$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer File: AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer (raw, json) Hash identifier: 7Hn60cfS9QnQDo1vCM08Ds+Ypb+454ejM38lwxKogEc= Subject key identifier: AA:72:76:8F:DD:0C:61:5A:05:E4:A3:2A:06:F9:CC:B5:CA:7E:0D:93 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 76A28803D8D876DEDA35813DEE2AA0280678FDF7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.mft caRepository: rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 20 Jun 2025 04:11:44 +0000 Certificate not after: Fri 19 Jun 2026 04:16:44 +0000 Subordinate resources: IP: 160.25.174.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 12:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:a2:88:03:d8:d8:76:de:da:35:81:3d:ee:2a:a0:28:06:78:fd:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 20 04:11:44 2025 GMT Not After : Jun 19 04:16:44 2026 GMT Subject: CN=AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:ab:6e:ed:0f:a9:77:41:94:1a:0a:82:54: 82:0f:f3:78:11:f3:8d:3d:a5:4d:e6:1f:5e:9c:19: 78:04:06:be:0c:f1:4f:b9:0b:92:dc:ac:2a:1a:a4: 09:7d:fd:c5:70:ff:25:05:ee:91:1f:82:6d:fb:56: 3a:29:05:53:fa:90:9c:af:81:c9:c7:80:49:61:f9: e7:e3:37:17:a2:77:d0:e6:1a:c2:91:95:af:2d:33: 7c:5f:f9:27:78:61:44:fd:66:a3:e9:d7:f9:f5:43: 21:f2:75:25:94:83:47:6d:f7:de:48:84:10:d9:5c: 4a:cc:90:63:76:4c:87:16:81:fc:2d:06:8d:e8:0b: 50:ca:d4:b9:d5:89:46:a7:cd:5c:ee:d9:53:c5:c3: 51:70:44:8a:83:00:32:f7:9f:43:5a:ee:af:27:84: 6f:85:dd:b6:19:9a:6a:a5:c9:0c:59:c6:2a:a6:3a: ef:69:54:09:f9:80:3c:8b:cb:3b:6f:7d:4e:2c:15: 04:69:84:2b:72:cc:0d:ec:2a:d7:8c:7f:a0:28:01: 74:fe:35:47:c7:e9:00:ec:ba:81:ac:96:1e:8c:d9: e3:bd:a4:b3:33:1e:89:3f:72:df:0a:ac:21:19:ac: 35:df:c9:be:dc:8d:70:21:5b:98:36:9a:9c:ce:43: 12:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AA:72:76:8F:DD:0C:61:5A:05:E4:A3:2A:06:F9:CC:B5:CA:7E:0D:93 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.174.0/23 Signature Algorithm: sha256WithRSAEncryption 80:4a:62:a0:80:08:62:1a:eb:a9:82:fe:74:27:1f:42:b1:c5: 02:16:d5:d2:2c:66:89:ad:be:6a:7a:40:a7:c4:97:ec:57:29: ff:af:77:63:00:4c:8e:be:a4:f6:36:7d:02:ed:60:03:4d:2d: 7e:5d:51:d1:11:fd:24:e1:5a:ba:7c:3b:81:9a:aa:b5:76:1d: a8:dd:dd:9a:86:2c:bf:f9:e8:7e:cb:95:5e:26:45:b5:97:c0: d8:17:0f:b9:3d:ad:a4:e9:1d:dc:2d:60:d4:1c:54:04:e1:d5: cc:d1:36:b8:68:30:7c:a6:05:35:e2:04:00:0d:bf:10:87:53: 2a:66:b6:b2:bd:85:21:7d:81:06:88:08:34:ec:ee:43:1e:c3: be:dc:85:b7:50:82:d3:3b:c6:e4:1c:b2:c6:19:73:fd:79:70: e3:e7:90:0e:ea:90:88:2e:0f:fd:cc:06:77:5e:e4:03:cd:69: 86:df:2d:0e:ef:38:5c:00:a0:9a:3b:f0:f5:70:f4:18:76:09: 9b:4c:6c:ec:a1:c8:c1:09:b1:0e:66:9e:60:4f:6f:e7:68:d1: 9f:0a:35:8b:9d:ea:23:d1:85:8b:01:c3:78:6c:62:4b:26:34: 0c:fa:5f:95:91:22:30:6e:cf:7f:03:93:9f:89:85:73:f4:cd: 6a:dc:39:16 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdqKIA9jYdt7aNYE97iqgKAZ4/fcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDYyMDA0MTE0NFoX DTI2MDYxOTA0MTY0NFowMzExMC8GA1UEAxMoQUE3Mjc2OEZERDBDNjE1QTA1RTRB MzJBMDZGOUNDQjVDQTdFMEQ5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqfq27tD6l3QZQaCoJUgg/zeBHzjT2lTeYfXpwZeAQGvgzxT7kLktysKhqk CX39xXD/JQXukR+CbftWOikFU/qQnK+ByceASWH55+M3F6J30OYawpGVry0zfF/5 J3hhRP1mo+nX+fVDIfJ1JZSDR2333kiEENlcSsyQY3ZMhxaB/C0GjegLUMrUudWJ RqfNXO7ZU8XDUXBEioMAMvefQ1ruryeEb4XdthmaaqXJDFnGKqY672lUCfmAPIvL O299TiwVBGmEK3LMDewq14x/oCgBdP41R8fpAOy6gayWHozZ472kszMeiT9y3wqs IRmsNd/JvtyNcCFbmDaanM5DElkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKpydo/dDGFaBeSjKgb5zLXKfg2TMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lYzcyZWUzYy1lMTgwLTQyOTYtOWRhZC05NTAwZWZkOTQ4OTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjNzJlZTNj LWUxODAtNDI5Ni05ZGFkLTk1MDBlZmQ5NDg5MC8wL0FBNzI3NjhGREQwQzYxNUEw NUU0QTMyQTA2RjlDQ0I1Q0E3RTBEOTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgGa4wDQYJKoZIhvcNAQELBQADggEBAIBKYqCACGIa66mC/nQnH0KxxQIW1dIs Zomtvmp6QKfEl+xXKf+vd2MATI6+pPY2fQLtYANNLX5dUdER/SThWrp8O4GaqrV2 Hajd3ZqGLL/56H7LlV4mRbWXwNgXD7k9raTpHdwtYNQcVATh1czRNrhoMHymBTXi BAANvxCHUypmtrK9hSF9gQaICDTs7kMew77chbdQgtM7xuQcssYZc/15cOPnkA7q kIguD/3MBnde5APNaYbfLQ7vOFwAoJo78PVw9Bh2CZtMbOyhyMEJsQ5mnmBPb+do 0Z8KNYud6iPRhYsBw3hsYksmNAz6X5WRIjBuz38Dk5+JhXP0zWrcORY= -----END CERTIFICATE-----Generated at Mon Jun 30 11:31:31 2025 by rpki-client