$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer File: 2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.cer (raw, json) Hash identifier: 0pzWJOQvNJMmTnacyhx5/lx9lVUITkrK9lYJ5Khkc+k= Subject key identifier: 29:76:AD:C7:44:8B:F0:CA:9B:57:DC:D7:88:49:A1:E0:F9:5F:2B:45 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 598F0EE3C60AE2BD8DBE22ECB8860E33F87048DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.mft caRepository: rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 26 Jun 2025 12:23:59 +0000 Certificate not after: Thu 25 Jun 2026 12:28:59 +0000 Subordinate resources: IP: 160.25.178.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 19:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:8f:0e:e3:c6:0a:e2:bd:8d:be:22:ec:b8:86:0e:33:f8:70:48:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 26 12:23:59 2025 GMT Not After : Jun 25 12:28:59 2026 GMT Subject: CN=2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:36:83:18:22:b2:be:6e:66:bd:88:01:d2:03: d4:c4:ec:d0:00:35:4c:ce:52:a4:48:a6:7a:c3:10: 9c:22:73:56:92:8a:cd:ad:9e:30:b6:2b:bf:90:a5: 91:67:fa:3b:7d:f9:06:1e:90:04:d5:b1:23:b3:48: 99:34:c6:86:e4:03:d7:63:b0:72:bb:17:96:95:f7: 0d:23:e5:4f:59:33:3f:c1:2b:08:21:a9:50:fd:f6: ff:0d:e3:e4:70:d5:a1:2d:4b:2e:1c:e2:e7:2a:11: f8:72:24:58:47:74:56:53:99:9d:7e:c4:08:b8:4b: 70:76:cc:4c:82:25:df:94:66:b2:7b:ab:a3:7e:1b: 60:4d:d1:7b:9e:1c:56:60:c6:a7:60:17:1b:30:07: e0:3c:b9:7e:02:d6:ee:f8:a4:32:5c:cf:8b:fa:24: eb:e3:9d:6c:5a:71:1e:8b:08:84:38:fc:50:c9:27: 2f:be:e4:f1:f7:87:41:fe:85:63:b5:c4:4b:db:18: 8b:10:dd:c8:07:44:38:23:30:b2:e2:5e:5a:61:00: 88:74:1c:ee:7a:9c:f7:aa:66:ef:f6:7f:e9:86:20: 63:ce:e8:f2:dd:f5:68:98:b1:16:c3:ef:ec:be:d5: 79:10:75:c4:2a:d6:5a:af:8c:ba:7d:8e:2c:72:0b: 4f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 29:76:AD:C7:44:8B:F0:CA:9B:57:DC:D7:88:49:A1:E0:F9:5F:2B:45 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/87c432e0-dc3e-42cc-bcc0-629b16206c9a/0/2976ADC7448BF0CA9B57DCD78849A1E0F95F2B45.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.178.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:57:28:9d:98:f0:47:9f:38:1d:1a:c9:b0:e7:ff:45:e7:b7: 09:12:7b:17:2f:8b:0f:50:8b:55:37:2f:8e:9f:45:5e:95:e5: e0:4a:f5:95:fc:da:57:67:e6:50:31:2c:d4:c6:28:3c:5e:61: 01:a9:dd:6e:cd:cf:6d:0f:56:0f:aa:59:dd:83:36:25:b7:a1: 6e:51:ac:88:52:1a:0b:c3:6a:69:a5:fc:0d:e3:94:00:89:1c: 04:19:2c:d6:a3:3c:eb:7a:8d:6e:00:e1:e1:a9:37:9f:8b:58: 14:25:00:38:d6:43:4d:c1:6c:a3:58:27:ad:b2:5f:cf:e4:fb: 49:6d:c9:0d:be:bc:74:5f:9e:9c:da:4d:0b:ca:23:9e:ba:99: 07:c8:de:9c:5b:8d:aa:da:96:fd:e9:21:70:41:a3:45:9a:8b: c6:52:5a:c2:6a:b0:6d:47:d7:ae:40:e1:b1:60:20:6c:dd:86: 47:d4:d8:ef:c7:aa:5a:07:8e:61:b9:5e:e7:d4:e7:69:bf:c1: db:41:e4:7d:30:c0:5b:16:ab:b8:ec:78:b2:ad:d0:29:c3:7e: ff:80:24:13:15:5c:43:13:91:c0:91:02:4a:d3:ea:e1:dd:f3: 36:83:63:e6:e5:a6:2d:71:7b:85:78:4b:bb:60:17:67:20:de: 91:b9:d2:8d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWY8O48YK4r2NviLsuIYOM/hwSNswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDYyNjEyMjM1OVoX DTI2MDYyNTEyMjg1OVowMzExMC8GA1UEAxMoMjk3NkFEQzc0NDhCRjBDQTlCNTdE Q0Q3ODg0OUExRTBGOTVGMkI0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALA2gxgisr5uZr2IAdID1MTs0AA1TM5SpEimesMQnCJzVpKKza2eMLYrv5Cl kWf6O335Bh6QBNWxI7NImTTGhuQD12OwcrsXlpX3DSPlT1kzP8ErCCGpUP32/w3j 5HDVoS1LLhzi5yoR+HIkWEd0VlOZnX7ECLhLcHbMTIIl35Rmsnuro34bYE3Re54c VmDGp2AXGzAH4Dy5fgLW7vikMlzPi/ok6+OdbFpxHosIhDj8UMknL77k8feHQf6F Y7XES9sYixDdyAdEOCMwsuJeWmEAiHQc7nqc96pm7/Z/6YYgY87o8t31aJixFsPv 7L7VeRB1xCrWWq+Mun2OLHILT9ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCl2rcdEi/DKm1fc14hJoeD5XytFMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84N2M0MzJlMC1kYzNlLTQyY2MtYmNjMC02MjliMTYyMDZjOWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3YzQzMmUw LWRjM2UtNDJjYy1iY2MwLTYyOWIxNjIwNmM5YS8wLzI5NzZBREM3NDQ4QkYwQ0E5 QjU3RENENzg4NDlBMUUwRjk1RjJCNDUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgGbIwDQYJKoZIhvcNAQELBQADggEBAItXKJ2Y8EefOB0aybDn/0XntwkSexcv iw9Qi1U3L46fRV6V5eBK9ZX82ldn5lAxLNTGKDxeYQGp3W7Nz20PVg+qWd2DNiW3 oW5RrIhSGgvDamml/A3jlACJHAQZLNajPOt6jW4A4eGpN5+LWBQlADjWQ03BbKNY J62yX8/k+0ltyQ2+vHRfnpzaTQvKI566mQfI3pxbjaralv3pIXBBo0Wai8ZSWsJq sG1H165A4bFgIGzdhkfU2O/HqloHjmG5XufU52m/wdtB5H0wwFsWq7jseLKt0CnD fv+AJBMVXEMTkcCRAkrT6uHd8zaDY+blpi1xe4V4S7tgF2cg3pG50o0= -----END CERTIFICATE-----Generated at Wed Jul 2 06:56:47 2025 by rpki-client