$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer File: 7470038419B67CD1743CE4D96953077ECE6928FE.cer (raw, json) Hash identifier: orABc2s6LFzbT29oxdAkc15cMs3cUVtzLh79MDEf3Ro= Subject key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7ED72D90CE2A6E520DDD6191C50462409A0E0253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft caRepository: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Sep 2025 09:18:06 +0000 Certificate not after: Tue 01 Sep 2026 09:23:06 +0000 Subordinate resources: IP: 103.154.52.0/23 IP: 2406:54c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:d7:2d:90:ce:2a:6e:52:0d:dd:61:91:c5:04:62:40:9a:0e:02:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 2 09:18:06 2025 GMT Not After : Sep 1 09:23:06 2026 GMT Subject: CN=7470038419B67CD1743CE4D96953077ECE6928FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:42:6e:93:e1:f5:6c:04:be:cf:1a:ae:12:a7: 3b:c2:ff:ef:93:6a:f5:2c:f6:bc:77:55:a5:26:e8: 95:62:89:db:97:bf:63:09:ca:40:39:90:ee:f9:36: 75:06:42:69:4f:c9:9b:79:13:70:e9:32:a9:6b:d6: 27:25:bc:ff:51:8f:7a:25:9a:b4:b6:78:2f:14:0d: aa:e2:1e:0e:a8:4e:16:d7:c1:14:58:8a:7f:67:25: fd:cb:58:71:89:ec:94:35:d0:77:1a:e1:c7:f6:5d: 22:c8:34:97:91:07:ea:b4:ab:0a:c6:5e:39:6d:d2: f5:20:12:96:1f:2e:2f:a0:83:2f:59:4e:56:82:7d: b3:92:61:3c:4e:62:05:8b:71:17:6d:52:c8:e5:89: 12:d4:19:5b:e2:69:6d:44:6b:da:18:3f:4a:73:ef: 12:04:83:6a:2d:70:9e:6a:6d:96:ec:70:b3:e7:95: 62:be:13:61:3d:78:46:1d:12:b2:f7:13:7e:ab:be: 40:fa:25:d4:6b:d9:79:0b:7d:8b:ee:58:44:ae:cc: 0c:29:87:4a:69:c9:88:f5:ef:d1:56:32:5f:e5:85: ee:a0:31:4d:e1:ae:c4:1f:4a:a3:31:0b:a5:d4:c0: 54:da:52:64:43:4b:1c:27:96:90:bc:c0:c8:8c:bc: 2d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.52.0/23 IPv6: 2406:54c0::/32 Signature Algorithm: sha256WithRSAEncryption 51:7a:50:8e:8b:8c:ee:ff:6e:74:56:ee:74:6f:59:4b:39:9d: de:ef:62:73:a3:03:54:f6:14:1b:10:c0:63:cb:2f:3c:cb:a9: 2d:1e:9f:d3:a2:2b:89:78:21:c9:8f:12:92:2b:10:66:27:57: 8b:68:8e:fd:fc:ec:72:c5:4b:5f:ba:60:4f:43:50:0e:cd:42: 1a:2c:a9:c1:6b:a9:04:7e:87:4a:7b:a4:4d:ad:b1:a3:cc:00: 20:e0:31:4b:11:b8:d9:44:80:3a:d8:f6:78:08:b2:68:9e:3c: 43:c6:91:0a:aa:c4:46:96:58:51:ea:aa:66:a2:3c:3c:55:f8: c3:84:b0:a2:7b:b7:4e:6d:c6:01:c2:d6:94:bc:91:d2:2b:1c: f2:91:0e:30:9b:2b:ae:98:e8:6c:c8:23:19:8e:42:0c:ef:05: dd:76:b5:78:38:36:c6:21:02:85:d0:c6:b7:9d:cf:5d:07:49: 37:c0:1f:c7:d1:ba:eb:dd:46:e3:ea:58:83:7b:48:89:d9:a1: 0e:8f:0b:ab:87:ff:dc:e2:d5:5a:49:1e:d9:90:e5:31:5c:7a: 28:92:c4:86:f5:00:49:09:0f:38:7f:4e:3b:9c:6a:cc:33:95: 9f:e9:3b:d0:b8:13:70:be:07:16:ab:a9:6c:d4:2d:18:e7:eb: 14:51:8c:ec -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUftctkM4qblIN3WGRxQRiQJoOAlMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwMjA5MTgwNloX DTI2MDkwMTA5MjMwNlowMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NF NEQ5Njk1MzA3N0VDRTY5MjhGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ1CbpPh9WwEvs8arhKnO8L/75Nq9Sz2vHdVpSbolWKJ25e/YwnKQDmQ7vk2 dQZCaU/Jm3kTcOkyqWvWJyW8/1GPeiWatLZ4LxQNquIeDqhOFtfBFFiKf2cl/ctY cYnslDXQdxrhx/ZdIsg0l5EH6rSrCsZeOW3S9SASlh8uL6CDL1lOVoJ9s5JhPE5i BYtxF21SyOWJEtQZW+JpbURr2hg/SnPvEgSDai1wnmptluxws+eVYr4TYT14Rh0S svcTfqu+QPol1GvZeQt9i+5YRK7MDCmHSmnJiPXv0VYyX+WF7qAxTeGuxB9KozEL pdTAVNpSZENLHCeWkLzAyIy8LdcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHRwA4QZtnzRdDzk2WlTB37OaSj+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wYzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUx LWIwYjEtNDM1ZC1hNjZiLTYwNGM2ZTVkMjllZi8wLzc0NzAwMzg0MTlCNjdDRDE3 NDNDRTREOTY5NTMwNzdFQ0U2OTI4RkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnmjQwDQQCAAIwBwMFACQGVMAwDQYJKoZIhvcNAQELBQADggEBAFF6UI6LjO7/ bnRW7nRvWUs5nd7vYnOjA1T2FBsQwGPLLzzLqS0en9OiK4l4IcmPEpIrEGYnV4to jv387HLFS1+6YE9DUA7NQhosqcFrqQR+h0p7pE2tsaPMACDgMUsRuNlEgDrY9ngI smiePEPGkQqqxEaWWFHqqmaiPDxV+MOEsKJ7t05txgHC1pS8kdIrHPKRDjCbK66Y 6GzIIxmOQgzvBd12tXg4NsYhAoXQxredz10HSTfAH8fRuuvdRuPqWIN7SInZoQ6P C6uH/9zi1VpJHtmQ5TFceiiSxIb1AEkJDzh/TjucaswzlZ/pO9C4E3C+BxarqWzU LRjn6xRRjOw= -----END CERTIFICATE-----Generated at Fri Sep 5 10:10:46 2025 by rpki-client