$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.cer File: DF2304429B18F8089FAE1FC938674F36A0FD77B2.cer (raw, json) Hash identifier: +W2GCpFZEgrcF+Df1Yrzo9ubgBbOsDGCHJhOdJeKV0A= Subject key identifier: DF:23:04:42:9B:18:F8:08:9F:AE:1F:C9:38:67:4F:36:A0:FD:77:B2 Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 3A6E15B6E000996290064E4830531C1B9F13C0CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Manifest: rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft caRepository: rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:28:05 +0000 Certificate not after: Sun 02 May 2027 00:33:05 +0000 Subordinate resources: IP: 157.15.66.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:6e:15:b6:e0:00:99:62:90:06:4e:48:30:53:1c:1b:9f:13:c0:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 3 00:28:05 2026 GMT Not After : May 2 00:33:05 2027 GMT Subject: CN=DF2304429B18F8089FAE1FC938674F36A0FD77B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:a0:d5:b5:b4:e9:d1:46:6c:9e:29:f8:52:9e: 5e:51:61:ab:f2:d4:af:4f:c9:0c:fe:e8:39:6f:fc: b6:59:37:30:21:a2:b9:bf:73:3e:71:2d:44:8c:cb: 8f:12:a3:d7:2a:f4:a2:f2:6d:8c:dc:5c:c6:ae:eb: e5:1c:5d:5f:23:f6:62:de:ff:41:ef:0a:c3:6b:3e: da:cc:d4:cb:77:6e:19:e5:5c:c4:74:be:d1:fb:2f: 9a:88:ff:46:c6:40:80:25:ac:2c:2f:96:1a:ad:a8: c9:f7:ad:b4:3d:37:82:13:cf:24:22:f5:b8:87:37: 8a:84:7e:12:6e:21:ec:e3:3a:c0:15:53:8b:ef:c9: a2:41:b6:ca:43:63:2c:ae:0a:f3:b3:2a:67:2e:9d: 1f:18:bd:40:23:33:96:e5:82:5f:a8:bd:04:b7:73: d9:1d:3d:00:4d:20:20:7d:85:c8:94:67:c4:bb:51: c4:08:08:40:b1:92:55:9f:e7:42:10:5b:d5:3a:0c: 8a:82:8d:8b:7d:1a:cd:4a:f9:46:49:07:a4:fa:e2: 5c:5b:7e:3c:72:32:0c:9d:2c:e4:a6:1c:a0:a5:b8: b4:cf:68:4d:cc:1c:6d:f0:1c:f8:6c:dc:50:bc:ca: ab:d9:28:45:24:6a:3b:1c:89:6c:32:ea:4b:8e:30: be:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DF:23:04:42:9B:18:F8:08:9F:AE:1F:C9:38:67:4F:36:A0:FD:77:B2 X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.66.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:30:13:b6:38:4e:3d:67:30:43:28:2c:90:88:bf:b1:26:e2: 07:7e:61:71:0c:53:1a:46:0d:1e:2b:2b:43:7c:43:e3:1b:0d: dc:09:4c:c4:05:87:10:ce:3f:0f:71:6b:f0:01:c6:68:b7:19: 12:92:f5:e0:08:8e:5c:ae:17:a3:7b:dc:e3:df:16:9c:2e:ce: ad:c6:5e:fd:0d:c1:cc:10:30:d1:09:f4:d1:c0:0e:02:a4:ab: d6:a8:5a:c6:22:8f:ef:b8:77:d0:13:63:93:51:55:1e:d9:d0: d2:4b:d0:63:1e:1b:21:cb:71:68:71:52:17:05:b3:48:47:da: 00:da:aa:dd:a4:d6:f7:71:81:fd:f4:e8:17:e7:de:9a:dd:08: 19:f8:f9:35:56:ab:ae:36:88:48:40:94:c1:1b:fb:02:bb:f5: 91:de:5f:fc:02:c9:ee:83:40:f1:08:e1:5a:a0:a5:8c:cf:4e: c5:ea:b6:72:1f:46:13:d2:69:dd:bf:67:46:1a:c2:7f:a7:4d: 6f:97:75:26:47:20:0f:bf:fc:6a:b6:14:53:5d:d5:2d:5e:3d: 48:35:dc:06:6c:88:1f:07:df:d9:a0:56:3c:15:4e:c8:78:50: ff:8c:0d:7c:d4:6f:b0:ca:0a:c2:ae:d7:92:44:06:1b:9b:f7: c3:9a:40:e5 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUOm4VtuAAmWKQBk5IMFMcG58TwM8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMzAwMjgwNVoX DTI3MDUwMjAwMzMwNVowMzExMC8GA1UEAxMoREYyMzA0NDI5QjE4RjgwODlGQUUx RkM5Mzg2NzRGMzZBMEZENzdCMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAISg1bW06dFGbJ4p+FKeXlFhq/LUr0/JDP7oOW/8tlk3MCGiub9zPnEtRIzL jxKj1yr0ovJtjNxcxq7r5RxdXyP2Yt7/Qe8Kw2s+2szUy3duGeVcxHS+0fsvmoj/ RsZAgCWsLC+WGq2oyfettD03ghPPJCL1uIc3ioR+Em4h7OM6wBVTi+/JokG2ykNj LK4K87MqZy6dHxi9QCMzluWCX6i9BLdz2R09AE0gIH2FyJRnxLtRxAgIQLGSVZ/n QhBb1ToMioKNi30azUr5RkkHpPriXFt+PHIyDJ0s5KYcoKW4tM9oTcwcbfAc+Gzc ULzKq9koRSRqOxyJbDLqS44wvusCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN8jBEKbGPgIn64fyThnTzag/XeyMB8GA1UdIwQYMBaAFH30 NJU0RBrxGmXd01iPdNxZwtNiMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMC83 REY0MzQ5NTM0NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9mZlEw bFRSRUd2RWFaZDNUV0k5MDNGbkMwMkkuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzQ4NGU4NzlmLTNhNTYtNGQ4ZC04M2U4LTBlOWNjNjU3NzBlYS8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby80ODRlODc5 Zi0zYTU2LTRkOGQtODNlOC0wZTljYzY1NzcwZWEvMC9ERjIzMDQ0MjlCMThGODA4 OUZBRTFGQzkzODY3NEYzNkEwRkQ3N0IyLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBnQ9CMA0GCSqGSIb3DQEBCwUAA4IBAQAPMBO2OE49ZzBDKCyQiL+xJuIHfmFx DFMaRg0eKytDfEPjGw3cCUzEBYcQzj8PcWvwAcZotxkSkvXgCI5crheje9zj3xac Ls6txl79DcHMEDDRCfTRwA4CpKvWqFrGIo/vuHfQE2OTUVUe2dDSS9BjHhshy3Fo cVIXBbNIR9oA2qrdpNb3cYH99OgX596a3QgZ+Pk1VquuNohIQJTBG/sCu/WR3l/8 Asnug0DxCOFaoKWMz07F6rZyH0YT0mndv2dGGsJ/p01vl3UmRyAPv/xqthRTXdUt Xj1INdwGbIgfB9/ZoFY8FU7IeFD/jA181G+wygrCrteSRAYbm/fDmkDl -----END CERTIFICATE-----Generated at Tue May 12 22:38:55 2026 by rpki-client