$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer File: 5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer (raw, json) Hash identifier: ZD85HlI5viTERjnhxOMcBC2d2VDIqr/rJaBCFNrewX8= Subject key identifier: 5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 197BF6D4409CB0E37B254EC3EB0371046076CEA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 15 May 2025 08:10:04 +0000 Certificate not after: Thu 14 May 2026 08:15:04 +0000 Subordinate resources: IP: 103.164.150.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:7b:f6:d4:40:9c:b0:e3:7b:25:4e:c3:eb:03:71:04:60:76:ce:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 15 08:10:04 2025 GMT Not After : May 14 08:15:04 2026 GMT Subject: CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:03:a4:e9:64:d9:6b:75:a5:b5:8e:5f:90:a9: ab:7b:6e:e7:37:45:ce:92:7f:bc:fd:78:b6:65:d7: 2b:86:1f:0c:9d:56:39:1d:53:fa:e0:c4:56:25:c1: 97:42:96:12:85:3e:7e:77:d1:20:a7:25:7a:bb:a4: 37:65:5a:a9:e9:27:7f:5e:74:59:46:a4:89:eb:50: 19:7d:f1:fc:ff:40:71:cc:36:1d:7f:75:2b:d5:3e: a0:72:60:90:56:80:a8:0b:d0:e4:03:ae:b5:5e:4e: 10:76:14:9e:4a:75:7a:2f:10:ad:8f:7c:3f:29:64: c4:54:59:50:43:e8:4b:81:72:31:27:00:44:d5:b0: e1:15:99:64:9c:07:7e:d0:be:20:89:a9:5e:f8:cf: c9:eb:8a:e1:be:de:f2:39:3b:55:82:02:c4:2f:2b: aa:e7:1e:87:74:a7:13:76:87:6b:3b:17:d7:3e:8c: da:3e:ca:4a:75:4d:da:7e:ee:b7:ee:7f:80:66:06: 34:28:fa:ae:be:e8:da:06:cc:6f:3a:01:20:5c:a2: 91:ca:44:47:c4:76:77:a1:b5:69:f3:88:d5:8e:df: 29:d3:c3:27:03:97:bf:db:8c:d9:3a:08:fd:da:dd: c4:92:40:24:4c:44:4e:2b:b0:f6:9b:a6:00:70:89: cd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.150.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:97:4b:fb:d7:5a:c0:b0:db:ff:1a:e8:28:ff:91:44:2d:1a: 49:39:10:01:fd:6c:e1:eb:58:db:1c:7c:9d:a2:65:b4:f5:c1: d0:fc:cf:ef:c8:79:d5:9a:5e:8e:db:30:b3:cb:8a:cf:47:62: 38:fd:02:47:93:48:76:df:e4:91:c6:23:5c:4e:6a:42:6f:a0: 4a:0d:be:6f:72:be:d0:0a:d2:c9:c0:36:cd:4b:aa:28:76:28: 34:91:7d:40:98:4c:ef:9d:42:3e:88:b3:f5:2b:7e:46:31:e7: 42:47:c1:c8:f2:ad:0e:e5:cf:40:67:a9:46:75:7c:29:fa:f6: 99:8a:0f:10:a7:1d:89:62:0a:4c:b1:5f:11:d3:e4:1f:3a:f4: 3f:68:0d:93:fd:4c:de:03:c2:50:8f:ab:83:6c:b1:33:78:17: 5b:41:c5:ea:ee:6c:3f:f9:22:0f:ca:ca:8f:f6:ad:3b:c1:77: 53:f9:19:9e:3f:01:a0:1f:58:ac:07:9f:0e:be:bd:2c:9d:a0: d8:20:c9:6e:88:9b:bb:bf:92:d7:f3:de:e5:b0:22:6e:a9:ff: 32:d8:68:f8:e2:5d:f2:66:c1:42:50:cc:b2:0b:80:92:9b:83: ce:1d:27:f0:94:84:43:a6:ec:59:ac:b3:91:51:8b:0e:e9:4d: 9c:30:33:b5 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGXv21ECcsON7JU7D6wNxBGB2zqUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUxNTA4MTAwNFoX DTI2MDUxNDA4MTUwNFowMzExMC8GA1UEAxMoNUMxREM3RTg3NDU3QTkxRjM1OTE1 QUYxREUzRkJCQ0MyRTZCM0Q4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQDpOlk2Wt1pbWOX5Cpq3tu5zdFzpJ/vP14tmXXK4YfDJ1WOR1T+uDEViXB l0KWEoU+fnfRIKclerukN2Vaqeknf150WUakietQGX3x/P9Accw2HX91K9U+oHJg kFaAqAvQ5AOutV5OEHYUnkp1ei8QrY98PylkxFRZUEPoS4FyMScARNWw4RWZZJwH ftC+IImpXvjPyeuK4b7e8jk7VYICxC8rquceh3SnE3aHazsX1z6M2j7KSnVN2n7u t+5/gGYGNCj6rr7o2gbMbzoBIFyikcpER8R2d6G1afOI1Y7fKdPDJwOXv9uM2ToI /drdxJJAJExETiuw9pumAHCJzW0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFwdx+h0V6kfNZFa8d4/u8wuaz2PMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzg4NDQyYi1jNDhlLTRiYTAtOGFkNy01OGUxMjYzYzZkYzcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjODg0NDJi LWM0OGUtNGJhMC04YWQ3LTU4ZTEyNjNjNmRjNy8wLzVDMURDN0U4NzQ1N0E5MUYz NTkxNUFGMURFM0ZCQkNDMkU2QjNEOEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnpJYwDQYJKoZIhvcNAQELBQADggEBAG2XS/vXWsCw2/8a6Cj/kUQtGkk5EAH9 bOHrWNscfJ2iZbT1wdD8z+/IedWaXo7bMLPLis9HYjj9AkeTSHbf5JHGI1xOakJv oEoNvm9yvtAK0snANs1Lqih2KDSRfUCYTO+dQj6Is/UrfkYx50JHwcjyrQ7lz0Bn qUZ1fCn69pmKDxCnHYliCkyxXxHT5B869D9oDZP9TN4DwlCPq4NssTN4F1tBxeru bD/5Ig/Kyo/2rTvBd1P5GZ4/AaAfWKwHnw6+vSydoNggyW6Im7u/ktfz3uWwIm6p /zLYaPjiXfJmwUJQzLILgJKbg84dJ/CUhEOm7Fmss5FRiw7pTZwwM7U= -----END CERTIFICATE-----Generated at Mon Jun 9 00:21:18 2025 by rpki-client