$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer (raw, json) Hash identifier: gBXg1f3yX5g+BCiyus2bVkCGECeC7EZNyLmF6QQ5XnQ= Subject key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 41EF02F1814BDB83A3CE2CF3497341892790DDDB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft caRepository: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 23 Aug 2025 07:38:22 +0000 Certificate not after: Sat 22 Aug 2026 07:43:22 +0000 Subordinate resources: IP: 103.167.70.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ef:02:f1:81:4b:db:83:a3:ce:2c:f3:49:73:41:89:27:90:dd:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 23 07:38:22 2025 GMT Not After : Aug 22 07:43:22 2026 GMT Subject: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:69:7a:62:f9:49:c9:0b:7c:86:c9:12:bb:ef: 46:44:34:70:57:02:6c:1e:3f:38:05:06:37:88:ea: 0e:b0:10:0e:7c:ef:0e:17:14:88:bb:7f:ca:8c:e0: ec:c3:a8:61:33:d5:b2:00:78:a4:1b:30:87:53:87: 30:87:0b:41:24:bd:d5:b1:ba:e5:5b:5e:22:fd:95: 97:a1:35:72:f0:c1:c4:30:03:4c:4f:79:c1:14:6b: 63:92:08:80:22:b7:4a:76:99:11:7e:1b:17:d8:12: 35:fa:e9:ce:44:9d:aa:d0:ad:ce:ea:fc:83:57:51: af:d7:45:42:f4:f6:43:1f:db:03:5a:fc:3d:3f:1f: 2a:20:cb:d0:7d:85:dd:1c:9a:25:8f:2e:7d:6d:b2: 61:ce:f5:b1:28:81:5f:8e:51:d6:62:c6:2e:d7:bc: 1d:e6:27:b4:1d:bf:e0:93:46:80:65:20:41:4d:de: 0b:42:37:8c:79:38:da:e6:c9:3f:ef:72:57:e9:e4: f7:cf:ed:bd:b1:22:b0:31:10:11:9e:99:01:2b:bf: fc:4c:db:8b:ad:b7:fc:c7:0c:37:7f:72:67:d8:8e: a9:57:b5:8a:e5:a5:d2:8b:34:b9:ac:80:b0:a6:87: 3d:91:7a:7c:d2:ac:0f:30:40:cd:a3:eb:6a:df:25: 53:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.70.0/23 Signature Algorithm: sha256WithRSAEncryption 69:8f:a5:c6:ce:a8:9f:18:79:de:d6:93:cb:55:23:7a:f9:13: ac:94:06:60:1d:4e:c2:d4:0b:1c:2f:a2:8b:2b:ce:93:92:0b: 48:7b:50:ff:30:af:0e:58:e7:e7:d4:c5:b2:95:3a:ff:d5:57: 17:29:22:58:dd:db:dd:ca:9c:e1:37:e4:f7:c4:64:99:3d:97: 18:00:78:2f:e1:11:5d:fd:92:03:f7:f1:ec:ea:ce:82:45:11: ce:41:2a:80:67:99:26:ee:f1:2a:cb:3f:17:79:49:c0:4d:09: 31:4b:51:c8:6f:d9:1b:8f:48:c4:88:bc:ab:3e:49:2b:fc:ad: bc:3f:8d:0a:2c:e4:68:39:17:9e:00:1a:68:10:70:39:a8:14: 4b:93:13:32:e7:9a:86:10:a9:10:d3:6d:e6:7c:78:e4:1f:df: 20:7f:5e:35:bb:bd:29:1a:d1:cf:bf:99:45:12:9f:c1:52:27: a5:81:96:ba:bf:99:73:34:65:c8:87:a4:ab:bc:13:a5:fc:86: 43:f4:f0:7a:2f:9b:a7:69:b2:d6:08:d4:4c:f4:92:d5:2f:bf: c8:57:7e:20:df:be:14:82:35:11:51:05:b9:b1:d8:4a:9b:e0: 69:f3:dd:6c:8e:f9:a0:05:0e:6a:c5:4a:90:71:72:f3:e4:fd: 27:e6:86:9a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQe8C8YFL24OjzizzSXNBiSeQ3dswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgyMzA3MzgyMloX DTI2MDgyMjA3NDMyMlowMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYz QzkzMTlFRjM0NzQ5OTYxMEU1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPNpemL5SckLfIbJErvvRkQ0cFcCbB4/OAUGN4jqDrAQDnzvDhcUiLt/yozg 7MOoYTPVsgB4pBswh1OHMIcLQSS91bG65VteIv2Vl6E1cvDBxDADTE95wRRrY5II gCK3SnaZEX4bF9gSNfrpzkSdqtCtzur8g1dRr9dFQvT2Qx/bA1r8PT8fKiDL0H2F 3RyaJY8ufW2yYc71sSiBX45R1mLGLte8HeYntB2/4JNGgGUgQU3eC0I3jHk42ubJ P+9yV+nk98/tvbEisDEQEZ6ZASu//Ezbi623/McMN39yZ9iOqVe1iuWl0os0uayA sKaHPZF6fNKsDzBAzaPrat8lU3sCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI2nvS+1PySR+288kxnvNHSZYQ5QMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iOGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ZjllODdk LWU1MDktNDdiYS1iZTlkLTg5NTU2ZjUzMGVhOC8wLzhEQTdCRDJGQjUzRjI0OTFG QjZGM0M5MzE5RUYzNDc0OTk2MTBFNTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnp0YwDQYJKoZIhvcNAQELBQADggEBAGmPpcbOqJ8Yed7Wk8tVI3r5E6yUBmAd TsLUCxwvoosrzpOSC0h7UP8wrw5Y5+fUxbKVOv/VVxcpIljd293KnOE35PfEZJk9 lxgAeC/hEV39kgP38ezqzoJFEc5BKoBnmSbu8SrLPxd5ScBNCTFLUchv2RuPSMSI vKs+SSv8rbw/jQos5Gg5F54AGmgQcDmoFEuTEzLnmoYQqRDTbeZ8eOQf3yB/XjW7 vSka0c+/mUUSn8FSJ6WBlrq/mXM0ZciHpKu8E6X8hkP08Hovm6dpstYI1Ez0ktUv v8hXfiDfvhSCNRFRBbmx2Eqb4Gnz3WyO+aAFDmrFSpBxcvPk/Sfmhpo= -----END CERTIFICATE-----Generated at Fri Sep 5 08:19:39 2025 by rpki-client