$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer File: 57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer (raw, json) Hash identifier: I59dz9PJ2OCT1psaYh+KH/XbCpDwj+DNAyCnO/2L2BU= Subject key identifier: 57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 55D9BECCE3DE8FEAC5FA38B9EBE204092DC367F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.mft caRepository: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 12 Oct 2025 12:08:12 +0000 Certificate not after: Sun 11 Oct 2026 12:13:12 +0000 Subordinate resources: IP: 103.41.188.0/22 IP: 117.53.44.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 02:04:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:d9:be:cc:e3:de:8f:ea:c5:fa:38:b9:eb:e2:04:09:2d:c3:67:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 12 12:08:12 2025 GMT Not After : Oct 11 12:13:12 2026 GMT Subject: CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8f:a9:96:07:62:6a:a6:69:5f:d2:6a:4d:41: 1f:32:af:ad:0b:08:6f:36:d4:6a:8f:3a:f1:a3:99: 6c:84:10:71:07:35:c9:1a:93:f1:14:ba:3d:8d:7f: 97:d0:58:cb:64:1e:81:7e:01:2f:00:86:16:cf:2b: 9f:29:e4:d5:43:a4:bb:dd:a7:71:be:ef:84:b0:18: f7:88:69:de:27:2e:0f:fd:04:90:57:71:dc:31:1d: f0:72:92:e0:5c:06:d4:14:d8:24:b0:48:31:f8:92: bb:ec:1b:1f:90:9a:f8:6c:c9:90:4b:37:4f:42:a2: ea:d8:c8:39:83:4d:c2:45:2e:80:ee:75:b5:02:57: 3d:f5:20:f5:e5:07:a6:86:30:3e:72:ed:97:ca:8c: 92:23:d5:c9:c1:79:bb:0b:63:73:12:ee:92:8c:61: b3:37:23:5b:4c:3d:d5:95:d5:1b:8e:8b:35:29:e4: 16:5d:f5:05:61:1b:38:b4:e6:52:0b:4c:61:72:a8: 3f:cf:a0:7c:eb:01:dd:d3:28:dc:8a:ad:4f:9f:f6: b0:99:f6:a7:18:2a:2d:41:25:c7:80:3a:8c:60:a1: e9:e3:60:e2:40:e7:44:f5:c6:74:9a:b2:9a:17:5c: b8:28:ae:cf:92:33:a6:db:20:9d:ff:e4:ab:43:07: 14:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.188.0/22 117.53.44.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:98:40:de:9c:39:35:ba:4d:00:c9:09:e8:d9:81:df:86:f6: 26:5b:e9:15:52:b9:a4:1d:89:a3:9a:86:88:60:dc:f8:9c:05: 7b:5a:73:f4:0f:a8:99:ee:94:d7:48:28:74:51:13:ab:34:61: e3:d4:d4:39:12:a5:1a:33:27:62:6b:6e:e8:86:f1:3b:71:f5: eb:23:67:ba:2f:a3:1c:20:42:a0:b6:a5:20:7d:9a:cd:5c:73: 56:5a:0a:b9:5a:c8:57:63:1a:1f:1a:d5:8d:6c:53:19:1f:70: 4a:8e:30:10:0e:e8:5d:81:0d:fa:fe:07:c3:70:93:9f:8a:68: 4d:6d:6b:11:d7:12:a3:64:c2:85:63:7c:a0:9b:0c:70:43:de: 4b:f3:43:9b:77:8e:ca:91:2c:e9:6f:2a:68:99:84:4f:c0:de: 4f:9a:bf:35:45:7d:02:00:b5:fa:6f:3e:01:1d:05:e0:65:78: 4a:2c:55:51:2e:50:de:cb:f0:98:3b:38:84:4f:5d:7b:e4:1b: fd:ed:1d:7b:d4:4c:22:32:5c:04:29:0c:ac:20:34:12:42:03: f3:ba:61:84:53:2f:b6:9a:40:00:1b:9b:d5:d5:8d:0c:b7:80: 2a:a0:f1:f2:d8:22:5f:03:7f:7e:4f:6f:2b:e8:be:c2:0a:7b: 62:74:5f:a8 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUVdm+zOPej+rF+ji56+IECS3DZ/UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAxMjEyMDgxMloX DTI2MTAxMTEyMTMxMlowMzExMC8GA1UEAxMoNTdENEI4MjY5QUREQTQ2MEU4Rjc5 MjVEMEFBMTI2RUNENkY2MEUyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANKPqZYHYmqmaV/Sak1BHzKvrQsIbzbUao868aOZbIQQcQc1yRqT8RS6PY1/ l9BYy2QegX4BLwCGFs8rnynk1UOku92ncb7vhLAY94hp3icuD/0EkFdx3DEd8HKS 4FwG1BTYJLBIMfiSu+wbH5Ca+GzJkEs3T0Ki6tjIOYNNwkUugO51tQJXPfUg9eUH poYwPnLtl8qMkiPVycF5uwtjcxLukoxhszcjW0w91ZXVG46LNSnkFl31BWEbOLTm UgtMYXKoP8+gfOsB3dMo3IqtT5/2sJn2pxgqLUElx4A6jGCh6eNg4kDnRPXGdJqy mhdcuCiuz5Izptsgnf/kq0MHFCMCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFfUuCaa3aRg6PeSXQqhJuzW9g4kMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZjQ5OWM1Ni1hMjQ2LTRkMTgtYmU4Ni1mNDYxZDhmNTU5YzgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNDk5YzU2 LWEyNDYtNGQxOC1iZTg2LWY0NjFkOGY1NTljOC8wLzU3RDRCODI2OUFEREE0NjBF OEY3OTI1RDBBQTEyNkVDRDZGNjBFMjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAJnKbwDBAJ1NSwwDQYJKoZIhvcNAQELBQADggEBAE6YQN6cOTW6TQDJCejZgd+G 9iZb6RVSuaQdiaOahohg3PicBXtac/QPqJnulNdIKHRRE6s0YePU1DkSpRozJ2Jr buiG8Ttx9esjZ7ovoxwgQqC2pSB9ms1cc1ZaCrlayFdjGh8a1Y1sUxkfcEqOMBAO 6F2BDfr+B8Nwk5+KaE1taxHXEqNkwoVjfKCbDHBD3kvzQ5t3jsqRLOlvKmiZhE/A 3k+avzVFfQIAtfpvPgEdBeBleEosVVEuUN7L8Jg7OIRPXXvkG/3tHXvUTCIyXAQp DKwgNBJCA/O6YYRTL7aaQAAbm9XVjQy3gCqg8fLYIl8Df35PbyvovsIKe2J0X6g= -----END CERTIFICATE-----Generated at Wed Nov 5 16:35:13 2025 by rpki-client