$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AFCEE1D439DB1441C4F21223918AC0811E65D56F.cer File: AFCEE1D439DB1441C4F21223918AC0811E65D56F.cer (raw, json) Hash identifier: TqDc8EKIIpuoE0Y4y4yoSyxbvZqafhNyQuHs4UP8N+E= Subject key identifier: AF:CE:E1:D4:39:DB:14:41:C4:F2:12:23:91:8A:C0:81:1E:65:D5:6F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07972DB465E222A815C050A04E57667F0B52658E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/AFCEE1D439DB1441C4F21223918AC0811E65D56F.mft caRepository: rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 23 Aug 2025 20:19:44 +0000 Certificate not after: Sat 22 Aug 2026 20:24:44 +0000 Subordinate resources: IP: 103.175.188.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:97:2d:b4:65:e2:22:a8:15:c0:50:a0:4e:57:66:7f:0b:52:65:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 23 20:19:44 2025 GMT Not After : Aug 22 20:24:44 2026 GMT Subject: CN=AFCEE1D439DB1441C4F21223918AC0811E65D56F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:72:24:d5:fe:ec:5b:38:e6:5d:56:0a:1c:08: 87:ed:d0:a2:a8:ee:bf:e7:49:ab:d0:0d:26:cb:e9: d6:f8:96:1a:f0:75:c9:d1:5f:f8:2a:ac:d4:46:cc: 44:9b:e9:87:4a:76:7d:13:97:fc:db:9b:6b:4e:55: 0e:84:d1:06:90:86:83:67:5a:2d:7f:fb:72:5e:0d: 91:7e:cd:36:ba:5e:fe:2e:c2:0a:e7:47:ea:c6:82: 1a:42:8c:61:37:34:08:91:18:c9:4f:eb:f0:22:d3: 74:cc:25:13:7e:66:64:f8:bc:c5:83:93:66:22:e2: d2:54:c3:f8:db:03:87:55:cc:20:cb:3a:82:86:5e: a1:17:c5:80:c8:1f:f8:c3:ef:8c:9c:81:c1:8d:6d: 66:08:f5:9b:13:15:41:75:46:9a:6f:39:78:23:b1: 2d:09:4e:ee:e0:f6:41:33:7b:61:34:c6:41:18:3e: a5:e7:e5:f7:49:fe:f9:3f:27:45:d5:fa:7d:37:6f: e6:91:ad:6e:8b:61:4e:12:86:29:f3:e5:ee:e1:0e: 04:8f:0f:60:de:fa:dd:a6:c9:a9:b5:70:d0:f5:03: 59:e7:af:a1:0c:8e:4a:86:00:d0:22:82:b3:d7:3f: 00:9c:df:69:4a:4e:2c:65:10:23:2c:80:f6:d2:08: 10:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AF:CE:E1:D4:39:DB:14:41:C4:F2:12:23:91:8A:C0:81:1E:65:D5:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/AFCEE1D439DB1441C4F21223918AC0811E65D56F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.188.0/23 Signature Algorithm: sha256WithRSAEncryption 51:15:c8:38:76:4b:2a:73:b4:bb:2c:fe:b8:d0:6d:87:94:62: 2b:53:ef:f4:f8:f9:73:b2:5f:97:99:4b:8d:70:d2:9d:3e:da: 93:12:1b:7c:3b:09:e2:3d:b3:d6:38:36:9e:60:02:e2:87:63: bd:19:f3:b3:f0:b7:22:31:ef:57:ea:78:19:30:d0:5a:f5:7e: df:61:0e:8e:4e:36:6b:60:8e:7d:88:53:92:4b:f0:a6:16:92: 9e:e3:da:8e:27:f6:12:09:c7:f7:dc:08:13:b1:01:d9:23:65: f7:27:2a:c1:5d:49:9b:a0:31:2c:8d:94:50:2a:96:a8:0d:29: 93:c0:a2:68:c8:aa:66:e3:d7:a9:9a:b5:71:8a:bc:4a:e6:75: 7a:22:53:fa:5c:9f:a9:45:99:03:9f:dc:90:18:18:56:f1:00: ae:ae:f3:54:a9:51:af:01:9b:9d:b7:33:b2:c1:98:91:1f:12: b6:88:8b:80:98:2c:6a:9b:4f:37:18:ef:e1:43:5c:67:7b:43: c9:96:60:09:06:4a:ac:1c:14:aa:3e:ec:e9:f3:f9:66:68:9f: 7d:d9:e4:a5:35:3d:07:bb:11:d9:5b:fc:ce:b0:fb:ac:f6:70: 60:e0:65:dc:a0:8a:b5:94:f2:03:3d:b1:17:33:09:7e:88:ef: 6f:a5:21:dc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUB5cttGXiIqgVwFCgTldmfwtSZY4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgyMzIwMTk0NFoX DTI2MDgyMjIwMjQ0NFowMzExMC8GA1UEAxMoQUZDRUUxRDQzOURCMTQ0MUM0RjIx MjIzOTE4QUMwODExRTY1RDU2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtyJNX+7Fs45l1WChwIh+3Qoqjuv+dJq9ANJsvp1viWGvB1ydFf+Cqs1EbM RJvph0p2fROX/Nuba05VDoTRBpCGg2daLX/7cl4NkX7NNrpe/i7CCudH6saCGkKM YTc0CJEYyU/r8CLTdMwlE35mZPi8xYOTZiLi0lTD+NsDh1XMIMs6goZeoRfFgMgf +MPvjJyBwY1tZgj1mxMVQXVGmm85eCOxLQlO7uD2QTN7YTTGQRg+pefl90n++T8n RdX6fTdv5pGtbothThKGKfPl7uEOBI8PYN763abJqbVw0PUDWeevoQyOSoYA0CKC s9c/AJzfaUpOLGUQIyyA9tIIECECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK/O4dQ52xRBxPISI5GKwIEeZdVvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iOWY2MDkyNy0xZjM0LTRjNTQtOTY3NC1mOWRlYWY3NWMyZmMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5ZjYwOTI3 LTFmMzQtNGM1NC05Njc0LWY5ZGVhZjc1YzJmYy8wL0FGQ0VFMUQ0MzlEQjE0NDFD NEYyMTIyMzkxOEFDMDgxMUU2NUQ1NkYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnr7wwDQYJKoZIhvcNAQELBQADggEBAFEVyDh2SypztLss/rjQbYeUYitT7/T4 +XOyX5eZS41w0p0+2pMSG3w7CeI9s9Y4Np5gAuKHY70Z87PwtyIx71fqeBkw0Fr1 ft9hDo5ONmtgjn2IU5JL8KYWkp7j2o4n9hIJx/fcCBOxAdkjZfcnKsFdSZugMSyN lFAqlqgNKZPAomjIqmbj16matXGKvErmdXoiU/pcn6lFmQOf3JAYGFbxAK6u81Sp Ua8Bm523M7LBmJEfEraIi4CYLGqbTzcY7+FDXGd7Q8mWYAkGSqwcFKo+7Onz+WZo n33Z5KU1PQe7Edlb/M6w+6z2cGDgZdygirWU8gM9sRczCX6I72+lIdw= -----END CERTIFICATE-----Generated at Fri Sep 5 10:15:01 2025 by rpki-client