$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer File: D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer (raw, json) Hash identifier: gZ4XwdgXMoBx56bHD4Di1OZGUpy9K4PZ9maoMNE/yg0= Subject key identifier: D7:28:6D:5F:5B:9A:DD:4C:C1:66:AD:32:51:96:92:F0:C8:90:2B:29 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 36DB573686FC30C2F942B26CC8116C7CA97575CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.mft caRepository: rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 05 Mar 2026 11:48:31 +0000 Certificate not after: Thu 04 Mar 2027 11:53:31 +0000 Subordinate resources: IP: 103.169.198.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:db:57:36:86:fc:30:c2:f9:42:b2:6c:c8:11:6c:7c:a9:75:75:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 5 11:48:31 2026 GMT Not After : Mar 4 11:53:31 2027 GMT Subject: CN=D7286D5F5B9ADD4CC166AD32519692F0C8902B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:b1:8b:db:35:fb:0e:55:2a:c7:ca:bf:d8: 2d:86:e0:ea:26:aa:93:49:b1:87:a3:c4:a8:04:b7: 1c:b0:80:44:e5:f5:02:36:04:60:e7:c2:22:b0:73: c4:6c:74:b4:ac:1f:ef:0d:cb:31:b0:2f:01:1f:21: c0:c6:08:67:f0:28:76:73:39:0e:12:6f:0b:9a:c5: 17:a2:c6:42:eb:00:00:b7:da:6a:64:b7:65:d5:87: 74:d9:64:82:ad:dc:21:39:82:2f:7f:ff:56:ab:0a: 12:22:66:5b:a7:8b:66:72:7d:2c:5b:d2:fd:db:e8: 91:b7:53:78:fe:8e:6c:11:f5:d3:3c:32:6d:0e:f4: 89:dd:be:9b:0a:4d:b2:06:e2:76:d1:10:64:1b:4c: f9:05:cb:26:8c:49:b7:4c:2e:b8:3e:de:d5:12:23: 4b:a5:70:1f:24:35:b9:5a:8d:f4:47:b7:e5:a0:ba: d0:3c:3c:6a:fb:20:73:9b:4f:51:7e:da:73:6e:c9: 32:2a:15:c4:23:f5:83:0d:ff:48:82:5c:11:ce:4c: 25:17:16:e4:48:78:8e:0a:b4:12:de:35:70:74:e5: a7:f4:07:e4:f1:44:c4:5e:6b:3d:0b:04:19:31:02: 4f:1d:e6:a3:fe:d4:61:49:9a:a4:5a:7d:05:8b:87: a5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D7:28:6D:5F:5B:9A:DD:4C:C1:66:AD:32:51:96:92:F0:C8:90:2B:29 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.198.0/24 Signature Algorithm: sha256WithRSAEncryption 35:d2:71:4b:26:fd:a1:b1:96:ad:e8:10:09:40:8a:d5:fb:c5: 87:bb:65:14:65:65:9e:70:da:8c:25:19:d2:e7:ed:46:85:83: ef:11:ff:b4:fe:37:ac:b7:0d:0a:0c:56:d8:88:57:6c:c3:15: 4f:c5:d5:29:ff:cd:98:43:bc:cb:85:1b:bf:3e:a3:e4:99:bb: f4:47:2d:65:09:b7:c5:90:a5:f1:c6:2e:61:fe:44:8e:9a:b5: 70:20:b9:f3:c8:46:71:b2:1c:02:d7:77:c5:40:b1:7a:ab:33: 89:fb:ad:b2:54:2c:a9:7c:94:b9:97:94:f7:ee:c5:93:4f:7b: e3:cc:c2:b0:0a:78:f7:3d:b3:41:b2:dc:09:5d:11:3f:36:3b: 72:23:07:f5:e9:ac:e9:4d:16:29:bc:7e:8a:fe:50:83:df:0b: 7e:b4:4a:c9:ef:e7:08:ee:97:b6:32:a4:0f:b4:4f:47:bd:d1: 94:2f:e9:d6:90:e9:3b:92:a4:f6:c8:02:1b:66:e7:95:f0:b0: 5f:d0:27:c2:96:f7:78:a2:97:56:01:b9:b6:cd:ee:80:a5:43: 4c:6c:99:be:ea:71:7e:28:6a:62:ba:5c:c3:db:fd:51:39:e0: 65:4a:32:2a:e5:ef:04:a3:47:de:72:ac:a5:40:59:c2:2d:e4: 27:24:55:81 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUNttXNob8MML5QrJsyBFsfKl1dcowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDMwNTExNDgzMVoX DTI3MDMwNDExNTMzMVowMzExMC8GA1UEAxMoRDcyODZENUY1QjlBREQ0Q0MxNjZB RDMyNTE5NjkyRjBDODkwMkIyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL23sYvbNfsOVSrHyr/YLYbg6iaqk0mxh6PEqAS3HLCAROX1AjYEYOfCIrBz xGx0tKwf7w3LMbAvAR8hwMYIZ/AodnM5DhJvC5rFF6LGQusAALfaamS3ZdWHdNlk gq3cITmCL3//VqsKEiJmW6eLZnJ9LFvS/dvokbdTeP6ObBH10zwybQ70id2+mwpN sgbidtEQZBtM+QXLJoxJt0wuuD7e1RIjS6VwHyQ1uVqN9Ee35aC60Dw8avsgc5tP UX7ac27JMioVxCP1gw3/SIJcEc5MJRcW5Eh4jgq0Et41cHTlp/QH5PFExF5rPQsE GTECTx3mo/7UYUmapFp9BYuHpdkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNcobV9bmt1MwWatMlGWkvDIkCspMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NTI2MDY0MS1iY2UyLTQ0NWMtOWRlNS0zNzBhNzg3Zjk1MzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1MjYwNjQx LWJjZTItNDQ1Yy05ZGU1LTM3MGE3ODdmOTUzMC8wL0Q3Mjg2RDVGNUI5QURENEND MTY2QUQzMjUxOTY5MkYwQzg5MDJCMjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnqcYwDQYJKoZIhvcNAQELBQADggEBADXScUsm/aGxlq3oEAlAitX7xYe7ZRRl ZZ5w2owlGdLn7UaFg+8R/7T+N6y3DQoMVtiIV2zDFU/F1Sn/zZhDvMuFG78+o+SZ u/RHLWUJt8WQpfHGLmH+RI6atXAgufPIRnGyHALXd8VAsXqrM4n7rbJULKl8lLmX lPfuxZNPe+PMwrAKePc9s0Gy3AldET82O3IjB/XprOlNFim8for+UIPfC360Ssnv 5wjul7YypA+0T0e90ZQv6daQ6TuSpPbIAhtm55XwsF/QJ8KW93iil1YBubbN7oCl Q0xsmb7qcX4oamK6XMPb/VE54GVKMirl7wSjR95yrKVAWcIt5CckVYE= -----END CERTIFICATE-----Generated at Thu Mar 26 07:20:04 2026 by rpki-client