$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BF00BBF622014234CC4A26C23F64AC5C143802B6.cer File: BF00BBF622014234CC4A26C23F64AC5C143802B6.cer (raw, json) Hash identifier: JnTog3AiUBhC6oUcTc81vMpfJW+mnH7ClOlYl+I4PCM= Subject key identifier: BF:00:BB:F6:22:01:42:34:CC:4A:26:C2:3F:64:AC:5C:14:38:02:B6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2C86A1114C3DCB48430097CE07AD9836494E6550 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/46cbb6ae-138e-4d2b-93f1-e6b23e6fe8fb/0/BF00BBF622014234CC4A26C23F64AC5C143802B6.mft caRepository: rsync://repo-rpki.idnic.net/repo/46cbb6ae-138e-4d2b-93f1-e6b23e6fe8fb/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 05 Mar 2026 09:29:23 +0000 Certificate not after: Thu 04 Mar 2027 09:34:23 +0000 Subordinate resources: IP: 103.169.8.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 06:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:86:a1:11:4c:3d:cb:48:43:00:97:ce:07:ad:98:36:49:4e:65:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 5 09:29:23 2026 GMT Not After : Mar 4 09:34:23 2027 GMT Subject: CN=BF00BBF622014234CC4A26C23F64AC5C143802B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:de:38:7b:be:1f:c0:bc:db:a9:7c:2b:af:23: 9c:a8:fe:08:b0:5b:ef:30:52:6a:57:cc:88:e6:13: 35:59:14:95:7a:21:ca:bf:34:43:d3:79:24:ff:08: 34:c1:28:be:a5:52:bc:4f:ac:84:fe:10:21:10:17: 64:e2:3f:7f:76:61:56:d6:d7:10:26:6b:b8:99:f8: 1d:b3:82:56:5f:b6:09:60:94:cf:7e:17:17:65:62: 1e:73:96:c4:22:61:b6:b4:29:75:87:79:a7:7c:1e: 8f:ef:8a:27:82:06:b1:da:44:68:15:b3:fd:67:50: 43:a8:d6:f8:e6:5b:32:71:0f:53:56:13:9a:50:1b: 1f:9f:ea:5b:e4:2d:01:4a:ad:03:71:e2:3b:b2:6d: 85:dd:95:c9:81:8f:7d:c9:3e:55:ee:f8:12:3c:ba: a6:c6:ec:9f:0d:ae:a6:b6:21:64:33:79:53:99:e7: fd:2d:c9:6d:0e:f3:c5:b0:70:93:27:79:50:9c:a6: 0a:54:cb:5a:aa:da:e4:cc:e1:96:43:ab:73:d1:2c: 7e:37:49:2c:58:9a:f0:ea:b1:77:f5:c3:53:15:f5: 94:88:00:3c:da:0f:1c:c3:c3:c5:e8:ff:db:59:7a: b6:3a:15:fe:e7:3e:f5:e1:95:af:4c:aa:f7:3c:2e: f6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BF:00:BB:F6:22:01:42:34:CC:4A:26:C2:3F:64:AC:5C:14:38:02:B6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/46cbb6ae-138e-4d2b-93f1-e6b23e6fe8fb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/46cbb6ae-138e-4d2b-93f1-e6b23e6fe8fb/0/BF00BBF622014234CC4A26C23F64AC5C143802B6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.8.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:2a:8e:bc:6f:fc:ee:1d:7d:35:c3:6f:89:b4:1e:31:d9:35: 7f:32:b0:c4:e0:0e:04:ad:24:71:1d:55:e0:30:c2:b1:d6:91: 58:ae:2a:95:bd:40:50:18:c3:d9:45:1a:b3:4d:b8:a7:88:71: b6:34:a4:9e:e9:92:88:19:f6:0d:ea:e2:6a:57:c3:dd:2c:c2: 58:5f:80:a6:de:58:c9:90:2c:60:a2:ac:c9:ba:8d:ad:71:a3: 00:7a:73:2e:c0:e7:96:00:08:73:6a:1f:f1:e5:ca:03:a1:6f: 2c:14:94:c4:cd:04:76:fd:f4:cc:c5:fa:1c:61:9c:62:1e:4e: d4:74:60:72:a8:37:69:5d:4b:28:8d:cb:f8:7a:03:df:b8:b7: 93:d9:7d:bc:4e:25:d3:e8:30:a1:51:11:4b:38:38:de:00:d0: 93:4f:26:6a:ea:7d:5e:31:bd:a4:7f:18:c0:aa:2c:d1:35:04: 5c:3d:43:34:54:b1:d5:cf:39:07:ba:cc:fa:16:d4:7a:7d:52: 95:f1:d9:06:1b:f2:b8:1e:3d:b2:17:47:04:41:ab:a6:2e:f9: 08:4b:b1:86:f6:6f:dc:7e:88:82:9e:84:48:d5:2f:9e:01:5a: fd:5a:d1:78:71:3c:cc:43:8e:81:1b:b1:14:a2:e3:1d:d4:d4: a6:62:e5:b5 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULIahEUw9y0hDAJfOB62YNklOZVAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMwNTA5MjkyM1oX DTI3MDMwNDA5MzQyM1owMzExMC8GA1UEAxMoQkYwMEJCRjYyMjAxNDIzNENDNEEy NkMyM0Y2NEFDNUMxNDM4MDJCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPeOHu+H8C826l8K68jnKj+CLBb7zBSalfMiOYTNVkUlXohyr80Q9N5JP8I NMEovqVSvE+shP4QIRAXZOI/f3ZhVtbXECZruJn4HbOCVl+2CWCUz34XF2ViHnOW xCJhtrQpdYd5p3wej++KJ4IGsdpEaBWz/WdQQ6jW+OZbMnEPU1YTmlAbH5/qW+Qt AUqtA3HiO7Jthd2VyYGPfck+Ve74Ejy6psbsnw2uprYhZDN5U5nn/S3JbQ7zxbBw kyd5UJymClTLWqra5MzhlkOrc9EsfjdJLFia8Oqxd/XDUxX1lIgAPNoPHMPDxej/ 21l6tjoV/uc+9eGVr0yq9zwu9gkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFL8Au/YiAUI0zEomwj9krFwUOAK2MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NmNiYjZhZS0xMzhlLTRkMmItOTNmMS1lNmIyM2U2ZmU4ZmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ2Y2JiNmFl LTEzOGUtNGQyYi05M2YxLWU2YjIzZTZmZThmYi8wL0JGMDBCQkY2MjIwMTQyMzRD QzRBMjZDMjNGNjRBQzVDMTQzODAyQjYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqQgwDQYJKoZIhvcNAQELBQADggEBAGwqjrxv/O4dfTXDb4m0HjHZNX8ysMTg DgStJHEdVeAwwrHWkViuKpW9QFAYw9lFGrNNuKeIcbY0pJ7pkogZ9g3q4mpXw90s wlhfgKbeWMmQLGCirMm6ja1xowB6cy7A55YACHNqH/HlygOhbywUlMTNBHb99MzF +hxhnGIeTtR0YHKoN2ldSyiNy/h6A9+4t5PZfbxOJdPoMKFREUs4ON4A0JNPJmrq fV4xvaR/GMCqLNE1BFw9QzRUsdXPOQe6zPoW1Hp9UpXx2QYb8rgePbIXRwRBq6Yu +QhLsYb2b9x+iIKehEjVL54BWv1a0XhxPMxDjoEbsRSi4x3U1KZi5bU= -----END CERTIFICATE-----Generated at Thu Mar 26 05:38:09 2026 by rpki-client