$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A.cer File: C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A.cer (raw, json) Hash identifier: QQ5+3kBUg/V8wgcyODy0VxXeE9xlU/c6xSQ2eBTrgmo= Subject key identifier: C0:7F:5A:E2:D9:DC:99:D0:AF:28:B6:B1:54:21:0C:91:1E:FB:1D:8A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5ACB15B3B043C0438434111889973CC9CBFC2C91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/1/C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A.mft caRepository: rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 25 Jun 2025 11:34:15 +0000 Certificate not after: Wed 24 Jun 2026 11:39:15 +0000 Subordinate resources: IP: 2001:df4:cc0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:cb:15:b3:b0:43:c0:43:84:34:11:18:89:97:3c:c9:cb:fc:2c:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 25 11:34:15 2025 GMT Not After : Jun 24 11:39:15 2026 GMT Subject: CN=C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:67:6f:f6:ec:fa:55:0c:81:04:4c:46:ae:b3: 9e:53:fb:de:3f:df:4a:34:b1:62:bb:7b:6c:09:0b: 06:e2:e5:d6:1a:3d:a4:c8:5f:ec:79:c4:76:73:fd: 6c:1b:19:53:41:ef:d5:a2:82:4c:93:ae:46:8f:07: df:06:39:03:d0:c4:87:cd:b9:a3:e0:4b:78:9e:05: f6:14:71:5f:af:16:b9:d8:01:d5:4f:a7:12:ce:14: da:12:22:da:c9:11:9b:6c:11:ae:2b:0e:c5:a9:c3: 00:3f:c5:58:62:b7:50:17:aa:15:c0:34:47:3c:c9: 7d:7b:cb:c1:96:ea:0b:c0:45:40:7b:12:c9:a8:c1: 8d:fd:da:54:ba:36:15:50:49:27:5d:a2:99:6d:27: 3b:0e:8b:f2:a3:70:ba:df:ad:ec:68:04:d1:24:90: 30:e5:d5:e2:8f:45:15:ca:d7:e5:d5:27:7c:cc:32: 69:61:e7:00:a5:45:8f:a9:9b:f1:b7:71:bc:7a:e0: e9:8b:bf:94:7b:f8:cc:d1:60:43:84:7e:0c:fa:97: cc:2a:25:f4:88:d0:17:6c:eb:e8:82:3e:fd:72:eb: 7e:95:ff:00:80:ad:8f:a1:d5:5e:4d:75:6b:ea:e3: 07:2c:4e:fc:34:6f:78:d1:3b:c8:d7:ec:22:7b:3f: d3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C0:7F:5A:E2:D9:DC:99:D0:AF:28:B6:B1:54:21:0C:91:1E:FB:1D:8A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ce7d738e-2cc7-4bd2-bb28-9142e1baa0ba/1/C07F5AE2D9DC99D0AF28B6B154210C911EFB1D8A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:cc0::/48 Signature Algorithm: sha256WithRSAEncryption 58:16:37:98:74:2c:a3:f3:17:9d:27:19:14:7a:66:fc:b7:68: 24:55:62:27:9a:de:5c:6c:84:04:d2:ae:94:c8:15:5f:40:ad: 18:8f:b1:94:8d:0c:8a:cd:94:1e:b3:2d:0e:47:91:a5:fa:7e: 50:ed:fe:01:cf:80:69:be:0c:fb:f9:ba:16:ba:5a:eb:13:35: fd:8a:78:b6:13:71:fb:98:2a:6e:39:68:53:33:e5:16:eb:f2: 04:59:7d:94:fa:60:87:f1:b7:7d:ed:a0:80:65:23:63:45:3c: ec:81:fb:16:5b:64:12:51:f6:2f:da:6f:89:5b:7e:ee:0a:69: d9:5a:65:b0:2b:99:c9:9b:fc:dc:7d:68:ce:40:b6:58:37:f6: e0:47:71:f6:87:3c:51:d7:af:5f:03:d8:bc:83:39:0e:84:d7: e8:d3:61:a9:ac:40:7a:24:d7:47:33:9d:5e:54:b4:f6:fa:10: 18:48:07:34:9e:7d:84:32:e5:29:60:ad:58:39:15:9c:dc:9f: 12:92:e5:9d:37:54:43:4e:ca:3e:1f:e1:9d:42:0a:74:9f:30: b0:d5:6c:1c:b0:6f:0a:19:a5:1b:16:77:6e:0b:8a:f0:eb:7e: 54:44:ae:a7:a2:f4:7d:dc:52:a4:38:6b:45:c5:9e:07:b8:d7: be:e5:d3:30 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUWssVs7BDwEOENBEYiZc8ycv8LJEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyNTExMzQxNVoX DTI2MDYyNDExMzkxNVowMzExMC8GA1UEAxMoQzA3RjVBRTJEOURDOTlEMEFGMjhC NkIxNTQyMTBDOTExRUZCMUQ4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMlnb/bs+lUMgQRMRq6znlP73j/fSjSxYrt7bAkLBuLl1ho9pMhf7HnEdnP9 bBsZU0Hv1aKCTJOuRo8H3wY5A9DEh825o+BLeJ4F9hRxX68WudgB1U+nEs4U2hIi 2skRm2wRrisOxanDAD/FWGK3UBeqFcA0RzzJfXvLwZbqC8BFQHsSyajBjf3aVLo2 FVBJJ12imW0nOw6L8qNwut+t7GgE0SSQMOXV4o9FFcrX5dUnfMwyaWHnAKVFj6mb 8bdxvHrg6Yu/lHv4zNFgQ4R+DPqXzCol9IjQF2zr6II+/XLrfpX/AICtj6HVXk11 a+rjByxO/DRveNE7yNfsIns/08UCAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMB/WuLZ3JnQryi2sVQhDJEe+x2KMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZTdkNzM4ZS0yY2M3LTRiZDItYmIyOC05MTQyZTFiYWEwYmEvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlN2Q3Mzhl LTJjYzctNGJkMi1iYjI4LTkxNDJlMWJhYTBiYS8xL0MwN0Y1QUUyRDlEQzk5RDBB RjI4QjZCMTU0MjEwQzkxMUVGQjFEOEEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ30DMAwDQYJKoZIhvcNAQELBQADggEBAFgWN5h0LKPzF50nGRR6Zvy3aCRV Yiea3lxshATSrpTIFV9ArRiPsZSNDIrNlB6zLQ5HkaX6flDt/gHPgGm+DPv5uha6 WusTNf2KeLYTcfuYKm45aFMz5Rbr8gRZfZT6YIfxt33toIBlI2NFPOyB+xZbZBJR 9i/ab4lbfu4KadlaZbArmcmb/Nx9aM5Atlg39uBHcfaHPFHXr18D2LyDOQ6E1+jT YamsQHok10cznV5UtPb6EBhIBzSefYQy5SlgrVg5FZzcnxKS5Z03VENOyj4f4Z1C CnSfMLDVbBywbwoZpRsWd24LivDrflRErqei9H3cUqQ4a0XFnge4177l0zA= -----END CERTIFICATE-----Generated at Sun Jun 29 13:41:57 2025 by rpki-client