$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/008FD9C34C50033457705A2A8FA8AD31C58901DF.cer File: 008FD9C34C50033457705A2A8FA8AD31C58901DF.cer (raw, json) Hash identifier: KiGrz1/M+3XxyWPwYbaFQoieot8N2IUJ00zrmOPLCBI= Subject key identifier: 00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 277A431CD6ECFA3385CBD47427FF09FC11ECB5D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.mft caRepository: rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:46:21 +0000 Certificate not after: Sun 02 May 2027 00:51:21 +0000 Subordinate resources: IP: 202.133.0.0/21 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:7a:43:1c:d6:ec:fa:33:85:cb:d4:74:27:ff:09:fc:11:ec:b5:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 00:46:21 2026 GMT Not After : May 2 00:51:21 2027 GMT Subject: CN=008FD9C34C50033457705A2A8FA8AD31C58901DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:85:a6:6f:f1:50:73:4e:89:3f:94:83:db:ca: a0:53:f7:13:e0:a7:47:c8:d7:13:9c:78:c4:bf:67: d4:c3:bf:b9:d0:f6:53:07:9a:06:af:f0:29:d0:37: 40:ca:5e:27:de:ee:df:be:23:67:dc:7c:bc:5b:d1: ae:ea:96:c9:b4:66:f4:d0:9a:98:3e:0a:18:d2:76: 63:ea:df:45:7d:7a:39:65:b2:1e:bc:43:0c:a8:ec: fb:70:c8:4f:c5:bc:b0:34:f2:93:83:57:7c:3f:ea: 5f:eb:3e:61:1c:40:d8:c3:16:01:75:e4:26:05:0f: 77:20:e0:e0:6c:2b:76:56:cc:d7:f9:07:b3:86:9c: 75:34:ea:16:ce:76:00:35:b5:8c:86:47:7e:42:9e: 5a:55:68:bc:4b:f6:b3:c9:27:ce:fc:a8:7b:74:1b: 7e:b7:b1:a1:68:81:63:b3:bf:c3:d5:14:ca:03:ee: 75:c6:70:4a:30:21:80:cc:87:f0:30:2f:21:a2:32: 27:04:49:6f:fd:18:40:f5:30:a0:49:aa:21:d9:67: 39:1f:c3:6c:2a:b5:03:1a:c6:7e:07:ab:e7:95:d3: cd:05:d9:6c:8c:c2:cf:66:ed:c9:c2:cc:95:70:11: 40:40:8d:c1:f3:e1:26:a6:fb:c1:3f:43:d8:2a:46: f6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 00:8F:D9:C3:4C:50:03:34:57:70:5A:2A:8F:A8:AD:31:C5:89:01:DF X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/008FD9C34C50033457705A2A8FA8AD31C58901DF.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.0.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:a5:f7:6a:b2:42:9c:ce:0f:3c:57:9b:d6:fb:b0:6e:cc:8f: 0e:20:bd:48:4b:25:30:e1:2b:cc:21:a2:2f:43:59:b1:8c:12: f3:7b:26:1f:d0:0e:b5:d4:d4:b0:a3:14:5f:4c:b4:a9:c3:e6: 6b:24:cb:48:0e:d2:71:f9:20:f9:98:92:48:b9:46:3e:ed:56: 70:d9:82:f2:8d:04:c3:54:ff:6d:b9:39:41:7c:b1:82:ae:6c: 70:e2:69:85:b7:cd:25:8c:a5:62:c2:c5:f5:db:66:33:ed:e4: c1:54:68:15:71:d6:3a:c1:a8:2d:a1:22:35:79:5f:1c:c9:ad: 99:15:b4:30:55:0f:50:b8:0d:fd:99:7e:be:3f:74:4b:b3:40: 40:c4:8b:51:58:da:28:f8:64:2c:f3:83:22:4f:fa:c3:c6:e2: 65:59:4a:ca:df:8f:54:fd:00:1d:ab:b9:2d:39:02:5d:92:03: b5:70:e6:c8:03:c4:29:58:a0:5a:18:08:09:0e:bb:b2:62:26: ab:d0:d1:3e:57:9a:b8:5c:b6:c6:04:70:ae:72:fe:31:34:0e: fb:3d:0a:15:92:d2:db:ad:75:80:dc:5f:e0:a1:76:b8:27:c2: cf:57:19:a1:51:52:17:c9:c8:f6:e5:35:92:bd:9b:1e:ce:da: 2d:4d:f6:1a -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUJ3pDHNbs+jOFy9R0J/8J/BHstdgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAwNDYyMVoX DTI3MDUwMjAwNTEyMVowMzExMC8GA1UEAxMoMDA4RkQ5QzM0QzUwMDMzNDU3NzA1 QTJBOEZBOEFEMzFDNTg5MDFERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANyFpm/xUHNOiT+Ug9vKoFP3E+CnR8jXE5x4xL9n1MO/udD2UweaBq/wKdA3 QMpeJ97u374jZ9x8vFvRruqWybRm9NCamD4KGNJ2Y+rfRX16OWWyHrxDDKjs+3DI T8W8sDTyk4NXfD/qX+s+YRxA2MMWAXXkJgUPdyDg4GwrdlbM1/kHs4acdTTqFs52 ADW1jIZHfkKeWlVovEv2s8knzvyoe3QbfrexoWiBY7O/w9UUygPudcZwSjAhgMyH 8DAvIaIyJwRJb/0YQPUwoEmqIdlnOR/DbCq1AxrGfger55XTzQXZbIzCz2btycLM lXARQECNwfPhJqb7wT9D2CpG9h8CAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFACP2cNMUAM0V3BaKo+orTHFiQHfMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzYzNjY5ZWE0LWU4MmYtNDZjMy04ZGQzLTJlOTg4MTU5YjIwMi8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby82MzY2OWVh NC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC8wMDhGRDlDMzRDNTAwMzM0 NTc3MDVBMkE4RkE4QUQzMUM1ODkwMURGLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDyoUAMA0GCSqGSIb3DQEBCwUAA4IBAQAfpfdqskKczg88V5vW+7BuzI8OIL1I SyUw4SvMIaIvQ1mxjBLzeyYf0A611NSwoxRfTLSpw+ZrJMtIDtJx+SD5mJJIuUY+ 7VZw2YLyjQTDVP9tuTlBfLGCrmxw4mmFt80ljKViwsX122Yz7eTBVGgVcdY6wagt oSI1eV8cya2ZFbQwVQ9QuA39mX6+P3RLs0BAxItRWNoo+GQs84MiT/rDxuJlWUrK 349U/QAdq7ktOQJdkgO1cObIA8QpWKBaGAgJDruyYiar0NE+V5q4XLbGBHCucv4x NA77PQoVktLbrXWA3F/goXa4J8LPVxmhUVIXycj25TWSvZseztotTfYa -----END CERTIFICATE-----Generated at Tue May 12 22:45:41 2026 by rpki-client