$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.cer File: 28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.cer (raw, json) Hash identifier: 0CfEGwUumuaZ8ZkDIB1r7CgBqAcB8cCLHrr+NGUktmM= Subject key identifier: 28:71:9E:EF:A3:40:A5:ED:ED:E0:07:8C:4C:B4:84:97:B3:6F:3A:D6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 586839200B10B0C1F6409164A1EA5782B936B193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0/28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.mft caRepository: rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 28 Aug 2025 23:51:43 +0000 Certificate not after: Thu 27 Aug 2026 23:56:43 +0000 Subordinate resources: IP: 103.80.230.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:68:39:20:0b:10:b0:c1:f6:40:91:64:a1:ea:57:82:b9:36:b1:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 28 23:51:43 2025 GMT Not After : Aug 27 23:56:43 2026 GMT Subject: CN=28719EEFA340A5EDEDE0078C4CB48497B36F3AD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:de:10:8c:01:c2:8e:ef:77:1a:de:4a:f4:f7: 2d:a7:9d:23:ce:b3:a3:87:63:0e:4c:f5:09:a1:74: 60:d7:61:e5:22:b8:18:95:6e:25:c1:7b:c7:b8:2a: b8:d7:16:89:3f:9f:98:bd:eb:ed:3a:11:a1:69:5b: 41:24:a4:44:5c:72:1d:d9:93:3d:68:cb:b9:c9:5e: e7:59:78:de:ed:7d:8e:6a:92:d1:66:5a:ee:4e:83: 1b:a6:67:22:51:45:71:52:8f:bf:2c:b4:e6:a5:83: 08:09:0d:44:ae:36:d9:c3:6d:b0:11:0e:82:8c:ea: 4d:59:da:84:55:79:b2:e6:bd:5d:eb:6d:be:bb:ea: df:53:b3:e0:01:8b:85:a2:96:33:3d:b9:2a:12:51: b3:0d:6e:a7:ff:f6:93:aa:4a:d1:f2:f6:10:67:e1: e3:a2:01:a7:25:c6:b9:39:24:be:c4:b6:61:8d:7d: 6b:db:cc:55:40:91:16:76:c3:13:8b:e9:17:7a:d5: 32:57:a6:a0:21:89:cc:8d:e1:b9:f9:2e:06:fc:5f: 25:35:d6:57:df:a8:29:9c:24:fe:fc:87:69:fe:b1: b2:ab:50:7c:e2:bd:2e:4d:5a:02:0f:59:89:5a:2f: cf:7d:5c:5a:34:e0:c3:37:5a:16:9f:31:0b:73:26: 76:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 28:71:9E:EF:A3:40:A5:ED:ED:E0:07:8C:4C:B4:84:97:B3:6F:3A:D6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0/28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.230.0/23 Signature Algorithm: sha256WithRSAEncryption 58:eb:3b:44:72:9e:40:2f:49:c3:3a:c7:e4:e6:cf:41:48:02: 22:93:50:e1:71:49:ae:50:d1:e8:2e:47:75:c2:38:30:3f:6d: 69:36:78:61:05:32:34:f1:ea:88:61:49:d5:b6:07:0e:7c:92: 11:77:e1:f5:59:bd:d8:c1:5a:08:48:9a:b0:10:32:c8:1f:76: 6f:f1:57:27:0f:b2:91:3a:46:e2:f8:b2:e9:53:13:a5:e2:91: 87:59:3c:83:67:ef:65:81:ce:59:35:8f:36:33:3e:f7:d4:97: ff:c3:86:c4:ef:c7:a0:42:d8:5e:b1:30:72:a4:d1:27:af:7f: 23:92:31:e0:cc:b8:11:11:2b:ce:6f:69:11:51:d9:7b:98:9e: ea:01:d6:11:c2:c5:e3:5e:66:9b:7d:07:ac:f1:44:03:76:fd: e0:a4:52:91:bc:bb:aa:03:5c:dc:b2:30:43:3f:2a:24:82:ff: 11:e9:a4:c0:30:89:a7:72:f2:11:44:98:de:09:45:77:b3:54: ff:31:a1:e2:45:87:5d:5a:8e:70:2f:b7:33:ce:cf:d1:d1:53: d4:d3:05:4f:0c:ae:7c:1f:f7:52:3a:04:55:40:1b:a1:c5:70: ec:c2:74:1f:1e:9d:95:a9:58:c8:eb:d3:c9:b6:ab:6c:f8:85: 78:78:76:b4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWGg5IAsQsMH2QJFkoepXgrk2sZMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgyODIzNTE0M1oX DTI2MDgyNzIzNTY0M1owMzExMC8GA1UEAxMoMjg3MTlFRUZBMzQwQTVFREVERTAw NzhDNENCNDg0OTdCMzZGM0FENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJXeEIwBwo7vdxreSvT3LaedI86zo4djDkz1CaF0YNdh5SK4GJVuJcF7x7gq uNcWiT+fmL3r7ToRoWlbQSSkRFxyHdmTPWjLucle51l43u19jmqS0WZa7k6DG6Zn IlFFcVKPvyy05qWDCAkNRK422cNtsBEOgozqTVnahFV5sua9Xettvrvq31Oz4AGL haKWMz25KhJRsw1up//2k6pK0fL2EGfh46IBpyXGuTkkvsS2YY19a9vMVUCRFnbD E4vpF3rVMlemoCGJzI3hufkuBvxfJTXWV9+oKZwk/vyHaf6xsqtQfOK9Lk1aAg9Z iVovz31cWjTgwzdaFp8xC3Mmdu8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFChxnu+jQKXt7eAHjEy0hJezbzrWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NDFlODIyMy1jYzY4LTQxMGUtYjY3Yi05Yjg4MjViNWNkNWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0MWU4MjIz LWNjNjgtNDEwZS1iNjdiLTliODgyNWI1Y2Q1Zi8wLzI4NzE5RUVGQTM0MEE1RURF REUwMDc4QzRDQjQ4NDk3QjM2RjNBRDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnUOYwDQYJKoZIhvcNAQELBQADggEBAFjrO0RynkAvScM6x+Tmz0FIAiKTUOFx Sa5Q0eguR3XCODA/bWk2eGEFMjTx6ohhSdW2Bw58khF34fVZvdjBWghImrAQMsgf dm/xVycPspE6RuL4sulTE6XikYdZPINn72WBzlk1jzYzPvfUl//DhsTvx6BC2F6x MHKk0SevfyOSMeDMuBERK85vaRFR2XuYnuoB1hHCxeNeZpt9B6zxRAN2/eCkUpG8 u6oDXNyyMEM/KiSC/xHppMAwiady8hFEmN4JRXezVP8xoeJFh11ajnAvtzPOz9HR U9TTBU8Mrnwf91I6BFVAG6HFcOzCdB8enZWpWMjr08m2q2z4hXh4drQ= -----END CERTIFICATE-----Generated at Fri Sep 5 08:19:49 2025 by rpki-client