$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer File: CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer (raw, json) Hash identifier: UqRZGzxQ1UmTe6GqzMs2JnjvtjKklq1NYd4uFckWD6o= Subject key identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 782C680D86D6E4C86BB5F9BD632E140643ADF6B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft caRepository: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 14 Mar 2025 02:17:24 +0000 Certificate not after: Fri 13 Mar 2026 02:22:24 +0000 Subordinate resources: IP: 103.187.162.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:2c:68:0d:86:d6:e4:c8:6b:b5:f9:bd:63:2e:14:06:43:ad:f6:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 14 02:17:24 2025 GMT Not After : Mar 13 02:22:24 2026 GMT Subject: CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b2:5b:41:8b:3b:a2:8d:9c:1f:85:a6:74:b6: 09:cb:4e:06:54:23:b5:ad:7d:47:97:3e:e8:b7:fa: c6:76:50:c4:cb:57:1c:99:11:83:a9:c8:21:c9:3b: 44:22:89:32:81:bb:90:3e:c5:2f:aa:45:45:83:93: ab:e1:7b:3f:6a:5c:e8:f3:f0:64:6b:e5:8e:47:cb: ee:57:f8:76:5b:b3:7e:6a:57:5c:49:a8:27:e3:3c: 10:d4:6e:1f:89:5c:a1:1a:75:15:2e:a0:9a:f1:56: 4a:00:d8:5d:42:b8:5f:dc:e5:60:0b:12:17:7b:d4: 03:62:20:c8:32:e2:36:62:31:6f:67:9c:42:45:21: ab:19:25:66:8d:cb:81:e7:2d:a0:de:21:21:a2:3c: 93:f1:39:b5:e5:0e:fd:64:49:a5:85:03:32:f6:7a: 08:2c:dc:ea:ce:27:5b:cf:3c:1c:d0:4a:86:60:0f: 14:e6:2d:18:1b:5e:88:3f:5c:01:f2:c8:c5:28:9f: 44:f7:27:23:81:60:8f:03:6e:d9:62:4b:3c:c6:9f: 6f:81:20:56:d1:5d:32:e5:a4:1d:0a:af:24:82:e5: 13:27:98:0c:99:66:29:1c:8e:ac:f0:b9:68:a2:44: d0:44:16:cb:ee:74:c7:9d:25:ea:b6:67:54:0a:0b: f4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.162.0/23 Signature Algorithm: sha256WithRSAEncryption 49:68:28:e2:76:f1:39:7e:f9:7e:ef:2e:d4:50:3b:b1:b5:7f: 83:8d:fb:24:da:a6:7a:74:cb:05:34:76:4a:a2:a5:af:7c:fe: b2:f9:13:a8:25:b4:77:8b:50:94:29:40:7f:a1:83:01:b8:51: 0f:ea:6b:86:5b:71:c0:a2:a7:17:9d:50:74:40:fc:17:5e:72: 1e:70:92:c2:08:a4:ab:88:77:37:92:85:6c:74:a1:5a:8a:b1: 05:eb:fc:d8:c4:97:a6:a4:4b:0f:bd:f2:8e:dd:21:9a:0f:a7: 94:98:88:76:03:24:44:99:0e:57:3c:03:c1:5f:94:d2:bc:b7: 89:66:77:8a:9c:44:46:ae:b8:25:1c:44:18:52:f2:ea:83:f1: 8b:b9:37:21:32:3a:63:dd:e6:2a:12:d7:9d:d9:0a:1e:85:11: 6a:ec:21:4f:75:d3:50:83:8d:14:db:d3:9c:23:ec:75:91:08: 7f:56:42:dc:da:a5:06:71:0c:d1:3f:ba:72:f3:48:89:e6:64: c0:c2:71:ee:0e:58:a1:e3:f8:84:cc:27:8d:c4:9b:70:0b:3e: b1:02:fa:0b:c3:05:f6:c7:a3:75:69:2f:27:bd:fc:ff:5d:4a: 95:7b:54:27:77:5e:29:3e:2e:09:70:b4:3b:82:36:81:3b:75: ca:b8:0c:7e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUeCxoDYbW5Mhrtfm9Yy4UBkOt9rcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMxNDAyMTcyNFoX DTI2MDMxMzAyMjIyNFowMzExMC8GA1UEAxMoQ0ZFNTlENEM3QTYxM0FCNDNGQzhG NjhFODk3NEFCQzgyNzdCOTlEMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOOyW0GLO6KNnB+FpnS2CctOBlQjta19R5c+6Lf6xnZQxMtXHJkRg6nIIck7 RCKJMoG7kD7FL6pFRYOTq+F7P2pc6PPwZGvljkfL7lf4dluzfmpXXEmoJ+M8ENRu H4lcoRp1FS6gmvFWSgDYXUK4X9zlYAsSF3vUA2IgyDLiNmIxb2ecQkUhqxklZo3L gectoN4hIaI8k/E5teUO/WRJpYUDMvZ6CCzc6s4nW888HNBKhmAPFOYtGBteiD9c AfLIxSifRPcnI4FgjwNu2WJLPMafb4EgVtFdMuWkHQqvJILlEyeYDJlmKRyOrPC5 aKJE0EQWy+50x50l6rZnVAoL9L8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFM/lnUx6YTq0P8j2jol0q8gne5nRMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iMjVjN2UxZC04MmU4LTQxMDAtYjQzNS05OTU0MjcyZmI3YTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNWM3ZTFk LTgyZTgtNDEwMC1iNDM1LTk5NTQyNzJmYjdhOC8wL0NGRTU5RDRDN0E2MTNBQjQz RkM4RjY4RTg5NzRBQkM4Mjc3Qjk5RDEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnu6IwDQYJKoZIhvcNAQELBQADggEBAEloKOJ28Tl++X7vLtRQO7G1f4ON+yTa pnp0ywU0dkqipa98/rL5E6gltHeLUJQpQH+hgwG4UQ/qa4ZbccCipxedUHRA/Bde ch5wksIIpKuIdzeShWx0oVqKsQXr/NjEl6akSw+98o7dIZoPp5SYiHYDJESZDlc8 A8FflNK8t4lmd4qcREauuCUcRBhS8uqD8Yu5NyEyOmPd5ioS153ZCh6FEWrsIU91 01CDjRTb05wj7HWRCH9WQtzapQZxDNE/unLzSInmZMDCce4OWKHj+ITMJ43Em3AL PrEC+gvDBfbHo3VpLye9/P9dSpV7VCd3Xik+LglwtDuCNoE7dcq4DH4= -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:39 2025 by rpki-client