMjMyOVowMzExMC8GA1UEAxMoMTI5QUFFRkMwOEQyMDRFOUJFNTQz OUM4MDdGRjg0MERDM0NFNTdGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJTN1FxGm1H748HBWZjE6GcCJn0q41odchzZaLUEh9zUNHUGSeSJpIahBJ98 r5W52w85s+kCnwwwtEuk8eBPGAPJPrIKyBrS0xBjyS8qgPm85bhA1r1+VuyJ9+fR jq8CgjcjQiQN7v38icCVPLc7O4V/N+TC6u3TNE5yKY4s67jW++HA9xHSzxI5hTVb FoODvsKLgkjm6NC4arlMv/ZZy4yCCf+oUs+jzOglwZ4GKtC/smabHGlLAIWjgy/9 5Hf6BEiLpUdphIupCLNEZcNu6Uq4xDLDigr3lUsc9UvHNDx0DWjiYZlzfcRTExPX N2OJyfdO+JTC7LqYPQU+84oQex0CAwEAAaOCAs8wggLLMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBKarvwI0gTpvlQ5yAf/hA3Dzlf5MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNjM2NTVmMS0zOGI2LTQ0MTUtOGZhZi0yYjViOTE1M2U1MmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MzY1NWYx LTM4YjYtNDQxNS04ZmFmLTJiNWI5MTUzZTUyZC8wLzEyOUFBRUZDMDhEMjA0RTlC RTU0MzlDODA3RkY4NDBEQzNDRTU3RjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMBIEAgABMAwD BAItceQDBAJnWwAwDwQCAAIwCQMHACABDfDvADANBgkqhkiG9w0BAQsFAAOCAQEA mHLr4DCyC+7npDQ0wq1tXRcrm5OJfd7vZRXApd4s4j+bi2/u76YO0iftXToA4Y3K Ee2mFY4sOb1gXY4i84SfQGU7w5p3q0lTpZZ/miRR5jnylgZ0Y3pdFYvEG1WRpuub 6Dj/cZPMk9pcrIwWVhS12/gOq5QTMUxQhmo99/UcU93Hb4WBt4swZp3gMadzPXse fJiHLjzBepsXszQGPwNSWXXvJGC5SWbfEkxnSLcfJplQGTKFQadwGEgA669wBzRm 4Sz7L+5zxer0h811AHhg792CEgXOliiSOtV0+NaS5DLeTkYCkgRGeIWuaR6M2VCW DTs9Y4kI6hMPMc3qEBmJqA== -----END CERTIFICATE-----Generated at Sat Apr 5 09:59:53 2025 by rpki-client