$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/64848BA7A76415C6458AAC267B0A57658022C3C5.cer File: 64848BA7A76415C6458AAC267B0A57658022C3C5.cer (raw, json) Hash identifier: waRFzd5qjBBm3CYzq4Jeok4rMdXVsxiizK7iHW7f8t0= Subject key identifier: 64:84:8B:A7:A7:64:15:C6:45:8A:AC:26:7B:0A:57:65:80:22:C3:C5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0E4CEF8FCB8BA183E34252203B9B86E320871F07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/64848BA7A76415C6458AAC267B0A57658022C3C5.mft caRepository: rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 08 Oct 2025 05:20:13 +0000 Certificate not after: Wed 07 Oct 2026 05:25:13 +0000 Subordinate resources: IP: 103.179.68.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 17:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:4c:ef:8f:cb:8b:a1:83:e3:42:52:20:3b:9b:86:e3:20:87:1f:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 8 05:20:13 2025 GMT Not After : Oct 7 05:25:13 2026 GMT Subject: CN=64848BA7A76415C6458AAC267B0A57658022C3C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8c:23:9f:ac:b5:d3:5e:31:16:8c:90:95:52: 60:88:20:37:97:6a:e7:15:c8:d7:c8:f7:18:db:f6: 0d:65:16:6a:08:e9:5c:32:7d:c4:7f:c6:d6:a6:5e: 90:4c:27:b2:ff:cd:3b:63:15:b1:bf:24:69:1b:59: d3:4f:f0:55:02:1e:96:c2:2c:5d:7b:23:c3:26:d3: 09:77:e6:5e:68:8a:26:93:d9:1f:64:ee:a9:ba:83: 4d:e0:d1:fe:8a:c3:65:9e:12:9a:06:b2:91:bb:11: c8:4c:ff:e6:87:b1:d7:40:1c:76:bb:31:c9:1a:53: c0:f1:07:8c:34:55:b7:30:41:4f:8e:d2:9b:38:a9: 21:cb:24:29:72:f5:46:d6:2b:22:46:63:c0:31:b8: 9d:d1:c5:08:12:38:af:a2:ca:8c:a3:ee:35:c5:0c: 1b:0b:53:3a:4b:4c:82:56:20:2a:25:44:9b:ba:f5: e0:ce:1a:6a:72:8c:5f:d0:a4:08:3e:93:41:47:70: ee:0f:09:f3:46:49:42:d1:3a:dd:28:42:6a:74:66: a7:6e:ba:b1:54:20:97:4a:aa:9b:55:67:53:a3:d3: ba:26:7e:09:e0:61:6e:dc:52:e3:b4:3f:81:16:bf: f1:28:bb:74:4c:bc:67:85:4c:f9:d9:5d:36:07:71: 73:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 64:84:8B:A7:A7:64:15:C6:45:8A:AC:26:7B:0A:57:65:80:22:C3:C5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/64848BA7A76415C6458AAC267B0A57658022C3C5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.68.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:04:20:2a:27:2f:4b:ba:ed:9f:6c:e4:07:1c:d2:3f:c3:ae: 28:3b:0a:15:09:23:d5:64:cc:ca:cd:ca:30:16:e4:53:94:7d: 93:15:b8:83:75:60:63:d9:84:b9:41:da:a9:b2:06:a4:4f:e8: d0:bb:cd:99:d4:27:fc:8c:b9:43:c4:03:e0:8d:79:10:c7:85: 89:5b:3b:46:c6:84:ba:21:10:24:cc:28:22:90:2a:d4:1d:ba: ef:ba:c0:f9:67:50:5d:cc:9c:79:f1:60:c1:bc:d1:2e:b0:07: e8:ee:04:fd:e5:62:55:0e:e1:a9:8c:f2:7a:77:52:70:4a:b6: 8a:ff:82:99:37:24:97:d6:f0:06:b7:38:42:89:ea:14:cc:99: 9c:e0:a4:87:26:5b:d9:04:86:c5:99:b5:d6:7e:fe:a6:96:bf: b6:ba:1c:b4:c0:e1:33:0d:02:1a:86:6d:f7:be:50:21:3a:fd: 1d:79:2a:f8:a0:67:82:5b:b9:14:51:42:07:e6:45:3f:4b:c2: 51:20:51:cd:56:ba:9a:20:7c:ff:6a:b8:0e:aa:f4:17:5c:2b: 03:a5:4b:c7:6f:19:99:06:b8:78:f7:de:9d:66:ce:53:c5:a1: 07:ae:28:8e:45:56:31:14:ab:7b:09:61:50:b7:44:42:dc:dc: d0:51:41:43 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDkzvj8uLoYPjQlIgO5uG4yCHHwcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwODA1MjAxM1oX DTI2MTAwNzA1MjUxM1owMzExMC8GA1UEAxMoNjQ4NDhCQTdBNzY0MTVDNjQ1OEFB QzI2N0IwQTU3NjU4MDIyQzNDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2MI5+stdNeMRaMkJVSYIggN5dq5xXI18j3GNv2DWUWagjpXDJ9xH/G1qZe kEwnsv/NO2MVsb8kaRtZ00/wVQIelsIsXXsjwybTCXfmXmiKJpPZH2TuqbqDTeDR /orDZZ4SmgaykbsRyEz/5oex10AcdrsxyRpTwPEHjDRVtzBBT47SmzipIcskKXL1 RtYrIkZjwDG4ndHFCBI4r6LKjKPuNcUMGwtTOktMglYgKiVEm7r14M4aanKMX9Ck CD6TQUdw7g8J80ZJQtE63ShCanRmp266sVQgl0qqm1VnU6PTuiZ+CeBhbtxS47Q/ gRa/8Si7dEy8Z4VM+dldNgdxc78CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGSEi6enZBXGRYqsJnsKV2WAIsPFMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZDNlZDAxMi1hZmRiLTQyZmItOTcxYS1lMTYyYTlkZWM0NmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkM2VkMDEy LWFmZGItNDJmYi05NzFhLWUxNjJhOWRlYzQ2ZC8wLzY0ODQ4QkE3QTc2NDE1QzY0 NThBQUMyNjdCMEE1NzY1ODAyMkMzQzUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABns0QwDQYJKoZIhvcNAQELBQADggEBACwEIConL0u67Z9s5Acc0j/Drig7ChUJ I9VkzMrNyjAW5FOUfZMVuIN1YGPZhLlB2qmyBqRP6NC7zZnUJ/yMuUPEA+CNeRDH hYlbO0bGhLohECTMKCKQKtQduu+6wPlnUF3MnHnxYMG80S6wB+juBP3lYlUO4amM 8np3UnBKtor/gpk3JJfW8Aa3OEKJ6hTMmZzgpIcmW9kEhsWZtdZ+/qaWv7a6HLTA 4TMNAhqGbfe+UCE6/R15KvigZ4JbuRRRQgfmRT9LwlEgUc1WupogfP9quA6q9Bdc KwOlS8dvGZkGuHj33p1mzlPFoQeuKI5FVjEUq3sJYVC3RELc3NBRQUM= -----END CERTIFICATE-----Generated at Sun Oct 19 13:00:08 2025 by rpki-client