$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/0/E594107BADC6C8DBED3F533855138968247BB6AF.cer File: E594107BADC6C8DBED3F533855138968247BB6AF.cer (raw, json) Hash identifier: dl7l5amT4JCBeiSI5+1vmgngsgilz5HrtYfnxrR62bM= Subject key identifier: E5:94:10:7B:AD:C6:C8:DB:ED:3F:53:38:55:13:89:68:24:7B:B6:AF Authority key identifier: 7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 Certificate issuer: /CN=A91862140000/serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Certificate serial: 2B4A668C02177623099BA2620EC562422C66D47C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Manifest: rsync://rpki-rsync.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/E594107BADC6C8DBED3F533855138968247BB6AF.mft caRepository: rsync://rpki-rsync.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:42:01 +0000 Certificate not after: Sun 02 May 2027 00:47:01 +0000 Subordinate resources: IP: 157.20.156.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:4a:66:8c:02:17:76:23:09:9b:a2:62:0e:c5:62:42:2c:66:d4:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=7DF4349534441AF11A65DDD3588F74DC59C2D362 Validity Not Before: May 3 00:42:01 2026 GMT Not After : May 2 00:47:01 2027 GMT Subject: CN=E594107BADC6C8DBED3F533855138968247BB6AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ab:35:fb:32:2e:98:39:dc:46:e3:69:1a:22: cd:cf:7b:fe:e2:fe:3a:f9:a2:a2:20:88:cf:6d:7c: a9:ec:cd:a8:9d:54:43:f6:b4:e2:32:b1:65:a4:6f: e5:62:bb:94:13:ec:d1:c9:98:20:fa:23:60:94:5d: d3:ed:56:0d:46:27:f4:90:70:7e:20:35:a5:f5:26: 91:e9:40:a4:1d:01:80:db:0f:71:31:ff:81:54:13: 76:e5:e9:1e:37:2c:8c:45:e9:d0:3d:f5:37:9a:75: c0:f8:a1:e4:da:4d:88:38:17:29:e0:55:91:7a:87: db:02:90:09:43:fe:13:20:52:f7:a3:5d:9a:ff:e0: a7:4b:5f:6a:2a:84:14:26:c2:7c:37:bb:ac:05:20: 4a:a6:b4:57:39:53:cc:2d:3a:ae:ff:9b:ec:a8:c1: 8c:3c:cc:f6:1f:10:3f:c6:47:98:35:03:a1:41:00: a3:97:7f:9e:aa:57:41:16:d4:9b:5a:f0:61:d1:fc: b2:69:18:d8:8b:68:20:79:c6:26:79:cc:b4:29:d9: 4c:56:59:a5:39:19:23:d7:4c:b0:56:f4:de:2a:f6: 5e:aa:6d:57:bc:fe:18:58:2f:34:c7:42:21:ab:6e: 4c:cd:ee:27:72:b9:ee:bf:80:a3:ac:a2:f8:c4:d3: 30:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E5:94:10:7B:AD:C6:C8:DB:ED:3F:53:38:55:13:89:68:24:7B:B6:AF X509v3 Authority Key Identifier: keyid:7D:F4:34:95:34:44:1A:F1:1A:65:DD:D3:58:8F:74:DC:59:C2:D3:62 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/E594107BADC6C8DBED3F533855138968247BB6AF.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.156.