$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer File: 8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer (raw, json) Hash identifier: cg3tOaiFikmy+CbSebA4pUd9UM6TP9mVRJIuQnZO4yg= Subject key identifier: 8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4DE8A577E7399E64B3B084A401ECC59A8773666E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.mft caRepository: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 31 Aug 2025 10:07:25 +0000 Certificate not after: Sun 30 Aug 2026 10:12:25 +0000 Subordinate resources: IP: 103.150.148.0/23 IP: 2406:540::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e8:a5:77:e7:39:9e:64:b3:b0:84:a4:01:ec:c5:9a:87:73:66:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 31 10:07:25 2025 GMT Not After : Aug 30 10:12:25 2026 GMT Subject: CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:71:e5:d7:f0:3f:91:ce:72:88:18:e2:a6:63: 51:8a:14:ac:de:08:80:8f:d5:9f:0a:71:aa:a0:f5: 82:4f:01:11:d4:70:8a:f3:f6:4a:2b:10:f9:16:15: 15:fd:fb:b2:d6:fe:d8:26:3d:c5:c0:2e:cc:a4:7c: 54:22:08:e7:d8:cd:d3:8e:9e:70:b8:4b:fb:fd:06: 68:fd:4c:43:1a:4a:8f:83:76:e6:2c:ca:08:58:5d: 4d:57:f3:f7:df:83:fb:3c:a8:b2:8d:a7:40:0d:3a: 9d:ec:3c:55:cc:f4:05:fd:af:a7:2a:84:99:03:74: 3f:9f:3e:72:76:df:a3:88:3e:fa:9a:89:72:b8:7b: f7:57:1d:31:9d:3b:24:65:17:16:e4:dc:81:f5:46: f8:13:cc:16:06:38:fd:bb:39:f2:9b:0f:18:c8:e1: 7e:6c:50:90:b1:a5:fe:6f:2b:69:d0:99:5b:aa:a5: 48:d0:cf:26:a7:08:77:a2:9d:38:c3:31:39:30:e2: c3:0f:d9:3d:e5:6c:07:32:72:94:5f:75:65:26:c8: bb:35:de:f3:23:65:d2:a4:78:e9:4d:76:1b:00:4e: 4c:6f:1c:c0:b8:e9:b9:4d:52:a5:e0:21:5b:b6:c1: 8b:b4:7b:06:44:52:b2:66:3a:f5:10:14:14:54:85: 31:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.148.0/23 IPv6: 2406:540::/32 Signature Algorithm: sha256WithRSAEncryption 69:74:ee:d8:8b:79:6f:65:13:70:32:fa:66:42:34:5c:37:75: cb:14:52:2a:af:30:7d:d5:a2:c7:3a:85:56:04:9c:f3:b5:33: ad:f4:06:5a:1c:97:f3:83:8f:83:43:fb:a2:b7:96:f3:3b:05: 40:fb:6a:e5:3d:38:ba:95:80:6b:b6:55:10:25:d4:0d:08:5b: 1d:29:e3:a4:e1:e4:43:3c:82:9a:fd:80:6c:10:d2:30:91:c6: 15:05:da:9f:06:07:9f:89:39:25:dd:71:aa:26:9e:06:79:1f: 22:1b:6f:93:94:f2:5a:40:15:3b:b9:c6:28:47:75:bb:a8:2d: f6:76:84:5c:12:fb:36:3a:d9:3c:f2:38:b9:7f:78:5a:f6:44: 79:71:ec:9f:1b:1a:7c:27:95:7f:2b:66:1f:6b:5f:72:f9:7c: d6:84:a9:95:02:8d:ba:ea:92:67:f8:10:9b:af:cc:a6:9e:9e: 55:74:8d:16:5e:48:b7:1c:79:72:44:68:96:80:40:2b:7f:ce: e7:c1:f3:ab:e9:13:45:1d:31:1a:ab:62:58:35:55:6f:f7:35: de:b7:67:5f:02:f7:8f:dc:0e:36:c6:90:ad:63:99:60:8b:de: 4a:dc:9e:67:0a:9e:6d:ab:4e:20:f1:b5:ab:b0:df:2b:4c:68: c0:51:b7:b7 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUTeild+c5nmSzsISkAezFmodzZm4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgzMTEwMDcyNVoX DTI2MDgzMDEwMTIyNVowMzExMC8GA1UEAxMoOEY1ODg5M0IxQ0UxREI4NTU1RDdC RUNCNjNERTM0MkQyMzhCNjc3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9x5dfwP5HOcogY4qZjUYoUrN4IgI/VnwpxqqD1gk8BEdRwivP2SisQ+RYV Ff37stb+2CY9xcAuzKR8VCII59jN046ecLhL+/0GaP1MQxpKj4N25izKCFhdTVfz 99+D+zyoso2nQA06new8Vcz0Bf2vpyqEmQN0P58+cnbfo4g++pqJcrh791cdMZ07 JGUXFuTcgfVG+BPMFgY4/bs58psPGMjhfmxQkLGl/m8radCZW6qlSNDPJqcId6Kd OMMxOTDiww/ZPeVsBzJylF91ZSbIuzXe8yNl0qR46U12GwBOTG8cwLjpuU1SpeAh W7bBi7R7BkRSsmY69RAUFFSFMUUCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI9YiTsc4duFVde+y2PeNC0ji2d5MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xYmRlOTM2Yi01M2NmLTRiMDgtYjVmNy0yYjkwZGUyMWZlOTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGU5MzZi LTUzY2YtNGIwOC1iNWY3LTJiOTBkZTIxZmU5NC8wLzhGNTg4OTNCMUNFMURCODU1 NUQ3QkVDQjYzREUzNDJEMjM4QjY3NzkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnlpQwDQQCAAIwBwMFACQGBUAwDQYJKoZIhvcNAQELBQADggEBAGl07tiLeW9l E3Ay+mZCNFw3dcsUUiqvMH3Vosc6hVYEnPO1M630Blocl/ODj4ND+6K3lvM7BUD7 auU9OLqVgGu2VRAl1A0IWx0p46Th5EM8gpr9gGwQ0jCRxhUF2p8GB5+JOSXdcaom ngZ5HyIbb5OU8lpAFTu5xihHdbuoLfZ2hFwS+zY62TzyOLl/eFr2RHlx7J8bGnwn lX8rZh9rX3L5fNaEqZUCjbrqkmf4EJuvzKaenlV0jRZeSLcceXJEaJaAQCt/zufB 86vpE0UdMRqrYlg1VW/3Nd63Z18C94/cDjbGkK1jmWCL3krcnmcKnm2rTiDxtauw 3ytMaMBRt7c= -----END CERTIFICATE-----Generated at Mon Oct 27 09:19:32 2025 by rpki-client