$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/8100B25D994714EDA24AA78389FB6369505FB6A1.cer File: 8100B25D994714EDA24AA78389FB6369505FB6A1.cer (raw, json) Hash identifier: ccqyj26I5vDXTYo4B28wXlZ4cGK87XQqC1ApGgoDOIw= Subject key identifier: 81:00:B2:5D:99:47:14:ED:A2:4A:A7:83:89:FB:63:69:50:5F:B6:A1 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 4AB398E8670111736A0D50F00956234A6F46428B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Manifest: rsync://rpki-rsync.idnic.net/repo/31b433a5-72b1-4653-99d3-9469c8b8b762/0/8100B25D994714EDA24AA78389FB6369505FB6A1.mft caRepository: rsync://rpki-rsync.idnic.net/repo/31b433a5-72b1-4653-99d3-9469c8b8b762/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:12:19 +0000 Certificate not after: Sun 02 May 2027 00:17:19 +0000 Subordinate resources: IP: 157.66.29.0/24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b3:98:e8:67:01:11:73:6a:0d:50:f0:09:56:23:4a:6f:46:42:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 3 00:12:19 2026 GMT Not After : May 2 00:17:19 2027 GMT Subject: CN=8100B25D994714EDA24AA78389FB6369505FB6A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1c:c4:5a:bb:56:58:9e:67:b5:9e:e9:89:11: ba:6b:d6:92:58:be:7c:41:89:8c:f2:b9:c1:d2:7a: 8d:12:e5:be:3c:eb:eb:4e:e7:18:bd:e0:f2:b9:e5: 2e:9b:a6:62:35:bd:8a:19:50:be:d9:87:8e:17:d0: fd:66:c6:ec:06:a3:7b:84:69:3a:6b:d6:a9:c3:67: 1a:45:6f:03:20:e9:a5:3f:ac:ac:b9:b6:3b:fa:6c: 5f:43:91:dc:bd:39:71:a3:ae:2e:5b:49:14:d0:52: 82:b3:e8:81:f2:32:13:58:19:c8:55:56:33:0f:45: 58:8d:1b:76:19:41:bb:af:dc:56:00:b0:ea:bb:ad: bc:63:76:1e:64:7f:eb:69:9a:4e:ee:c2:79:7b:4d: f7:c4:7c:09:40:bf:b5:a4:8a:9c:a8:a8:4e:a6:01: 8a:9a:40:48:da:25:39:e8:92:98:9d:43:2d:da:2f: d9:56:a9:33:24:4f:04:5a:69:1d:dd:71:3d:9d:6d: de:55:52:cb:82:74:f1:26:a3:6f:42:ae:53:6d:7f: 0e:80:d0:f1:61:2a:5f:a3:9f:f7:f2:01:7a:ec:cc: 2c:dc:1c:0a:4d:03:60:af:92:d1:58:88:4b:d0:49: 14:37:d0:59:45:ed:6c:a5:4b:68:f0:af:3c:61:2d: 4c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 81:00:B2:5D:99:47:14:ED:A2:4A:A7:83:89:FB:63:69:50:5F:B6:A1 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/31b433a5-72b1-4653-99d3-9469c8b8b762/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/31b433a5-72b1-4653-99d3-9469c8b8b762/0/8100B25D994714EDA24AA78389FB6369505FB6A1.