$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer File: 2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer (raw, json) Hash identifier: bDEQKrjnEwHxyIcyIjLSt01svnamWI7cDIWr9CXBfok= Subject key identifier: 2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0C1B3ACAADB8098F1D34FBDD1DA579554B1AB037 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.mft caRepository: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 29 Oct 2025 11:22:09 +0000 Certificate not after: Wed 28 Oct 2026 11:27:09 +0000 Subordinate resources: IP: 103.181.250.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 20:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:1b:3a:ca:ad:b8:09:8f:1d:34:fb:dd:1d:a5:79:55:4b:1a:b0:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 29 11:22:09 2025 GMT Not After : Oct 28 11:27:09 2026 GMT Subject: CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:48:8b:14:a8:fb:1e:8e:02:eb:2e:7e:2d:e8: a3:8b:07:49:39:1f:9c:25:f8:6a:42:b6:da:67:bb: 81:a6:f5:92:6b:71:4e:b9:d3:d0:bc:94:81:b4:61: 82:93:5b:ca:8c:b9:2a:4e:f4:4a:10:50:2c:bb:b4: e4:59:b0:a9:c0:00:0a:04:8a:fb:7a:86:e9:d6:c3: be:e7:63:3d:33:0a:ba:db:69:a2:5a:cd:ec:af:2c: 20:6f:48:a2:fb:97:a5:3e:4c:dd:ed:91:58:3c:3e: b8:a2:c8:40:b2:1b:c6:8f:15:ed:30:9a:27:cc:60: 21:78:92:02:cd:36:4b:37:d0:f1:dd:a4:af:25:bb: 09:29:50:26:da:76:0c:14:d1:d4:56:18:fc:70:b3: fc:3a:68:c3:5b:56:da:da:fe:ff:e5:03:33:70:89: ea:89:6d:86:c9:d2:e8:66:51:d1:1f:62:16:58:3e: 07:9e:72:c7:40:07:25:80:a2:62:02:18:17:e8:7a: 5c:e7:fc:92:22:95:41:09:f9:22:d5:7a:06:90:9e: 56:dd:09:79:d3:62:dd:33:90:5a:b1:11:94:6c:34: b7:50:27:45:09:f3:16:b5:c8:c8:1b:26:51:ef:31: 32:ce:e4:33:01:82:17:91:bd:e3:f0:2e:92:f4:be: 1c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.250.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:b0:3a:2a:aa:ad:0b:24:37:31:23:4f:91:8f:dd:0e:ca:3a: 75:61:ee:1e:54:e0:10:44:88:41:2d:5f:ff:50:f8:83:c0:45: 9d:91:d5:2b:79:4f:e5:8f:af:43:ae:df:52:13:cb:27:0d:ae: 3f:bc:f7:2c:41:b4:e9:fc:cb:9c:99:7f:65:15:3d:4c:74:6a: 75:40:86:ef:76:0d:36:41:7d:6b:4c:cd:59:5b:4d:f8:b7:90: a6:87:1f:53:50:9b:b0:da:c9:1c:47:e4:12:5e:d1:78:6c:5a: 70:69:12:e6:69:a7:ed:22:bf:a5:0f:42:13:78:1e:30:ac:3a: 01:4a:10:d3:0c:44:05:40:b9:07:84:95:59:b6:3d:0b:5e:16: 8d:0b:e4:ad:4a:11:ce:80:f1:1b:c8:6f:28:fd:ae:3e:e6:05: e6:64:27:6d:46:70:33:fa:d0:45:13:e9:74:6b:87:95:cd:3b: ad:15:89:0e:40:dc:42:c5:58:ab:c9:5e:46:75:7c:d2:8b:15: 04:21:b2:f9:c5:76:f6:57:dc:77:47:d2:90:fa:85:75:3f:97: e6:ba:6b:8e:39:30:89:7d:6a:97:7c:45:92:6c:98:a9:76:17: dc:45:46:19:50:c6:5c:5f:59:d1:6b:fa:c9:aa:d4:71:70:28: 24:e4:a2:e8 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDBs6yq24CY8dNPvdHaV5VUsasDcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyOTExMjIwOVoX DTI2MTAyODExMjcwOVowMzExMC8GA1UEAxMoMkUyRDkyNjkzMkM1QzdFMjk2OTMx RDg4MTkwOEE0QkIxRTk4RUI2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhIixSo+x6OAusufi3oo4sHSTkfnCX4akK22me7gab1kmtxTrnT0LyUgbRh gpNbyoy5Kk70ShBQLLu05FmwqcAACgSK+3qG6dbDvudjPTMKuttpolrN7K8sIG9I ovuXpT5M3e2RWDw+uKLIQLIbxo8V7TCaJ8xgIXiSAs02SzfQ8d2kryW7CSlQJtp2 DBTR1FYY/HCz/Dpow1tW2tr+/+UDM3CJ6olthsnS6GZR0R9iFlg+B55yx0AHJYCi YgIYF+h6XOf8kiKVQQn5ItV6BpCeVt0JedNi3TOQWrERlGw0t1AnRQnzFrXIyBsm Ue8xMs7kMwGCF5G94/AukvS+HNcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC4tkmkyxcfilpMdiBkIpLsemOttMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kZmE1ODllZi05ZjNkLTQzYmMtYmEzMC1mYTMyNmI3MWY3ODcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmYTU4OWVm LTlmM2QtNDNiYy1iYTMwLWZhMzI2YjcxZjc4Ny8wLzJFMkQ5MjY5MzJDNUM3RTI5 NjkzMUQ4ODE5MDhBNEJCMUU5OEVCNkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFntfowDQYJKoZIhvcNAQELBQADggEBAA6wOiqqrQskNzEjT5GP3Q7KOnVh7h5U 4BBEiEEtX/9Q+IPARZ2R1St5T+WPr0Ou31ITyycNrj+89yxBtOn8y5yZf2UVPUx0 anVAhu92DTZBfWtMzVlbTfi3kKaHH1NQm7DayRxH5BJe0XhsWnBpEuZpp+0iv6UP QhN4HjCsOgFKENMMRAVAuQeElVm2PQteFo0L5K1KEc6A8RvIbyj9rj7mBeZkJ21G cDP60EUT6XRrh5XNO60ViQ5A3ELFWKvJXkZ1fNKLFQQhsvnFdvZX3HdH0pD6hXU/ l+a6a445MIl9apd8RZJsmKl2F9xFRhlQxlxfWdFr+smq1HFwKCTkoug= -----END CERTIFICATE-----Generated at Thu Oct 30 14:55:02 2025 by rpki-client