$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.cer File: 866437E32B464B1B5AC613B7B05DF39BA8B220F2.cer (raw, json) Hash identifier: K3IN16Nj249IhHZec8GEvwO8eN7RpCK1a2ri+inQE1M= Subject key identifier: 86:64:37:E3:2B:46:4B:1B:5A:C6:13:B7:B0:5D:F3:9B:A8:B2:20:F2 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 71009F269ACC72B95A09A5D924966FF51371C2F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Manifest: rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.mft caRepository: rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:55:31 +0000 Certificate not after: Sun 02 May 2027 01:00:31 +0000 Subordinate resources: IP: 160.22.72.0/24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:00:9f:26:9a:cc:72:b9:5a:09:a5:d9:24:96:6f:f5:13:71:c2:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 3 00:55:31 2026 GMT Not After : May 2 01:00:31 2027 GMT Subject: CN=866437E32B464B1B5AC613B7B05DF39BA8B220F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f4:b4:a0:ba:36:11:8c:27:26:43:d3:e9:79: 5d:cc:80:c3:47:d6:28:dd:3b:a5:84:0c:72:7a:26: 58:93:50:6b:20:d9:16:74:46:21:d7:ca:24:cc:b2: 8c:57:7b:4c:0f:dd:0b:d4:44:72:82:8d:7d:eb:de: 51:23:9f:a1:5d:25:2e:49:4e:30:d4:0e:a9:7a:35: 31:54:3d:fa:b2:fa:6b:11:f6:8f:dd:26:b9:ec:7c: a9:cc:f0:1b:30:1e:d1:a0:74:10:2e:ea:a3:2e:42: cf:ef:ed:f1:81:5a:b7:da:65:ea:9b:ff:97:01:03: b0:62:a5:15:e5:fd:16:5e:0c:fe:43:2d:39:f6:d6: 4e:2e:02:48:7b:7e:fd:31:d7:35:06:89:ec:3a:bf: b8:73:58:25:8f:40:0c:87:ed:02:d8:a4:f0:6f:f1: 60:ee:b3:58:15:54:c0:da:e7:d8:97:b6:0c:82:c4: 4a:08:2c:82:3f:9e:df:39:15:0c:9a:4a:55:df:ee: da:0a:cb:69:70:aa:23:57:84:f0:3f:30:8c:11:4a: 22:1b:f7:d7:bc:ef:a3:94:1a:4e:8d:5f:52:17:68: b5:87:37:c1:a1:91:49:92:05:17:9e:8b:98:55:62: 91:b4:b1:b4:6d:9a:6d:94:00:c9:cf:d4:d7:ef:c4: 9d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 86:64:37:E3:2B:46:4B:1B:5A:C6:13:B7:B0:5D:F3:9B:A8:B2:20:F2 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.72.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:43:2d:ed:88:af:dc:46:17:5a:59:17:8e:60:0d:51:4a:2e: 13:ae:0a:8e:06:27:68:da:dd:61:50:ea:b7:2a:37:e2:d2:e4: 28:b9:6d:7e:3e:eb:8a:34:85:03:b8:c6:79:a5:04:67:db:24: 3e:cb:1d:13:3f:91:30:e5:70:01:c9:1e:69:24:60:4a:10:de: 36:41:f9:0f:ad:26:c6:ab:70:10:85:bc:05:4d:a0:f1:22:1f: cb:61:a2:00:fa:de:d5:b4:8b:c5:e5:ee:4b:bc:58:55:46:49: 19:a6:d6:f3:13:97:dc:d7:fe:59:63:84:52:e7:07:2f:88:93: f0:68:2e:b8:ce:55:f0:04:6f:d0:78:34:f4:4c:19:06:a8:af: f8:0a:57:8b:35:ad:34:9e:04:e1:78:98:43:aa:d6:99:3c:49: 6f:32:be:d4:58:67:77:25:b9:4d:08:94:77:f5:84:9b:7e:d0: 5a:3b:fe:39:c1:d9:6d:aa:39:c6:92:5d:79:56:5c:f8:f6:6c: ac:7d:85:28:44:b6:1b:61:b6:c5:0c:f5:8c:76:aa:32:10:c1: 88:90:ec:ce:65:ca:ab:cf:df:c9:69:29:75:bd:b2:68:cc:34: b3:14:52:08:9c:c2:60:d1:a2:59:e2:72:24:a2:0a:e0:a7:8c: 8a:7a:6c:d4 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUcQCfJprMcrlaCaXZJJZv9RNxwvUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMzAwNTUzMVoX DTI3MDUwMjAxMDAzMVowMzExMC8GA1UEAxMoODY2NDM3RTMyQjQ2NEIxQjVBQzYx M0I3QjA1REYzOUJBOEIyMjBGMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMv0tKC6NhGMJyZD0+l5XcyAw0fWKN07pYQMcnomWJNQayDZFnRGIdfKJMyy jFd7TA/dC9REcoKNfeveUSOfoV0lLklOMNQOqXo1MVQ9+rL6axH2j90muex8qczw GzAe0aB0EC7qoy5Cz+/t8YFat9pl6pv/lwEDsGKlFeX9Fl4M/kMtOfbWTi4CSHt+ /THXNQaJ7Dq/uHNYJY9ADIftAtik8G/xYO6zWBVUwNrn2Je2DILESggsgj+e3zkV DJpKVd/u2grLaXCqI1eE8D8wjBFKIhv317zvo5QaTo1fUhdotYc3waGRSZIFF56L mFVikbSxtG2abZQAyc/U1+/EnfMCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIZkN+MrRksbWsYTt7Bd85uosiDyMB8GA1UdIwQYMBaAFH30 NJU0RBrxGmXd01iPdNxZwtNiMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMC83 REY0MzQ5NTM0NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9mZlEw bFRSRUd2RWFaZDNUV0k5MDNGbkMwMkkuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzcyZjI2MGNlLTIzZjUtNDA5NS04MmRiLWVmNzExNGU0NzFiMi8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby83MmYyNjBj ZS0yM2Y1LTQwOTUtODJkYi1lZjcxMTRlNDcxYjIvMC84NjY0MzdFMzJCNDY0QjFC NUFDNjEzQjdCMDVERjM5QkE4QjIyMEYyLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAoBZIMA0GCSqGSIb3DQEBCwUAA4IBAQA7Qy3tiK/cRhdaWReOYA1RSi4TrgqO Bido2t1hUOq3Kjfi0uQouW1+PuuKNIUDuMZ5pQRn2yQ+yx0TP5Ew5XAByR5pJGBK EN42QfkPrSbGq3AQhbwFTaDxIh/LYaIA+t7VtIvF5e5LvFhVRkkZptbzE5fc1/5Z Y4RS5wcviJPwaC64zlXwBG/QeDT0TBkGqK/4CleLNa00ngTheJhDqtaZPElvMr7U WGd3JblNCJR39YSbftBaO/45wdltqjnGkl15Vlz49mysfYUoRLYbYbbFDPWMdqoy EMGIkOzOZcqrz9/JaSl1vbJozDSzFFIInMJg0aJZ4nIkogrgp4yKemzU -----END CERTIFICATE-----Generated at Tue May 12 22:03:01 2026 by rpki-client