$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.cer File: 3B610B6D52EFC83BEC0E681395E172E5584CB922.cer (raw, json) Hash identifier: ctaaMumGzRM/4emmGY1/BIzEwT/cgknSyULdI2CnGaw= Subject key identifier: 3B:61:0B:6D:52:EF:C8:3B:EC:0E:68:13:95:E1:72:E5:58:4C:B9:22 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 5B7AC177A82CD7239E8762997E7892BDA8F35F2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Manifest: rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.mft caRepository: rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:50:12 +0000 Certificate not after: Sun 02 May 2027 00:55:12 +0000 Subordinate resources: IP: 157.20.92.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:7a:c1:77:a8:2c:d7:23:9e:87:62:99:7e:78:92:bd:a8:f3:5f:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 3 00:50:12 2026 GMT Not After : May 2 00:55:12 2027 GMT Subject: CN=3B610B6D52EFC83BEC0E681395E172E5584CB922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3f:21:5e:fc:9b:65:6f:56:36:89:1e:0e:ca: 3a:20:36:15:f0:6e:60:20:ab:77:1c:b1:9f:f3:5a: 20:09:e3:ec:39:fb:f1:3b:98:89:eb:01:b8:f3:73: 0e:79:16:18:f8:bd:87:01:d3:1e:91:81:33:3b:6d: 48:56:56:67:98:6e:18:90:18:58:c4:ef:0a:57:d9: 43:5f:35:e3:1e:ff:17:70:eb:fc:98:cf:5b:01:ba: f2:a6:e3:2c:c6:f8:0c:c6:75:32:14:88:4e:a7:b5: c2:81:32:b3:90:20:80:7f:66:ac:85:d7:61:c7:f5: 03:f8:f4:3c:ee:5f:98:f0:75:be:5a:98:37:46:19: 23:a1:be:83:d3:5a:6a:7a:c2:63:c4:7b:7f:f3:8b: e0:f1:f6:97:46:18:84:a6:6b:06:7f:9d:3b:13:08: b9:47:08:eb:ab:66:b5:ed:dc:45:4f:94:b1:4b:37: 57:a7:49:71:7b:24:e2:f7:19:24:49:00:90:16:89: a9:ab:bd:b8:96:21:b5:34:8d:ce:ad:55:c1:71:25: bc:e7:ac:8a:a7:c1:96:a5:e6:8a:24:6f:d3:77:de: 79:33:52:4c:24:bc:87:9d:74:00:dc:63:37:c9:74: 4f:54:1e:5c:4e:2d:2b:b5:a3:49:8f:01:42:c2:96: 63:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3B:61:0B:6D:52:EF:C8:3B:EC:0E:68:13:95:E1:72:E5:58:4C:B9:22 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/3B610B6D52EFC83BEC0E681395E172E5584CB922.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.92.0/23 Signature Algorithm: sha256WithRSAEncryption 78:ab:69:51:b3:92:27:ec:18:7b:a0:61:6a:ff:6e:fc:b6:13: fd:e1:6b:e5:a1:aa:a3:6e:7b:e8:5c:55:f4:0f:bf:13:b2:18: e2:a4:75:51:ba:a6:73:89:4c:c3:66:3a:e3:97:23:25:b6:31: c3:1a:c8:27:b7:4d:6d:23:e9:6d:66:a9:ad:95:93:a7:4d:28: 5f:78:b0:77:96:3c:11:f1:d2:f2:de:1e:ca:71:8b:42:c6:32: 67:e5:81:d9:5a:97:27:32:9f:c4:f7:ed:b5:0e:05:39:6f:96: 51:8a:06:ac:a7:c0:6e:87:de:a5:11:eb:1f:0c:11:8f:7f:92: c8:c6:10:d9:79:b7:d9:9b:af:d8:2e:c8:31:e6:cd:30:93:8d: 1e:5f:39:06:29:a2:31:f7:f2:df:fc:e1:0a:9e:77:06:84:dd: dd:f0:ab:f1:b9:bf:62:6a:74:52:90:7a:a4:fa:d6:f1:d2:54: 81:62:07:d6:19:5f:14:16:5c:18:20:3f:9e:a1:27:b4:93:da: d5:3e:be:4e:61:a6:59:d7:28:6d:0b:86:26:1d:43:b7:0d:53: aa:57:22:7e:9e:3e:19:a1:48:f0:31:36:b0:00:39:fd:d2:7b: 35:70:63:65:fc:22:ca:73:77:11:71:8e:12:ca:da:6c:e5:8b: 60:c2:fb:5b -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUW3rBd6gs1yOeh2KZfniSvajzXy0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMzAwNTAxMloX DTI3MDUwMjAwNTUxMlowMzExMC8GA1UEAxMoM0I2MTBCNkQ1MkVGQzgzQkVDMEU2 ODEzOTVFMTcyRTU1ODRDQjkyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKI/IV78m2VvVjaJHg7KOiA2FfBuYCCrdxyxn/NaIAnj7Dn78TuYiesBuPNz DnkWGPi9hwHTHpGBMzttSFZWZ5huGJAYWMTvClfZQ1814x7/F3Dr/JjPWwG68qbj LMb4DMZ1MhSITqe1woEys5AggH9mrIXXYcf1A/j0PO5fmPB1vlqYN0YZI6G+g9Na anrCY8R7f/OL4PH2l0YYhKZrBn+dOxMIuUcI66tmte3cRU+UsUs3V6dJcXsk4vcZ JEkAkBaJqau9uJYhtTSNzq1VwXElvOesiqfBlqXmiiRv03feeTNSTCS8h510ANxj N8l0T1QeXE4tK7WjSY8BQsKWY8kCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDthC21S78g77A5oE5XhcuVYTLkiMB8GA1UdIwQYMBaAFH30 NJU0RBrxGmXd01iPdNxZwtNiMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMC83 REY0MzQ5NTM0NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9mZlEw bFRSRUd2RWFaZDNUV0k5MDNGbkMwMkkuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzZhODk2ZmRjLTU2MzgtNDFkMi04YTk5LTY4Y2U4MTZiZDNjZi8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby82YTg5NmZk Yy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC8zQjYxMEI2RDUyRUZDODNC RUMwRTY4MTM5NUUxNzJFNTU4NENCOTIyLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBnRRcMA0GCSqGSIb3DQEBCwUAA4IBAQB4q2lRs5In7Bh7oGFq/278thP94Wvl oaqjbnvoXFX0D78TshjipHVRuqZziUzDZjrjlyMltjHDGsgnt01tI+ltZqmtlZOn TShfeLB3ljwR8dLy3h7KcYtCxjJn5YHZWpcnMp/E9+21DgU5b5ZRigasp8Buh96l EesfDBGPf5LIxhDZebfZm6/YLsgx5s0wk40eXzkGKaIx9/Lf/OEKnncGhN3d8Kvx ub9ianRSkHqk+tbx0lSBYgfWGV8UFlwYID+eoSe0k9rVPr5OYaZZ1yhtC4YmHUO3 DVOqVyJ+nj4ZoUjwMTawADn90ns1cGNl/CLKc3cRcY4Sytps5Ytgwvtb -----END CERTIFICATE-----Generated at Tue May 12 22:16:47 2026 by rpki-client