$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer File: 5C559181306986EE89AADF0A1CFC78EA8A093530.cer (raw, json) Hash identifier: dmYiT+cEBqO4sS/CFwctSRwRc+sSAlWsq8/cmlk+Ss0= Subject key identifier: 5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2A5239805D4A7E6904CA85B668D1FCE0B72A22E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.mft caRepository: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 27 Aug 2025 01:22:57 +0000 Certificate not after: Wed 26 Aug 2026 01:27:57 +0000 Subordinate resources: IP: 103.250.129.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:52:39:80:5d:4a:7e:69:04:ca:85:b6:68:d1:fc:e0:b7:2a:22:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 27 01:22:57 2025 GMT Not After : Aug 26 01:27:57 2026 GMT Subject: CN=5C559181306986EE89AADF0A1CFC78EA8A093530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5e:9e:f0:74:26:33:ee:45:8d:30:60:9d:7c: d1:77:f6:20:0b:21:23:c5:c0:80:37:7d:c9:ec:bc: de:11:4a:01:4f:90:59:a7:01:05:a0:09:2e:fb:f1: 01:df:2c:d6:bf:d4:54:36:45:6c:c2:e6:e6:32:4e: fa:95:4b:48:23:71:7a:30:28:19:ec:fd:01:89:ea: 4a:6a:15:8a:b5:e7:b6:51:70:32:1d:fe:24:96:30: 16:ee:cf:1c:32:81:e2:54:58:1a:0e:33:c5:53:1a: d5:e8:20:11:91:3a:32:01:63:25:14:d3:12:9f:a1: 7a:83:e9:4e:ed:83:c8:04:55:2f:09:0e:de:95:2b: 49:24:13:24:9a:39:58:03:81:64:69:60:9f:a5:c1: ab:1f:20:05:29:74:c2:75:d1:c1:e1:4f:50:01:c9: a8:61:fa:0f:99:b3:c9:53:3d:8c:68:76:a9:d7:b6: 06:6a:2d:78:fd:d4:24:6f:02:8b:31:6f:3d:0b:0e: 40:1a:52:56:48:fe:c1:b9:7b:52:64:07:70:00:27: f6:5f:ae:5a:49:b3:5d:08:54:d8:db:e4:c0:a3:d2: a4:c7:df:bb:c5:e9:1b:d7:5f:ed:43:33:b7:10:14: 78:5f:1d:50:2b:8b:dd:d6:d2:18:e7:2d:6d:f4:cb: 53:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.129.0/24 Signature Algorithm: sha256WithRSAEncryption 31:52:9c:eb:e0:bc:c5:ae:f3:97:ce:25:df:f7:c9:5a:a3:b4: 1d:09:08:4a:85:b3:51:4d:81:d3:f8:cf:91:e1:69:87:a8:82: e2:81:2c:70:e0:25:c6:c2:b4:a6:44:fa:f8:33:44:82:66:f4: b6:f2:7d:c1:b3:c4:87:7b:59:e1:8e:f4:2b:95:18:80:4f:58: 92:b8:48:6e:7d:6f:42:27:82:55:73:cd:9b:bb:df:b9:d8:d6: da:2d:1e:e7:2d:5e:e3:59:2d:6c:19:4c:6a:d4:89:28:d9:49: f9:19:3d:a6:46:f5:3b:d5:07:80:56:9e:19:51:4c:c3:11:be: 97:de:89:92:8b:f7:8b:cb:27:78:b0:1e:c8:09:b2:e4:ab:d3: 15:28:29:7d:a4:70:8d:76:e0:45:ea:c5:46:09:5a:58:21:f7: 3e:65:b7:8d:41:07:f9:5d:f1:f7:1a:fe:47:a4:43:42:ef:fa: be:f4:31:a0:bf:4f:7c:f2:fc:f9:89:a6:69:ac:47:93:82:1b: 5a:ff:8c:a0:88:52:ac:c2:ce:ea:78:98:ad:94:57:3a:8a:23: 75:1c:65:39:c4:2d:0c:61:f0:11:35:82:6b:a7:a0:5a:ed:30: 0e:b5:c7:c1:25:19:d3:85:65:43:a0:9f:bf:ff:c9:a8:d7:90: 21:ee:a6:8a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUKlI5gF1KfmkEyoW2aNH84LcqIuUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgyNzAxMjI1N1oX DTI2MDgyNjAxMjc1N1owMzExMC8GA1UEAxMoNUM1NTkxODEzMDY5ODZFRTg5QUFE RjBBMUNGQzc4RUE4QTA5MzUzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOBenvB0JjPuRY0wYJ180Xf2IAshI8XAgDd9yey83hFKAU+QWacBBaAJLvvx Ad8s1r/UVDZFbMLm5jJO+pVLSCNxejAoGez9AYnqSmoVirXntlFwMh3+JJYwFu7P HDKB4lRYGg4zxVMa1eggEZE6MgFjJRTTEp+heoPpTu2DyARVLwkO3pUrSSQTJJo5 WAOBZGlgn6XBqx8gBSl0wnXRweFPUAHJqGH6D5mzyVM9jGh2qde2BmoteP3UJG8C izFvPQsOQBpSVkj+wbl7UmQHcAAn9l+uWkmzXQhU2NvkwKPSpMffu8XpG9df7UMz txAUeF8dUCuL3dbSGOctbfTLU+UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFxVkYEwaYbuiarfChz8eOqKCTUwMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wZmE4MWU2ZS00YjE2LTRiNjItOGYxOC01Mjg5MmU1NGI5MGQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmYTgxZTZl LTRiMTYtNGI2Mi04ZjE4LTUyODkyZTU0YjkwZC8wLzVDNTU5MTgxMzA2OTg2RUU4 OUFBREYwQTFDRkM3OEVBOEEwOTM1MzAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn+oEwDQYJKoZIhvcNAQELBQADggEBADFSnOvgvMWu85fOJd/3yVqjtB0JCEqF s1FNgdP4z5HhaYeoguKBLHDgJcbCtKZE+vgzRIJm9LbyfcGzxId7WeGO9CuVGIBP WJK4SG59b0InglVzzZu737nY1totHuctXuNZLWwZTGrUiSjZSfkZPaZG9TvVB4BW nhlRTMMRvpfeiZKL94vLJ3iwHsgJsuSr0xUoKX2kcI124EXqxUYJWlgh9z5lt41B B/ld8fca/kekQ0Lv+r70MaC/T3zy/PmJpmmsR5OCG1r/jKCIUqzCzup4mK2UVzqK I3UcZTnELQxh8BE1gmunoFrtMA61x8ElGdOFZUOgn7//yajXkCHupoo= -----END CERTIFICATE-----Generated at Fri Sep 5 08:16:21 2025 by rpki-client