$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/A041DA85A835517127145910FB36AAA5B7CA41F2.cer File: A041DA85A835517127145910FB36AAA5B7CA41F2.cer (raw, json) Hash identifier: lPqwUbcN7RNly9vxbfQOk/9GPsRfujz0bXIgYyxpwgY= Subject key identifier: A0:41:DA:85:A8:35:51:71:27:14:59:10:FB:36:AA:A5:B7:CA:41:F2 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 6D3572488A41DD2EA21C8EA02DB59B0582D53313 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Manifest: rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.mft caRepository: rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 02:06:59 +0000 Certificate not after: Sun 02 May 2027 02:11:59 +0000 Subordinate resources: IP: 160.22.196.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:35:72:48:8a:41:dd:2e:a2:1c:8e:a0:2d:b5:9b:05:82:d5:33:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 3 02:06:59 2026 GMT Not After : May 2 02:11:59 2027 GMT Subject: CN=A041DA85A835517127145910FB36AAA5B7CA41F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:85:52:b3:b3:ae:b4:07:fc:45:73:26:1c:88: 1a:a7:ea:b2:b9:f9:dd:6b:c5:29:64:ab:a5:fe:b5: 77:63:e9:bf:31:c1:9e:25:4d:e4:3e:2a:d9:bf:6f: b4:6f:bd:02:5b:f1:7e:b4:b8:7e:3a:fd:44:c9:48: 4b:c2:4b:53:48:c3:bc:30:49:21:d7:80:6e:5f:c6: 50:58:7b:de:72:18:be:5c:66:79:cf:be:65:6c:3b: 45:3f:6e:21:52:3f:b1:6e:42:9b:a9:5a:d6:6f:5a: 13:a8:88:8e:4f:f5:6a:44:43:63:a9:7d:8a:54:bb: 34:3b:91:c6:a2:a7:af:c8:78:cb:bc:63:e2:82:48: 1f:1d:26:b3:a7:a1:e3:54:7e:d0:92:2e:7c:01:3f: df:b3:a9:30:b2:2a:3f:5c:db:ed:19:a2:62:66:a1: 90:07:7d:ae:57:65:db:bd:ce:48:4c:b9:5b:21:30: 69:0c:f6:6a:40:cf:3d:f1:8e:c4:ca:82:1e:13:35: 94:b2:66:50:69:80:82:87:a5:c8:1a:ab:d0:12:47: c1:41:98:33:6a:cd:6b:5c:eb:03:44:89:5b:88:94: 3b:54:bb:d5:01:33:e1:c4:17:4e:d1:b5:f2:0e:2a: ee:65:27:19:77:fb:f4:6a:55:57:bb:23:e9:8a:28: 06:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A0:41:DA:85:A8:35:51:71:27:14:59:10:FB:36:AA:A5:B7:CA:41:F2 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.196.0/23 Signature Algorithm: sha256WithRSAEncryption 51:e0:04:05:a5:e0:b3:69:f3:6d:b9:29:19:ca:d8:44:71:5a: 8f:1c:83:3d:b9:6f:ff:30:31:bc:88:aa:f9:30:b4:72:23:ab: 1c:01:b3:2c:21:3d:05:50:27:fa:c9:db:79:dc:38:2e:9c:cb: a5:a0:77:ab:f2:97:ad:7d:fd:44:ba:a8:bc:94:a3:6b:c2:01: c0:64:70:0c:73:7a:c0:32:f6:f2:32:bd:0f:bb:5f:52:1f:1f: 8f:db:a4:ec:65:df:89:1f:7f:31:6b:14:a7:96:15:8f:2b:92: bf:a6:cf:c9:91:d8:0f:e7:b7:74:91:c6:b3:6b:ec:47:d6:95: 4e:b9:b1:8f:d3:96:40:1e:ba:fb:e1:9b:33:1a:6b:4a:7e:60: 12:50:ce:0a:50:1f:a5:31:1c:0f:99:5c:c2:af:bf:3e:cb:08: 02:38:16:be:5b:82:f5:e3:fc:7d:16:c1:d0:cb:02:32:8b:b3: 51:5a:3d:18:10:ac:5b:20:3d:e8:a8:ad:61:92:81:c2:50:59: 9b:4f:ec:56:fd:d7:74:21:19:77:3b:b4:f6:d8:1e:c6:00:c1: 65:88:41:73:ac:a9:80:01:15:fa:72:4d:3c:a4:66:4f:74:27: 97:77:93:3f:02:d9:2c:90:c9:95:6a:aa:b4:f5:97:be:c1:cf: ea:bd:4c:67 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUbTVySIpB3S6iHI6gLbWbBYLVMxMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMzAyMDY1OVoX DTI3MDUwMjAyMTE1OVowMzExMC8GA1UEAxMoQTA0MURBODVBODM1NTE3MTI3MTQ1 OTEwRkIzNkFBQTVCN0NBNDFGMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPeFUrOzrrQH/EVzJhyIGqfqsrn53WvFKWSrpf61d2PpvzHBniVN5D4q2b9v tG+9AlvxfrS4fjr9RMlIS8JLU0jDvDBJIdeAbl/GUFh73nIYvlxmec++ZWw7RT9u IVI/sW5Cm6la1m9aE6iIjk/1akRDY6l9ilS7NDuRxqKnr8h4y7xj4oJIHx0ms6eh 41R+0JIufAE/37OpMLIqP1zb7RmiYmahkAd9rldl273OSEy5WyEwaQz2akDPPfGO xMqCHhM1lLJmUGmAgoelyBqr0BJHwUGYM2rNa1zrA0SJW4iUO1S71QEz4cQXTtG1 8g4q7mUnGXf79GpVV7sj6YooBrcCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKBB2oWoNVFxJxRZEPs2qqW3ykHyMB8GA1UdIwQYMBaAFH30 NJU0RBrxGmXd01iPdNxZwtNiMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMC83 REY0MzQ5NTM0NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9mZlEw bFRSRUd2RWFaZDNUV0k5MDNGbkMwMkkuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv L2RmMWEwZGY2LTFkM2EtNGJjYy1iM2QxLTY0Njk1Zjg3ZTM3Zi8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9kZjFhMGRm Ni0xZDNhLTRiY2MtYjNkMS02NDY5NWY4N2UzN2YvMC9BMDQxREE4NUE4MzU1MTcx MjcxNDU5MTBGQjM2QUFBNUI3Q0E0MUYyLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBoBbEMA0GCSqGSIb3DQEBCwUAA4IBAQBR4AQFpeCzafNtuSkZythEcVqPHIM9 uW//MDG8iKr5MLRyI6scAbMsIT0FUCf6ydt53DgunMuloHer8petff1Euqi8lKNr wgHAZHAMc3rAMvbyMr0Pu19SHx+P26TsZd+JH38xaxSnlhWPK5K/ps/JkdgP57d0 kcaza+xH1pVOubGP05ZAHrr74ZszGmtKfmASUM4KUB+lMRwPmVzCr78+ywgCOBa+ W4L14/x9FsHQywIyi7NRWj0YEKxbID3oqK1hkoHCUFmbT+xW/dd0IRl3O7T22B7G AMFliEFzrKmAARX6ck08pGZPdCeXd5M/AtkskMmVaqq09Ze+wc/qvUxn -----END CERTIFICATE-----Generated at Tue May 12 22:45:25 2026 by rpki-client