$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.cer File: 6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.cer (raw, json) Hash identifier: ESBFBk0WVfRF+wXg3pfCmRqqpGvMWAwdlE2/KxZmX+M= Subject key identifier: 6F:C8:57:DF:7F:E5:35:0A:6C:05:A1:F1:13:F3:DC:2E:5F:E0:BE:11 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5EDCE3550AFFB5453B3019808CE54BB31664D651 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.mft caRepository: rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 10 Feb 2025 12:55:00 +0000 Certificate not after: Mon 09 Feb 2026 13:00:00 +0000 Subordinate resources: IP: 103.159.194.0/23 IP: 2407:5440::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:dc:e3:55:0a:ff:b5:45:3b:30:19:80:8c:e5:4b:b3:16:64:d6:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 10 12:55:00 2025 GMT Not After : Feb 9 13:00:00 2026 GMT Subject: CN=6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8a:2c:1d:6c:76:ed:eb:b9:ae:3d:43:9c:84: 28:e1:45:30:d6:b8:7d:d3:51:1a:79:63:20:96:33: 33:1b:2b:be:4e:37:23:b2:51:cf:3c:de:40:bf:42: c7:aa:bd:48:25:86:fa:ff:28:e4:94:f1:10:11:8c: 36:56:e0:63:d8:a4:14:b9:4e:2c:7a:48:70:62:61: 83:6f:31:68:fe:5c:b3:70:30:ff:a0:f6:f3:f5:d0: 61:ce:1e:2c:69:45:5b:42:70:16:b2:21:73:a5:ed: 6c:90:32:18:25:22:c6:9e:fc:00:fa:84:63:4f:23: b8:ad:b6:f7:92:34:52:00:ba:5e:6e:c2:37:36:bb: 14:7b:93:c8:65:f7:c3:fd:3b:22:2b:a1:a1:c1:1b: db:5f:56:8b:0c:7f:dd:38:fb:f9:72:76:22:72:aa: b0:25:3f:f9:95:18:65:9c:db:42:c2:ad:63:41:f9: be:17:9b:c0:32:29:b0:07:c9:aa:8e:4d:8c:fa:4f: 81:ac:fa:45:dd:0f:b3:7a:03:55:f5:89:36:83:bb: fb:55:67:d4:df:7b:d0:b3:04:dc:47:73:3f:25:55: b5:df:8f:7c:10:ae:9f:59:57:1a:37:33:3c:e6:fb: e7:44:dc:96:c9:f9:d0:ce:66:ab:65:ad:e6:d8:40: 0f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 6F:C8:57:DF:7F:E5:35:0A:6C:05:A1:F1:13:F3:DC:2E:5F:E0:BE:11 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.194.0/23 IPv6: 2407:5440::/32 Signature Algorithm: sha256WithRSAEncryption 5e:06:8c:78:db:2e:c7:e7:e4:1a:e1:7c:1c:e5:97:b2:36:ab: 09:5e:1d:34:eb:54:ed:e0:a4:60:eb:2e:03:a9:0b:c4:5a:59: 3b:81:4c:f0:77:88:d7:94:87:0f:0c:23:2f:05:83:62:6a:7e: 3f:63:48:b3:39:0b:fb:8d:e6:c2:e4:62:e5:ab:1a:f1:57:ae: 1e:d8:bd:dc:b3:1f:7b:0f:dd:b4:b2:a0:e9:c4:07:e9:95:89: c8:6d:04:b6:db:24:35:3e:85:cd:f8:12:0a:80:41:70:f0:2a: 37:9c:7c:58:04:d5:7e:a6:e6:9f:0d:25:4a:1a:8c:98:07:64: 78:74:e9:19:18:ac:28:c9:fc:f5:6a:85:47:05:3e:9c:59:cb: e6:f4:55:3a:74:cf:9a:d9:18:4b:36:ae:4c:ab:3b:29:97:9d: d8:9d:97:c0:98:e5:90:4e:03:fe:58:a7:31:4b:d7:14:71:43: 10:1d:b3:f4:6f:ac:19:c9:bb:e1:75:e9:77:d1:ea:d8:ab:05: 2d:a2:5c:7a:9c:1a:ad:8b:d3:c4:01:bd:a7:2a:b3:13:31:5a: 1f:84:dc:b5:78:3b:37:d0:aa:6d:ac:ba:7d:be:df:ef:8c:fc: 12:81:92:e6:dc:a8:d8:4e:1d:da:d8:8b:59:85:80:88:77:c8: fa:75:58:d7 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUXtzjVQr/tUU7MBmAjOVLsxZk1lEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxMDEyNTUwMFoX DTI2MDIwOTEzMDAwMFowMzExMC8GA1UEAxMoNkZDODU3REY3RkU1MzUwQTZDMDVB MUYxMTNGM0RDMkU1RkUwQkUxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM2KLB1sdu3rua49Q5yEKOFFMNa4fdNRGnljIJYzMxsrvk43I7JRzzzeQL9C x6q9SCWG+v8o5JTxEBGMNlbgY9ikFLlOLHpIcGJhg28xaP5cs3Aw/6D28/XQYc4e LGlFW0JwFrIhc6XtbJAyGCUixp78APqEY08juK2295I0UgC6Xm7CNza7FHuTyGX3 w/07IiuhocEb219Wiwx/3Tj7+XJ2InKqsCU/+ZUYZZzbQsKtY0H5vhebwDIpsAfJ qo5NjPpPgaz6Rd0Ps3oDVfWJNoO7+1Vn1N970LME3EdzPyVVtd+PfBCun1lXGjcz POb750Tclsn50M5mq2Wt5thADwsCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFG/IV99/5TUKbAWh8RPz3C5f4L4RMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80YTIzOGE2Mi02YTk2LTQzYmMtODdhZi0wMmRiNjQxZjcxMDkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMjM4YTYy LTZhOTYtNDNiYy04N2FmLTAyZGI2NDFmNzEwOS8wLzZGQzg1N0RGN0ZFNTM1MEE2 QzA1QTFGMTEzRjNEQzJFNUZFMEJFMTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnn8IwDQQCAAIwBwMFACQHVEAwDQYJKoZIhvcNAQELBQADggEBAF4GjHjbLsfn 5BrhfBzll7I2qwleHTTrVO3gpGDrLgOpC8RaWTuBTPB3iNeUhw8MIy8Fg2Jqfj9j SLM5C/uN5sLkYuWrGvFXrh7YvdyzH3sP3bSyoOnEB+mVichtBLbbJDU+hc34EgqA QXDwKjecfFgE1X6m5p8NJUoajJgHZHh06RkYrCjJ/PVqhUcFPpxZy+b0VTp0z5rZ GEs2rkyrOymXndidl8CY5ZBOA/5YpzFL1xRxQxAds/RvrBnJu+F16XfR6tirBS2i XHqcGq2L08QBvacqsxMxWh+E3LV4OzfQqm2sun2+3++M/BKBkubcqNhOHdrYi1mF gIh3yPp1WNc= -----END CERTIFICATE-----Generated at Sun Feb 16 20:45:32 2025 by rpki-client