$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/D37E9EB2F98E29CDF13865332666AEFB23184FEB.cer File: D37E9EB2F98E29CDF13865332666AEFB23184FEB.cer (raw, json) Hash identifier: shl/fVwvjWWv7+ShDTiJQ9koUinVksVN2v3Mjl1Fx/0= Subject key identifier: D3:7E:9E:B2:F9:8E:29:CD:F1:38:65:33:26:66:AE:FB:23:18:4F:EB Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 1492ADC69575D2BA5C44FD086AF32EC63741016B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Manifest: rsync://rpki-rsync.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/D37E9EB2F98E29CDF13865332666AEFB23184FEB.mft caRepository: rsync://rpki-rsync.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 01:28:55 +0000 Certificate not after: Sun 02 May 2027 01:33:55 +0000 Subordinate resources: IP: 160.19.144.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:92:ad:c6:95:75:d2:ba:5c:44:fd:08:6a:f3:2e:c6:37:41:01:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 3 01:28:55 2026 GMT Not After : May 2 01:33:55 2027 GMT Subject: CN=D37E9EB2F98E29CDF13865332666AEFB23184FEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:33:e0:ab:fa:dc:60:49:fc:5c:27:d2:cf:6c: ae:92:2a:f9:31:ed:68:fe:71:3d:8c:a8:72:22:5a: 26:9a:3f:44:83:d2:c0:12:f7:cf:c9:3a:3e:6e:5d: 1f:80:5a:56:8b:d1:dd:b8:c0:c0:67:1d:d9:67:1b: 44:9a:58:ad:f7:5e:9c:64:5f:cf:5c:1f:07:87:81: 22:fa:1f:b4:1f:52:51:3a:c5:c1:6e:3a:7a:34:92: 54:81:fe:36:27:e8:62:65:96:c3:f7:e5:d3:03:f7: b5:57:c3:c6:8d:2c:55:b1:70:e5:8a:e4:30:d6:b8: 4d:e8:3e:16:ee:04:2d:b1:0c:0a:91:1f:a2:14:cd: 60:4a:65:35:28:d8:42:d3:ae:55:99:b4:50:90:aa: 02:24:d2:9b:70:14:19:0f:87:7d:5a:bc:bf:f5:0d: 07:e2:04:f3:b8:f2:42:a1:f9:37:bc:4d:0e:42:a7: 85:6e:b6:0d:e5:d8:37:21:16:fa:65:fa:21:64:d7: 11:9d:27:69:72:13:41:08:c4:07:13:44:b2:9c:31: ea:52:43:aa:76:00:a1:24:11:cb:c1:a1:e4:c0:93: 3a:c7:5d:68:a6:c4:11:14:fd:07:00:de:15:36:0b: ef:85:17:f9:82:83:0a:b7:7a:2f:ed:54:8c:05:41: b2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D3:7E:9E:B2:F9:8E:29:CD:F1:38:65:33:26:66:AE:FB:23:18:4F:EB X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/a2e5ff81-b082-4334-ad29-55dc8d1e53b9/0/D37E9EB2F98E29CDF13865332666AEFB23184FEB.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.19.144.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:db:82:a0:7c:30:ca:6e:8a:ce:52:c5:45:87:56:6c:33:de: e9:6f:94:1c:7e:b7:b7:8b:a8:42:63:5c:5b:98:7a:8b:dc:62: 4d:5f:b0:67:95:e0:25:33:97:99:c2:19:b7:49:92:b8:21:14: a2:40:62:3a:bf:d0:71:29:28:de:a3:b3:20:03:b5:cc:ce:4e: 88:e2:ed:0c:13:00:89:97:60:ae:64:32:3b:5d:38:0e:83:70: 99:1e:36:53:2a:8a:c7:60:eb:1b:63:af:02:14:bd:43:f3:73: ae:92:7b:31:2c:28:33:14:8c:8d:d7:90:99:3f:35:d6:ae:75: 6f:ce:05:e7:f0:c6:ad:05:1b:24:bf:29:fb:66:75:4c:d3:a6: 3a:0e:6b:f5:1a:63:51:b8:48:fd:3f:42:35:77:70:2d:79:fc: eb:c4:1a:e6:94:43:59:f1:e4:99:48:85:d1:2b:79:2e:90:4c: 5c:68:2c:47:9e:2c:b3:21:51:63:3d:06:d7:e4:3d:8a:fc:00: 83:f1:16:85:a3:85:48:f6:7b:b6:d4:69:ef:c3:26:f4:9d:d5: 30:ef:46:65:e2:78:8a:98:c1:68:5e:dd:2d:0d:3e:81:79:ee: 45:55:28:de:67:f1:69:3a:0c:34:17:8d:6c:05:d9:ae:ab:a2: 47:0c:d5:ad -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUFJKtxpV10rpcRP0IavMuxjdBAWswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMzAxMjg1NVoX DTI3MDUwMjAxMzM1NVowMzExMC8GA1UEAxMoRDM3RTlFQjJGOThFMjlDREYxMzg2 NTMzMjY2NkFFRkIyMzE4NEZFQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUz4Kv63GBJ/Fwn0s9srpIq+THtaP5xPYyociJaJpo/RIPSwBL3z8k6Pm5d H4BaVovR3bjAwGcd2WcbRJpYrfdenGRfz1wfB4eBIvoftB9SUTrFwW46ejSSVIH+ NifoYmWWw/fl0wP3tVfDxo0sVbFw5YrkMNa4Teg+Fu4ELbEMCpEfohTNYEplNSjY QtOuVZm0UJCqAiTSm3AUGQ+HfVq8v/UNB+IE87jyQqH5N7xNDkKnhW62DeXYNyEW +mX6IWTXEZ0naXITQQjEBxNEspwx6lJDqnYAoSQRy8Gh5MCTOsddaKbEERT9BwDe FTYL74UX+YKDCrd6L+1UjAVBsv8CAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNN+nrL5jinN8ThlMyZmrvsjGE/rMB8GA1UdIwQYMBaAFH30 NJU0RBrxGmXd01iPdNxZwtNiMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMC83 REY0MzQ5NTM0NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9mZlEw bFRSRUd2RWFaZDNUV0k5MDNGbkMwMkkuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv L2EyZTVmZjgxLWIwODItNDMzNC1hZDI5LTU1ZGM4ZDFlNTNiOS8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9hMmU1ZmY4 MS1iMDgyLTQzMzQtYWQyOS01NWRjOGQxZTUzYjkvMC9EMzdFOUVCMkY5OEUyOUNE RjEzODY1MzMyNjY2QUVGQjIzMTg0RkVCLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBoBOQMA0GCSqGSIb3DQEBCwUAA4IBAQBN24KgfDDKborOUsVFh1ZsM97pb5Qc fre3i6hCY1xbmHqL3GJNX7BnleAlM5eZwhm3SZK4IRSiQGI6v9BxKSjeo7MgA7XM zk6I4u0MEwCJl2CuZDI7XTgOg3CZHjZTKorHYOsbY68CFL1D83OuknsxLCgzFIyN 15CZPzXWrnVvzgXn8MatBRskvyn7ZnVM06Y6Dmv1GmNRuEj9P0I1d3AtefzrxBrm lENZ8eSZSIXRK3kukExcaCxHniyzIVFjPQbX5D2K/ACD8RaFo4VI9nu21Gnvwyb0 ndUw70Zl4niKmMFoXt0tDT6Bee5FVSjeZ/FpOgw0F41sBdmuq6JHDNWt -----END CERTIFICATE-----Generated at Tue May 12 22:52:51 2026 by rpki-client