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.29.0/24 Signature Algorithm: sha256WithRSAEncryption 76:d9:cf:16:25:a3:30:4f:94:2e:4e:10:ae:f1:2f:b1:79:83: d7:50:5a:b2:c9:15:63:89:66:67:cc:d5:e7:c4:a9:56:97:d1: 5e:99:f9:aa:a0:73:35:6a:e1:b9:84:77:86:59:f2:ec:fb:0a: 04:ca:a2:2c:0c:27:15:61:ac:be:fb:5d:19:68:83:f9:5e:c9: bb:22:27:bc:80:8c:7d:d2:d0:93:8a:25:e0:56:1d:3d:70:88: 42:1f:e7:c5:fa:35:6a:2c:de:21:54:39:b5:c6:ea:0b:d8:05: 93:9a:06:74:b1:1c:bf:f5:bf:6b:2e:cd:bf:ea:fd:1e:1c:a4: 6c:ab:c0:7f:35:5a:b7:7c:16:71:5e:aa:57:23:bd:6b:97:c3: 16:5e:b0:47:b7:ab:e5:36:e7:28:4f:67:ce:cf:fc:0a:4b:46: 73:f6:31:f1:63:5a:57:ab:e5:34:8d:dd:78:93:d8:bc:07:b3: 84:8f:c8:5e:f8:ab:c2:e4:27:7f:47:84:f8:3d:b7:8b:52:25: 08:ab:31:b8:16:c7:38:52:52:5b:79:11:bf:83:4a:58:cb:ff: 3f:5e:62:aa:5f:0e:95:64:fc:22:45:60:d9:a4:5b:70:fe:01: cf:7a:95:28:c6:c2:e3:43:48:e2:44:ba:d6:2f:59:c6:89:c8: fb:66:59:12 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUSrOY6GcBEXNqDVDwCVYjSm9GQoswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMzAwMTIxOVoX DTI3MDUwMjAwMTcxOVowMzExMC8GA1UEAxMoODEwMEIyNUQ5OTQ3MTRFREEyNEFB NzgzODlGQjYzNjk1MDVGQjZBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANccxFq7VlieZ7We6YkRumvWkli+fEGJjPK5wdJ6jRLlvjzr607nGL3g8rnl LpumYjW9ihlQvtmHjhfQ/WbG7Aaje4RpOmvWqcNnGkVvAyDppT+srLm2O/psX0OR 3L05caOuLltJFNBSgrPogfIyE1gZyFVWMw9FWI0bdhlBu6/cVgCw6rutvGN2HmR/ 62maTu7CeXtN98R8CUC/taSKnKioTqYBippASNolOeiSmJ1DLdov2VapMyRPBFpp Hd1xPZ1t3lVSy4J08Sajb0KuU21/DoDQ8WEqX6Of9/IBeuzMLNwcCk0DYK+S0ViI S9BJFDfQWUXtbKVLaPCvPGEtTFUCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIEAsl2ZRxTtokqng4n7Y2lQX7ahMB8GA1UdIwQYMBaAFH30 NJU0RBrxGmXd01iPdNxZwtNiMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMC83 REY0MzQ5NTM0NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9mZlEw bFRSRUd2RWFaZDNUV0k5MDNGbkMwMkkuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzMxYjQzM2E1LTcyYjEtNDY1My05OWQzLTk0NjljOGI4Yjc2Mi8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby8zMWI0MzNh NS03MmIxLTQ2NTMtOTlkMy05NDY5YzhiOGI3NjIvMC84MTAwQjI1RDk5NDcxNEVE QTI0QUE3ODM4OUZCNjM2OTUwNUZCNkExLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAnUIdMA0GCSqGSIb3DQEBCwUAA4IBAQB22c8WJaMwT5QuThCu8S+xeYPXUFqy yRVjiWZnzNXnxKlWl9FemfmqoHM1auG5hHeGWfLs+woEyqIsDCcVYay++10ZaIP5 Xsm7Iie8gIx90tCTiiXgVh09cIhCH+fF+jVqLN4hVDm1xuoL2AWTmgZ0sRy/9b9r Ls2/6v0eHKRsq8B/NVq3fBZxXqpXI71rl8MWXrBHt6vlNucoT2fOz/wKS0Zz9jHx Y1pXq+U0jd14k9i8B7OEj8he+KvC5Cd/R4T4PbeLUiUIqzG4Fsc4UlJbeRG/g0pY y/8/XmKqXw6VZPwiRWDZpFtw/gHPepUoxsLjQ0jiRLrWL1nGicj7ZlkS -----END CERTIFICATE-----Generated at Tue May 12 22:32:05 2026 by rpki-client