$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/411479424B4016269EB9E266CD48905F63DC9F0B.cer File: 411479424B4016269EB9E266CD48905F63DC9F0B.cer (raw, json) Hash identifier: W/HmDPvdoV+IZq8aGTWNLJvw2LqAwtCoD9DrYahw+J0= Subject key identifier: 41:14:79:42:4B:40:16:26:9E:B9:E2:66:CD:48:90:5F:63:DC:9F:0B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 54FABA49AAFE4EEDF27D8EC6448ACC8868B91F94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c13739e1-b5db-4734-838a-b0b580beb9f3/0/411479424B4016269EB9E266CD48905F63DC9F0B.mft caRepository: rsync://repo-rpki.idnic.net/repo/c13739e1-b5db-4734-838a-b0b580beb9f3/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 30 Aug 2025 03:57:53 +0000 Certificate not after: Sat 29 Aug 2026 04:02:53 +0000 Subordinate resources: IP: 103.178.90.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:fa:ba:49:aa:fe:4e:ed:f2:7d:8e:c6:44:8a:cc:88:68:b9:1f:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 30 03:57:53 2025 GMT Not After : Aug 29 04:02:53 2026 GMT Subject: CN=411479424B4016269EB9E266CD48905F63DC9F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e8:6f:96:68:f9:6d:51:de:3c:7a:52:ba:ac: 8b:27:52:26:b1:45:1a:1c:56:b5:68:14:2f:f2:9c: 35:2b:44:a7:0a:62:72:40:4a:98:e5:38:ed:70:80: 09:8d:b3:66:11:a8:bf:bf:27:b9:9c:42:92:b8:7d: 1c:f4:fc:40:ab:a9:c0:27:aa:5e:39:1f:9f:26:b9: 4f:49:09:d9:eb:b3:42:f0:54:97:e7:09:82:2b:c0: 0b:62:02:e3:83:38:bc:24:5d:bb:80:f6:04:9a:83: c6:3a:d0:21:97:da:6d:a1:e2:6b:6e:7f:8f:cc:fa: 93:4b:e4:1f:6d:f9:3c:c0:f3:e3:5c:47:71:85:96: f4:f0:ff:a0:f1:7f:97:fd:18:ad:4f:7d:38:b2:de: 89:38:6c:33:6b:3d:96:6d:70:dd:db:ef:31:b8:63: 0f:b8:91:79:44:4e:aa:fb:75:d4:6a:76:9f:f8:08: 71:bf:05:be:66:8a:f1:30:2c:7b:0b:e6:d6:30:c7: b2:8a:2b:74:97:c7:ee:00:37:40:0f:ef:c0:3f:fc: 68:f8:f7:ce:d5:6a:41:98:26:9f:15:8d:78:f1:08: e1:42:c8:32:35:37:da:a6:f1:17:a9:c0:bd:e0:a2: 3b:31:90:bc:8d:73:0c:95:29:cb:e3:03:7b:c5:ff: 80:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 41:14:79:42:4B:40:16:26:9E:B9:E2:66:CD:48:90:5F:63:DC:9F:0B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c13739e1-b5db-4734-838a-b0b580beb9f3/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c13739e1-b5db-4734-838a-b0b580beb9f3/0/411479424B4016269EB9E266CD48905F63DC9F0B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.90.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:0e:49:a2:df:fb:cc:df:3b:8e:ca:fc:62:5d:ff:c2:c0:d6: 95:9d:a4:f4:a0:76:e3:26:a2:dc:20:ac:3f:c9:d4:8c:0d:fc: 3c:93:90:ff:93:2a:b5:f8:82:39:d6:90:09:52:0a:f0:a4:2a: 30:5e:e5:5e:f2:88:f5:7e:e4:f1:9d:28:36:6e:f5:81:74:f9: 7e:e4:6a:37:24:55:2e:86:0d:d9:c2:c6:7c:64:ff:37:7e:45: 06:f6:ef:8d:cd:e2:aa:2d:f0:5d:5e:77:d7:1b:16:c1:f7:57: a1:e7:15:44:7b:a2:10:56:21:f8:cf:bb:db:6e:c0:ae:b5:d0: aa:be:c5:14:cd:39:e5:c7:5f:33:38:07:74:cc:0a:22:de:4a: 98:43:f7:af:52:5c:a3:f5:2d:90:55:b7:c2:f4:ba:07:e3:b8: e1:f8:a3:ca:70:38:48:98:92:c0:f8:1b:95:84:3d:84:36:f7: d0:e7:6b:a3:48:5f:1d:dc:7b:96:3c:c1:a1:50:c6:76:de:55: 06:60:09:ba:d1:9b:36:25:9e:9b:fb:81:19:3a:c1:9f:39:48: 96:08:82:73:16:8f:35:1f:db:0d:83:61:1f:d4:7c:51:01:ae: 6b:04:30:4b:a2:69:1a:3b:ef:8f:93:56:13:0a:1e:63:68:48: ef:fe:11:bd -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVPq6Sar+Tu3yfY7GRIrMiGi5H5QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgzMDAzNTc1M1oX DTI2MDgyOTA0MDI1M1owMzExMC8GA1UEAxMoNDExNDc5NDI0QjQwMTYyNjlFQjlF MjY2Q0Q0ODkwNUY2M0RDOUYwQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7ob5Zo+W1R3jx6UrqsiydSJrFFGhxWtWgUL/KcNStEpwpickBKmOU47XCA CY2zZhGov78nuZxCkrh9HPT8QKupwCeqXjkfnya5T0kJ2euzQvBUl+cJgivAC2IC 44M4vCRdu4D2BJqDxjrQIZfabaHia25/j8z6k0vkH235PMDz41xHcYWW9PD/oPF/ l/0YrU99OLLeiThsM2s9lm1w3dvvMbhjD7iReUROqvt11Gp2n/gIcb8FvmaK8TAs ewvm1jDHsoordJfH7gA3QA/vwD/8aPj3ztVqQZgmnxWNePEI4ULIMjU32qbxF6nA veCiOzGQvI1zDJUpy+MDe8X/gEkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEEUeUJLQBYmnrniZs1IkF9j3J8LMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jMTM3MzllMS1iNWRiLTQ3MzQtODM4YS1iMGI1ODBiZWI5ZjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MxMzczOWUx LWI1ZGItNDczNC04MzhhLWIwYjU4MGJlYjlmMy8wLzQxMTQ3OTQyNEI0MDE2MjY5 RUI5RTI2NkNENDg5MDVGNjNEQzlGMEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnslowDQYJKoZIhvcNAQELBQADggEBAF8OSaLf+8zfO47K/GJd/8LA1pWdpPSg duMmotwgrD/J1IwN/DyTkP+TKrX4gjnWkAlSCvCkKjBe5V7yiPV+5PGdKDZu9YF0 +X7kajckVS6GDdnCxnxk/zd+RQb2743N4qot8F1ed9cbFsH3V6HnFUR7ohBWIfjP u9tuwK610Kq+xRTNOeXHXzM4B3TMCiLeSphD969SXKP1LZBVt8L0ugfjuOH4o8pw OEiYksD4G5WEPYQ299Dna6NIXx3ce5Y8waFQxnbeVQZgCbrRmzYlnpv7gRk6wZ85 SJYIgnMWjzUf2w2DYR/UfFEBrmsEMEuiaRo774+TVhMKHmNoSO/+Eb0= -----END CERTIFICATE-----Generated at Fri Sep 5 08:14:21 2025 by rpki-client