$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F9CF581400AB7EE53AB913B25561ED007481F16F.cer File: F9CF581400AB7EE53AB913B25561ED007481F16F.cer (raw, json) Hash identifier: HQldFC2PJL/+rmXDJGfJqkfIfyiWvZz9WYCuOqmPWUU= Subject key identifier: F9:CF:58:14:00:AB:7E:E5:3A:B9:13:B2:55:61:ED:00:74:81:F1:6F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0B8501A9565306F0689426224EFCC4FE7088463B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/360b9a87-8058-466f-b4a9-a777b4681ae1/0/F9CF581400AB7EE53AB913B25561ED007481F16F.mft caRepository: rsync://repo-rpki.idnic.net/repo/360b9a87-8058-466f-b4a9-a777b4681ae1/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Oct 2023 11:23:09 +0000 Certificate not after: Tue 01 Oct 2024 11:28:09 +0000 Subordinate resources: IP: 103.18.114.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:85:01:a9:56:53:06:f0:68:94:26:22:4e:fc:c4:fe:70:88:46:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 3 11:23:09 2023 GMT Not After : Oct 1 11:28:09 2024 GMT Subject: CN=F9CF581400AB7EE53AB913B25561ED007481F16F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a6:f0:d6:9a:0a:da:22:be:be:23:63:0a:5c: e3:2a:c4:85:8d:da:aa:59:b0:6b:37:15:ee:a2:cf: 67:b4:10:db:99:03:4d:5d:42:ae:2b:25:db:a7:f5: a7:ed:d4:e0:3a:35:5e:c6:8b:36:ad:32:e6:08:e9: 49:fd:b4:88:0c:a5:7b:8f:3c:90:af:1f:a6:eb:07: 74:25:ef:1b:32:ff:4a:c3:d2:e8:03:f4:54:05:af: d6:f1:74:54:1f:29:22:4c:5c:42:0c:cb:de:f4:b2: 42:e5:db:03:b4:aa:64:8b:9f:9e:af:f6:68:bb:03: cf:09:8f:9f:38:e0:64:46:85:b0:2a:ba:0d:ac:d7: 44:f9:1d:5c:93:56:4c:a0:27:18:00:c6:b0:a1:1a: f1:31:f1:d3:94:c7:ed:8b:61:49:5b:da:f6:1a:25: 5d:52:ed:99:9e:13:75:a3:cc:1f:3e:53:5b:b1:76: f0:52:d0:55:b2:26:f2:e0:ce:25:58:68:7f:a7:28: fb:26:64:81:12:1c:03:6d:2e:ea:4f:6b:be:13:fa: f5:ba:7b:bf:e6:fe:b8:94:05:e2:ac:67:e8:d5:3d: 93:53:ac:89:52:50:65:f3:7f:e3:a1:a0:b7:76:ec: fb:68:08:1f:49:1b:35:7d:f2:db:c3:97:e8:a2:d2: 7e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F9:CF:58:14:00:AB:7E:E5:3A:B9:13:B2:55:61:ED:00:74:81:F1:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/360b9a87-8058-466f-b4a9-a777b4681ae1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/360b9a87-8058-466f-b4a9-a777b4681ae1/0/F9CF581400AB7EE53AB913B25561ED007481F16F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.114.0/23 Signature Algorithm: sha256WithRSAEncryption 00:c0:1c:40:0f:e4:14:df:e7:bd:ec:b5:7d:d6:2b:7e:22:30: 5a:2d:e7:12:e8:10:58:ce:20:52:2b:c6:f7:c5:24:23:df:25: b8:e2:7f:c3:d6:a1:d1:de:fa:1a:0b:cb:57:7b:7e:99:04:ca: 26:15:6e:89:5b:52:06:6e:bc:f4:11:02:9e:56:74:66:c4:be: 04:94:fb:a3:9a:2e:64:fb:af:5e:67:a2:54:aa:6b:10:a9:5a: 5c:a8:05:70:f5:06:f6:f7:8f:c9:16:e0:5b:e5:5c:da:f1:d0: 0c:85:93:73:60:a2:56:76:d1:04:73:fd:bf:4c:23:aa:39:1b: 92:27:ed:fc:e4:41:12:40:ac:39:a6:1e:70:fb:ac:ff:b8:05: 1d:89:9b:20:1a:fb:ff:b6:23:e9:94:55:bb:76:bd:d8:c8:d5: 23:7c:16:55:fc:30:3d:b7:f5:c9:47:3d:f8:24:ed:08:3b:56: 29:2d:de:a4:eb:bf:cb:3b:ec:59:a7:92:75:55:60:ef:3f:99: 61:6d:d3:7e:22:77:a4:f6:5e:bd:3b:75:0e:d7:ad:d0:95:b6: 0c:96:80:88:3a:b4:ea:00:77:64:88:e4:2e:9a:2d:d8:65:b6: fd:04:81:e2:ee:d0:e7:ca:34:bc:40:07:b2:71:b0:72:3c:76: 22:80:c2:b5 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUC4UBqVZTBvBolCYiTvzE/nCIRjswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwMzExMjMwOVoX DTI0MTAwMTExMjgwOVowMzExMC8GA1UEAxMoRjlDRjU4MTQwMEFCN0VFNTNBQjkx M0IyNTU2MUVEMDA3NDgxRjE2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANSm8NaaCtoivr4jYwpc4yrEhY3aqlmwazcV7qLPZ7QQ25kDTV1Crisl26f1 p+3U4Do1XsaLNq0y5gjpSf20iAyle488kK8fpusHdCXvGzL/SsPS6AP0VAWv1vF0 VB8pIkxcQgzL3vSyQuXbA7SqZIufnq/2aLsDzwmPnzjgZEaFsCq6DazXRPkdXJNW TKAnGADGsKEa8THx05TH7YthSVva9holXVLtmZ4TdaPMHz5TW7F28FLQVbIm8uDO JVhof6co+yZkgRIcA20u6k9rvhP69bp7v+b+uJQF4qxn6NU9k1OsiVJQZfN/46Gg t3bs+2gIH0kbNX3y28OX6KLSfoMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPnPWBQAq37lOrkTslVh7QB0gfFvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zNjBiOWE4Ny04MDU4LTQ2NmYtYjRhOS1hNzc3YjQ2ODFhZTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2MGI5YTg3 LTgwNTgtNDY2Zi1iNGE5LWE3NzdiNDY4MWFlMS8wL0Y5Q0Y1ODE0MDBBQjdFRTUz QUI5MTNCMjU1NjFFRDAwNzQ4MUYxNkYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnEnIwDQYJKoZIhvcNAQELBQADggEBAADAHEAP5BTf573stX3WK34iMFot5xLo EFjOIFIrxvfFJCPfJbjif8PWodHe+hoLy1d7fpkEyiYVbolbUgZuvPQRAp5WdGbE vgSU+6OaLmT7r15nolSqaxCpWlyoBXD1Bvb3j8kW4FvlXNrx0AyFk3NgolZ20QRz /b9MI6o5G5In7fzkQRJArDmmHnD7rP+4BR2JmyAa+/+2I+mUVbt2vdjI1SN8FlX8 MD239clHPfgk7Qg7Vikt3qTrv8s77FmnknVVYO8/mWFt034id6T2Xr07dQ7XrdCV tgyWgIg6tOoAd2SI5C6aLdhltv0EgeLu0OfKNLxAB7JxsHI8diKAwrU= -----END CERTIFICATE-----Generated at Wed May 8 07:45:31 2024 by rpki-client on console-ams.rpki-client.org