$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer File: 215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer (raw, json) Hash identifier: pFpEwUiBDSSNC7lTpTJWTCwR8W0VM+HxPQr1ia+seyU= Subject key identifier: 21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6723ADF02C54CE19C996F759BA07E9FD47E2BA2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.mft caRepository: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 28 Aug 2025 19:39:29 +0000 Certificate not after: Thu 27 Aug 2026 19:44:29 +0000 Subordinate resources: IP: 103.161.184.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 09:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:23:ad:f0:2c:54:ce:19:c9:96:f7:59:ba:07:e9:fd:47:e2:ba:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 28 19:39:29 2025 GMT Not After : Aug 27 19:44:29 2026 GMT Subject: CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a3:ac:a4:79:97:38:58:44:55:9b:30:6d:e8: 2b:03:b5:22:57:59:62:63:34:be:f4:85:60:51:9f: 58:7e:88:91:da:4d:bb:32:27:42:3b:0d:0b:81:a3: 9a:eb:e4:77:37:9a:48:94:01:72:f9:0c:23:e5:40: 53:df:c3:20:8c:8b:7c:44:c6:fa:75:7e:40:ac:0b: fe:5b:5a:de:22:c7:a2:5a:17:7e:34:2a:16:12:44: 6d:82:ee:e6:e6:68:db:97:7d:5e:5f:0a:53:c5:37: 9f:17:ab:1b:0e:c5:d7:a9:8d:e1:59:ba:52:4b:e7: 54:7d:91:aa:a4:6e:04:29:64:ed:97:c1:80:cb:b9: 21:b0:af:00:bd:3a:f1:cb:e4:6a:5d:49:0e:3b:ae: 16:64:1e:09:f1:aa:5f:46:cd:04:1e:e3:51:7b:41: cf:f8:d5:5f:1b:ba:fa:bb:25:77:61:8d:3d:73:03: ff:b1:d9:a1:1a:9a:e9:be:fd:87:48:a9:66:f0:6f: a4:80:12:54:a1:5b:2d:33:a0:d6:a9:5c:28:fe:85: 4c:ce:98:fc:a0:40:ca:a0:c3:38:af:19:b8:fe:30: c7:d4:b0:72:dc:e1:3b:2d:13:ab:7c:a6:b7:49:14: d3:e6:4d:7e:cd:8e:31:f6:a9:41:1b:59:e0:58:d4: 76:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.184.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:15:9c:8c:1b:1a:6e:6a:1b:32:2c:a6:42:e0:77:06:0a:f3: 73:1b:14:82:6f:92:eb:1b:eb:ba:7b:e6:de:09:c9:50:cf:d5: a5:32:ca:20:f2:3e:60:bd:16:c5:f4:2e:b6:d3:fa:08:aa:5f: f7:c1:19:7f:ad:c1:91:11:f2:74:73:16:ad:15:53:c2:c1:94: 5b:9f:31:3c:65:ae:33:19:9b:de:fc:8a:3b:8c:e0:25:f5:77: 5f:03:fc:56:62:16:d4:cf:12:4a:29:17:4f:7b:8e:8b:81:77: 80:e9:00:2b:54:d0:c5:c4:15:ef:bc:c9:d9:a8:74:06:67:76: 2b:ec:96:a3:8e:9b:70:94:fe:bd:23:24:04:73:e9:aa:6d:81: 63:e3:b8:c2:d8:d8:02:dd:2d:36:18:b0:27:11:17:ba:76:58: 32:3e:a1:62:d0:fd:d8:7d:f2:f7:d6:57:48:02:d8:87:9b:e8: eb:d8:a9:6d:b0:99:3f:67:6e:67:65:82:ab:e5:6c:b3:4a:63: 48:4d:51:a5:9c:c5:82:96:2b:79:0f:a7:aa:f8:6c:5f:0a:df: 28:74:2b:a2:72:9d:66:97:5d:3a:01:e5:60:60:15:cf:70:5a: e1:31:f4:da:e6:68:9f:1b:2d:00:aa:2a:f2:64:51:33:0c:da: 7a:8e:a7:86 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZyOt8CxUzhnJlvdZugfp/UfiuiwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgyODE5MzkyOVoX DTI2MDgyNzE5NDQyOVowMzExMC8GA1UEAxMoMjE1RkM3RTVFMjJCOEM0NjkxMEQ0 RDdDQTIxNEM5MjNBMDk2QjJGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANWjrKR5lzhYRFWbMG3oKwO1IldZYmM0vvSFYFGfWH6IkdpNuzInQjsNC4Gj muvkdzeaSJQBcvkMI+VAU9/DIIyLfETG+nV+QKwL/lta3iLHoloXfjQqFhJEbYLu 5uZo25d9Xl8KU8U3nxerGw7F16mN4Vm6UkvnVH2RqqRuBClk7ZfBgMu5IbCvAL06 8cvkal1JDjuuFmQeCfGqX0bNBB7jUXtBz/jVXxu6+rsld2GNPXMD/7HZoRqa6b79 h0ipZvBvpIASVKFbLTOg1qlcKP6FTM6Y/KBAyqDDOK8ZuP4wx9SwctzhOy0Tq3ym t0kU0+ZNfs2OMfapQRtZ4FjUdjUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCFfx+XiK4xGkQ1NfKIUySOglrL+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mM2VhYzljMC1kZTFiLTQ2ZGQtYmYzNy0xOGZlM2E4ZDVmYmYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZWFjOWMw LWRlMWItNDZkZC1iZjM3LTE4ZmUzYThkNWZiZi8wLzIxNUZDN0U1RTIyQjhDNDY5 MTBENEQ3Q0EyMTRDOTIzQTA5NkIyRkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnobgwDQYJKoZIhvcNAQELBQADggEBAG0VnIwbGm5qGzIspkLgdwYK83MbFIJv kusb67p75t4JyVDP1aUyyiDyPmC9FsX0LrbT+giqX/fBGX+twZER8nRzFq0VU8LB lFufMTxlrjMZm978ijuM4CX1d18D/FZiFtTPEkopF097jouBd4DpACtU0MXEFe+8 ydmodAZndivslqOOm3CU/r0jJARz6aptgWPjuMLY2ALdLTYYsCcRF7p2WDI+oWLQ /dh98vfWV0gC2Ieb6OvYqW2wmT9nbmdlgqvlbLNKY0hNUaWcxYKWK3kPp6r4bF8K 3yh0K6JynWaXXToB5WBgFc9wWuEx9NrmaJ8bLQCqKvJkUTMM2nqOp4Y= -----END CERTIFICATE-----Generated at Fri Sep 5 08:12:07 2025 by rpki-client