$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/00BA333E1070BAC4039454B475BAA9D7802B83D6.cer File: 00BA333E1070BAC4039454B475BAA9D7802B83D6.cer (raw, json) Hash identifier: QIp3wXDvM/wCQ6k6DQDSjU2B4cQXfIAmXYE6N01LTm8= Subject key identifier: 00:BA:33:3E:10:70:BA:C4:03:94:54:B4:75:BA:A9:D7:80:2B:83:D6 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 46AF6B525BB254A333844F4A0FA326DF8B0750C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/00BA333E1070BAC4039454B475BAA9D7802B83D6.mft caRepository: rsync://rpki-rsync.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 01:06:23 +0000 Certificate not after: Sun 02 May 2027 01:11:23 +0000 Subordinate resources: IP: 103.244.106.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:af:6b:52:5b:b2:54:a3:33:84:4f:4a:0f:a3:26:df:8b:07:50:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 01:06:23 2026 GMT Not After : May 2 01:11:23 2027 GMT Subject: CN=00BA333E1070BAC4039454B475BAA9D7802B83D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:19:00:87:c3:f8:92:a3:d7:a0:0c:d6:ab:43: e6:d5:64:f6:b6:39:34:ec:3b:be:ab:a6:48:5f:52: 68:d0:6d:d4:13:ab:5a:25:98:77:4b:44:cd:c5:90: 74:6d:1f:6b:ac:81:4b:5b:5b:c6:64:68:f3:cb:49: 6c:8b:eb:e0:08:7c:e5:82:d4:a2:e4:a7:85:f4:9f: 86:82:f9:80:95:04:0c:2e:ca:43:e7:42:4d:dd:c9: df:4f:5b:88:4f:72:fb:86:5d:9e:64:eb:5a:1c:c6: fd:fb:4d:d1:1c:aa:2b:14:0d:3e:ba:ac:f4:d1:25: 02:4a:66:a8:d3:fb:3b:67:ee:2c:ed:36:31:1b:c5: fa:53:37:90:0e:d0:b6:7f:44:4d:b3:98:ca:15:56: ba:c8:8a:5e:79:1b:fd:4a:77:8e:b8:20:bd:a4:31: c9:4e:15:e2:5a:07:77:bc:30:e6:e2:71:ae:22:fe: 35:0c:f5:9e:53:59:7e:f5:41:60:8b:c3:7f:08:34: c6:1d:b7:9b:de:8f:04:5e:29:4b:ad:74:d3:b0:fc: 33:7f:07:ff:db:95:50:d3:71:ad:95:02:9d:78:5b: f8:30:da:d4:15:97:6f:4f:24:57:71:e7:ad:c1:a3: aa:f4:f1:9c:64:01:dc:ce:3d:17:61:8f:12:87:db: 3c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 00:BA:33:3E:10:70:BA:C4:03:94:54:B4:75:BA:A9:D7:80:2B:83:D6 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/00BA333E1070BAC4039454B475BAA9D7802B83D6.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.106.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:14:04:1e:ef:fb:71:02:37:44:58:8a:f9:9c:5f:92:92:7c: 45:6a:54:b8:3e:87:34:bd:4a:c9:f6:5d:99:13:66:b3:f3:83: 48:e5:7a:16:91:3e:4a:44:42:67:61:76:6e:14:00:ce:9d:ef: ae:44:b2:d0:1b:c0:26:c6:87:f0:c3:a3:ba:dd:94:1f:64:09: 75:5a:50:72:f5:ea:4f:27:89:da:1f:aa:a8:e1:72:7c:98:2b: 7b:04:aa:4c:12:21:75:08:59:52:f3:96:b2:78:1d:4b:ed:6e: d5:1a:39:1a:e2:35:8f:27:7a:f3:a0:d8:2e:5b:77:ff:ad:b3: c5:11:52:9d:ab:86:3d:fc:03:0f:cd:6b:ce:bd:50:9c:0e:4f: 84:d7:c4:6e:73:14:66:19:a7:55:5d:a3:ed:06:39:98:e5:0b: f6:f5:a4:66:f6:55:70:4c:22:24:2e:fb:00:c1:c4:4b:46:47: f0:9b:61:56:9a:b0:55:5a:e9:94:85:84:6e:45:b8:ea:b6:ba: e9:50:b0:48:c5:2f:40:57:a7:a1:85:2c:f8:dd:27:7a:62:7c: 7b:f4:de:14:b2:37:ba:8c:b1:4c:9a:fe:48:c5:24:d6:7e:36: 40:0f:c8:ab:ff:32:ba:c0:c8:42:55:93:77:fd:6d:f8:35:4a: 2c:38:34:e7 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIURq9rUluyVKMzhE9KD6Mm34sHUMcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAxMDYyM1oX DTI3MDUwMjAxMTEyM1owMzExMC8GA1UEAxMoMDBCQTMzM0UxMDcwQkFDNDAzOTQ1 NEI0NzVCQUE5RDc4MDJCODNENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANEZAIfD+JKj16AM1qtD5tVk9rY5NOw7vqumSF9SaNBt1BOrWiWYd0tEzcWQ dG0fa6yBS1tbxmRo88tJbIvr4Ah85YLUouSnhfSfhoL5gJUEDC7KQ+dCTd3J309b iE9y+4ZdnmTrWhzG/ftN0RyqKxQNPrqs9NElAkpmqNP7O2fuLO02MRvF+lM3kA7Q tn9ETbOYyhVWusiKXnkb/Up3jrggvaQxyU4V4loHd7ww5uJxriL+NQz1nlNZfvVB YIvDfwg0xh23m96PBF4pS61007D8M38H/9uVUNNxrZUCnXhb+DDa1BWXb08kV3Hn rcGjqvTxnGQB3M49F2GPEofbPM0CAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAC6Mz4QcLrEA5RUtHW6qdeAK4PWMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzgwZGIwZGVjLWY0OWEtNGU3Yy04NTZiLWIxZjA1NDBiMWUyNS8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby84MGRiMGRl Yy1mNDlhLTRlN2MtODU2Yi1iMWYwNTQwYjFlMjUvMC8wMEJBMzMzRTEwNzBCQUM0 MDM5NDU0QjQ3NUJBQTlENzgwMkI4M0Q2Lm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ/RqMA0GCSqGSIb3DQEBCwUAA4IBAQBMFAQe7/txAjdEWIr5nF+SknxFalS4 Poc0vUrJ9l2ZE2az84NI5XoWkT5KREJnYXZuFADOne+uRLLQG8Amxofww6O63ZQf ZAl1WlBy9epPJ4naH6qo4XJ8mCt7BKpMEiF1CFlS85ayeB1L7W7VGjka4jWPJ3rz oNguW3f/rbPFEVKdq4Y9/AMPzWvOvVCcDk+E18RucxRmGadVXaPtBjmY5Qv29aRm 9lVwTCIkLvsAwcRLRkfwm2FWmrBVWumUhYRuRbjqtrrpULBIxS9AV6ehhSz43Sd6 Ynx79N4Usje6jLFMmv5IxSTWfjZAD8ir/zK6wMhCVZN3/W34NUosODTn -----END CERTIFICATE-----Generated at Tue May 12 22:16:08 2026 by rpki-client