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:35:d3:50:93:df:9f:3d:a6:08:02:c0:c6:e6:14:0d:4e:92: 6b:aa:cb:e1:b2:98:80:e1:69:a7:17:51:53:f4:5b:34:df:ab: 0f:4e:ef:4e:8a:f0:f0:44:4d:b9:86:78:f2:a8:42:fb:5f:1d: 5c:94:9a:12:2c:dc:ba:52:3e:ed:81:db:24:07:74:f2:ef:3c: 1c:83:76:5e:00:d0:ad:0c:04:2d:5a:a4:b1:8d:3a:fb:a6:6e: 48:61:8a:ee:3a:e2:a2:6c:63:de:18:2b:c9:ee:74:d6:93:d4: 50:3e:30:c8:e9:df:4e:ef:38:30:4a:1e:ad:0b:2e:e5:3d:4a: a6:bf:e0:a3:7a:64:d2:fd:64:66:cc:e0:68:14:f7:c2:7b:79: 21:f6:cd:26:2c:bb:45:ce:33:66:18:83:ab:f5:85:ae:ef:68: 5c:dc:5f:73:2f:02:91:f2:bd:fb:a6:99:73:3e:25:62:bf:51: 32:e7:65:9a:13:e7:4c:e5:72:84:33:ad:ce:f3:44:c1:38:ec: 05:db:6f:e7:91:e5:dc:f5:33:59:e3:e7:99:f2:31:7c:d4:52: 67:46:79:05:b6:f4:75:8f:5b:99:e1:f0:56:19:42:3c:72:1b: 98:41:5e:9d:6a:9f:9a:2e:e6:a2:7a:ee:23:7a:96:b8:25:34: e4:8a:b9:f4 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUK0pmjAIXdiMJm6JiDsViQixm1HwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg3REY0MzQ5NTM0 NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyMB4XDTI2MDUwMzAwNDIwMVoX DTI3MDUwMjAwNDcwMVowMzExMC8GA1UEAxMoRTU5NDEwN0JBREM2QzhEQkVEM0Y1 MzM4NTUxMzg5NjgyNDdCQjZBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOOrNfsyLpg53EbjaRoizc97/uL+OvmioiCIz218qezNqJ1UQ/a04jKxZaRv 5WK7lBPs0cmYIPojYJRd0+1WDUYn9JBwfiA1pfUmkelApB0BgNsPcTH/gVQTduXp HjcsjEXp0D31N5p1wPih5NpNiDgXKeBVkXqH2wKQCUP+EyBS96Ndmv/gp0tfaiqE FCbCfDe7rAUgSqa0VzlTzC06rv+b7KjBjDzM9h8QP8ZHmDUDoUEAo5d/nqpXQRbU m1rwYdH8smkY2ItoIHnGJnnMtCnZTFZZpTkZI9dMsFb03ir2XqptV7z+GFgvNMdC IatuTM3uJ3K57r+Ao6yi+MTTMPsCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOWUEHutxsjb7T9TOFUTiWgke7avMB8GA1UdIwQYMBaAFH30 NJU0RBrxGmXd01iPdNxZwtNiMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMC83 REY0MzQ5NTM0NDQxQUYxMUE2NURERDM1ODhGNzREQzU5QzJEMzYyLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9mZlEw bFRSRUd2RWFaZDNUV0k5MDNGbkMwMkkuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzVkNTliODIyLTVjMDgtNDZmMS1iMjVlLTc1OGRjMThlOTkwNS8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby81ZDU5Yjgy Mi01YzA4LTQ2ZjEtYjI1ZS03NThkYzE4ZTk5MDUvMC9FNTk0MTA3QkFEQzZDOERC RUQzRjUzMzg1NTEzODk2ODI0N0JCNkFGLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBnRScMA0GCSqGSIb3DQEBCwUAA4IBAQBNNdNQk9+fPaYIAsDG5hQNTpJrqsvh spiA4WmnF1FT9Fs036sPTu9OivDwRE25hnjyqEL7Xx1clJoSLNy6Uj7tgdskB3Ty 7zwcg3ZeANCtDAQtWqSxjTr7pm5IYYruOuKibGPeGCvJ7nTWk9RQPjDI6d9O7zgw Sh6tCy7lPUqmv+CjemTS/WRmzOBoFPfCe3kh9s0mLLtFzjNmGIOr9YWu72hc3F9z LwKR8r37pplzPiViv1Ey52WaE+dM5XKEM63O80TBOOwF22/nkeXc9TNZ4+eZ8jF8 1FJnRnkFtvR1j1uZ4fBWGUI8chuYQV6dap+aLuaieu4jepa4JTTkirn0 -----END CERTIFICATE-----Generated at Tue May 12 22:04:00 2026 by rpki-client