$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/40843A77AEE521660751DBF1A013A810ECDA68CB.cer File: 40843A77AEE521660751DBF1A013A810ECDA68CB.cer (raw, json) Hash identifier: MdHdohmMUB4PhYgHAYt9kcQlu7hnIv0gWhgSrO9oq/M= Subject key identifier: 40:84:3A:77:AE:E5:21:66:07:51:DB:F1:A0:13:A8:10:EC:DA:68:CB Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 0546671C9FC2E82732A7C2FD7AE765F20939BE3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Manifest: rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.mft caRepository: rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sat 02 May 2026 23:58:10 +0000 Certificate not after: Sun 02 May 2027 00:03:10 +0000 Subordinate resources: IP: 160.22.26.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:46:67:1c:9f:c2:e8:27:32:a7:c2:fd:7a:e7:65:f2:09:39:be:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 2 23:58:10 2026 GMT Not After : May 2 00:03:10 2027 GMT Subject: CN=40843A77AEE521660751DBF1A013A810ECDA68CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d9:8c:78:e3:02:19:85:dc:bc:bc:0c:bc:2a: 03:d6:c2:9a:ab:13:be:43:5e:78:87:4b:11:8b:51: 2d:43:78:ba:53:05:50:a0:53:59:d1:6b:b7:c4:2e: a0:67:3d:b9:7e:9a:fe:bc:94:4c:2c:9e:c9:23:c5: ac:8e:1d:f4:0f:41:e0:80:1d:3a:9d:29:52:4c:3a: 38:d0:56:01:5c:4c:89:2b:ff:79:24:c0:8d:e1:d9: da:7f:9c:47:c3:ee:ed:dc:ca:72:83:41:af:99:84: 13:fa:44:ab:1e:53:5c:8f:05:85:f5:ef:9c:56:27: 4f:13:0f:20:71:7e:3e:8f:b9:5a:c4:be:67:95:66: 15:8e:5d:51:57:d4:99:98:d2:74:5d:2e:ec:ed:d0: 92:e3:6b:5e:56:90:55:48:3b:99:44:bc:6d:8a:1f: 58:33:e0:ea:46:1c:ef:ed:be:52:a8:ac:a2:d1:ee: 17:4b:ed:53:f0:c2:71:bc:7f:2d:e7:df:aa:06:8e: dd:73:71:c2:88:ea:df:a5:d2:45:4d:c8:5a:cc:0f: 3f:d7:6f:75:ea:1e:55:93:e9:44:ee:a1:fe:d3:2b: 2c:1e:65:80:2b:31:90:24:48:da:09:1a:4d:1f:52: dc:23:8f:01:81:d4:6f:4d:f8:ec:fa:91:60:72:88: 4e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 40:84:3A:77:AE:E5:21:66:07:51:DB:F1:A0:13:A8:10:EC:DA:68:CB X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/1bdce391-a5d3-411b-a97b-e862fbf5631c/0/40843A77AEE521660751DBF1A013A810ECDA68CB.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.26.0/23 Signature Algorithm: sha256WithRSAEncryption a4:73:55:45:47:37:ea:82:bf:41:c6:f1:2e:7d:09:9d:25:76: a9:aa:18:c7:c6:81:60:0e:bd:7f:9d:cb:26:e7:02:67:6c:ae: 27:7f:8b:82:53:a7:9c:94:93:08:4e:09:51:5f:3f:e5:c6:c3: e3:de:78:ad:d3:d1:bb:e8:ea:39:82:08:1f:6b:6f:0e:f8:1f: 83:79:12:b8:4a:0a:66:93:8a:b9:8b:d3:8d:56:c1:2f:6a:3b: f2:2f:6d:b1:38:21:46:26:99:59:36:7d:d3:92:7a:a4:84:62: 76:eb:b2:45:11:03:16:7e:53:9c:c4:9c:c6:34:98:4a:5b:d2: 22:43:d0:f0:0e:ee:ca:04:c1:dc:00:cf:3b:59:f7:0a:37:8c: 06:96:9b:de:32:f3:19:47:96:dd:8d:02:78:96:36:18:c6:ff: 50:69:c3:50:56:8c:f7:e8:22:ca:95:84:e1:d2:cd:52:92:8d: 13:41:46:4c:55:88:5b:29:75:7e:70:d2:2b:8c:2c:28:3e:0e: 91:c2:e1:49:a5:80:d2:8f:a4:d5:99:7a:7f:ee:67:d9:7c:6a: 14:aa:4b:4a:ea:9d:10:6d:cd:40:70:e8:7c:79:28:fc:80:ec: c8:ed:8c:0c:be:16:94:4f:66:56:63:37:8d:b5:12:5e:d0:bc: 90:3b:73:49 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUBUZnHJ/C6Ccyp8L9eudl8gk5vjowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMjIzNTgxMFoX DTI3MDUwMjAwMDMxMFowMzExMC8GA1UEAxMoNDA4NDNBNzdBRUU1MjE2NjA3NTFE QkYxQTAxM0E4MTBFQ0RBNjhDQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANnZjHjjAhmF3Ly8DLwqA9bCmqsTvkNeeIdLEYtRLUN4ulMFUKBTWdFrt8Qu oGc9uX6a/ryUTCyeySPFrI4d9A9B4IAdOp0pUkw6ONBWAVxMiSv/eSTAjeHZ2n+c R8Pu7dzKcoNBr5mEE/pEqx5TXI8FhfXvnFYnTxMPIHF+Po+5WsS+Z5VmFY5dUVfU mZjSdF0u7O3QkuNrXlaQVUg7mUS8bYofWDPg6kYc7+2+UqisotHuF0vtU/DCcbx/ LeffqgaO3XNxwojq36XSRU3IWswPP9dvdeoeVZPpRO6h/tMrLB5lgCsxkCRI2gka TR9S3COPAYHUb0347PqRYHKITnUCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFECEOneu5SFmB1Hb8aATqBDs2mjLMB8GA1UdIwQYMBaAFH30 NJU0RBrxGmXd01iPdNxZwtNiMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMC83 REY0MzQ5NTM0NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9mZlEw bFRSRUd2RWFaZDNUV0k5MDNGbkMwMkkuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzFiZGNlMzkxLWE1ZDMtNDExYi1hOTdiLWU4NjJmYmY1NjMxYy8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby8xYmRjZTM5 MS1hNWQzLTQxMWItYTk3Yi1lODYyZmJmNTYzMWMvMC80MDg0M0E3N0FFRTUyMTY2 MDc1MURCRjFBMDEzQTgxMEVDREE2OENCLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBoBYaMA0GCSqGSIb3DQEBCwUAA4IBAQCkc1VFRzfqgr9BxvEufQmdJXapqhjH xoFgDr1/ncsm5wJnbK4nf4uCU6eclJMITglRXz/lxsPj3nit09G76Oo5gggfa28O +B+DeRK4Sgpmk4q5i9ONVsEvajvyL22xOCFGJplZNn3TknqkhGJ267JFEQMWflOc xJzGNJhKW9IiQ9DwDu7KBMHcAM87WfcKN4wGlpveMvMZR5bdjQJ4ljYYxv9QacNQ Voz36CLKlYTh0s1Sko0TQUZMVYhbKXV+cNIrjCwoPg6RwuFJpYDSj6TVmXp/7mfZ fGoUqktK6p0Qbc1AcOh8eSj8gOzI7YwMvhaUT2ZWYzeNtRJe0LyQO3NJ -----END CERTIFICATE-----Generated at Tue May 12 22:10:04 2026 by rpki-client