$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9.cer File: 0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9.cer (raw, json) Hash identifier: bNH2bpLYsoSz3UDe5GyyyDBI8uxn/qEtMethJdLP87U= Subject key identifier: 0B:BA:1F:CB:8D:97:6D:A2:F1:C2:93:57:FE:77:DE:1F:08:E6:7B:B9 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5596289388248CB001952D69152721E071305C74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9.mft caRepository: rsync://rpki-rsync.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 01:49:06 +0000 Certificate not after: Sun 02 May 2027 01:54:06 +0000 Subordinate resources: IP: 103.172.196.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:96:28:93:88:24:8c:b0:01:95:2d:69:15:27:21:e0:71:30:5c:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 01:49:06 2026 GMT Not After : May 2 01:54:06 2027 GMT Subject: CN=0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:89:fb:fb:47:18:82:17:b4:51:e8:d5:4f:70: b2:69:ec:6d:e4:34:b7:f2:e3:dd:38:cb:40:fd:f7: 46:e1:fc:61:79:32:74:41:b4:1f:fa:43:e8:77:f2: 1b:3a:c2:75:70:93:1b:3d:37:53:29:7e:c8:9c:af: 4f:db:62:eb:5c:ab:ac:45:96:08:bf:1b:34:4c:40: 25:3e:01:e2:73:c3:60:26:a1:0a:12:ce:52:b4:82: e6:bf:02:7e:fa:09:33:35:1c:19:36:2b:4f:e1:fd: 69:77:4a:7b:ec:12:1f:ec:f4:87:ba:ba:7b:ef:8e: 76:66:1d:ff:10:d7:26:67:81:ea:bc:4f:ed:2a:78: 31:09:9e:c4:e7:0d:39:9a:8a:8d:67:19:4f:9d:e0: 7c:9d:e9:f3:d1:f4:74:9b:96:4a:88:2f:f3:00:fd: 52:e5:7a:d2:31:41:1e:6f:5a:93:13:3e:1a:3b:4b: 18:61:89:24:70:ea:3f:d5:ce:95:18:be:f1:5c:37: 4f:48:cb:dd:8a:ac:44:27:0a:d4:91:d0:57:87:16: 70:1d:24:88:18:99:11:5f:84:2f:5c:3f:c9:89:2f: 6c:a4:1a:cf:2f:33:0d:3f:43:2e:c2:35:2d:18:97: 5f:e0:73:26:1b:45:a1:1c:64:80:73:eb:6d:e0:28: e1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 0B:BA:1F:CB:8D:97:6D:A2:F1:C2:93:57:FE:77:DE:1F:08:E6:7B:B9 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/c397cfc5-e0b0-4820-b859-79625201ecaf/0/0BBA1FCB8D976DA2F1C29357FE77DE1F08E67BB9.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.196.0/23 Signature Algorithm: sha256WithRSAEncryption 36:45:84:3a:f0:d5:a3:e6:ee:41:11:2e:e3:e9:b9:e4:64:9d: 90:5a:5c:59:e2:96:78:a0:82:cb:65:87:02:da:e5:63:87:44: a5:02:5b:36:1c:af:05:c1:d2:52:3a:7b:72:24:50:26:f4:2e: 93:bf:59:c3:bd:c1:eb:ef:f0:5d:e6:0e:22:1b:59:a6:07:d6: 19:b0:dc:bf:43:a5:fb:b4:53:6d:60:d2:71:5e:e7:b5:00:be: 32:6a:0b:8d:a7:6e:e4:f6:9c:bb:db:a2:d3:88:76:47:e2:3d: 25:32:86:64:12:a8:6c:5c:36:a7:6b:e9:d5:d3:0e:46:d4:76: c7:14:77:5b:21:51:9f:05:2b:8f:dc:39:e7:95:1d:db:36:8b: a4:3a:cb:b8:c8:23:85:74:a7:cb:90:5e:f9:96:b3:bd:ec:31: 1b:74:a2:42:40:66:9b:b4:89:c8:a8:9b:d5:aa:08:00:bd:db: c9:c1:de:f2:b2:cd:91:f9:66:0d:46:07:d7:14:12:43:5f:16: a4:a7:3d:d9:b3:79:32:e9:09:52:01:f9:b9:0f:d1:f8:f6:68: e0:38:50:da:6a:bd:2f:ec:52:93:40:cb:6f:8d:f6:9f:47:3a: 16:b2:22:7d:dd:39:52:b4:d9:a3:2f:10:59:ee:0e:6f:4d:40: 5f:19:05:de -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUVZYok4gkjLABlS1pFSch4HEwXHQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAxNDkwNloX DTI3MDUwMjAxNTQwNlowMzExMC8GA1UEAxMoMEJCQTFGQ0I4RDk3NkRBMkYxQzI5 MzU3RkU3N0RFMUYwOEU2N0JCOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJyJ+/tHGIIXtFHo1U9wsmnsbeQ0t/Lj3TjLQP33RuH8YXkydEG0H/pD6Hfy GzrCdXCTGz03Uyl+yJyvT9ti61yrrEWWCL8bNExAJT4B4nPDYCahChLOUrSC5r8C fvoJMzUcGTYrT+H9aXdKe+wSH+z0h7q6e++OdmYd/xDXJmeB6rxP7Sp4MQmexOcN OZqKjWcZT53gfJ3p89H0dJuWSogv8wD9UuV60jFBHm9akxM+GjtLGGGJJHDqP9XO lRi+8Vw3T0jL3YqsRCcK1JHQV4cWcB0kiBiZEV+EL1w/yYkvbKQazy8zDT9DLsI1 LRiXX+BzJhtFoRxkgHPrbeAo4S8CAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAu6H8uNl22i8cKTV/533h8I5nu5MB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv L2MzOTdjZmM1LWUwYjAtNDgyMC1iODU5LTc5NjI1MjAxZWNhZi8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9jMzk3Y2Zj NS1lMGIwLTQ4MjAtYjg1OS03OTYyNTIwMWVjYWYvMC8wQkJBMUZDQjhEOTc2REEy RjFDMjkzNTdGRTc3REUxRjA4RTY3QkI5Lm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6zEMA0GCSqGSIb3DQEBCwUAA4IBAQA2RYQ68NWj5u5BES7j6bnkZJ2QWlxZ 4pZ4oILLZYcC2uVjh0SlAls2HK8FwdJSOntyJFAm9C6Tv1nDvcHr7/Bd5g4iG1mm B9YZsNy/Q6X7tFNtYNJxXue1AL4yaguNp27k9py726LTiHZH4j0lMoZkEqhsXDan a+nV0w5G1HbHFHdbIVGfBSuP3DnnlR3bNoukOsu4yCOFdKfLkF75lrO97DEbdKJC QGabtInIqJvVqggAvdvJwd7yss2R+WYNRgfXFBJDXxakpz3Zs3ky6QlSAfm5D9H4 9mjgOFDaar0v7FKTQMtvjfafRzoWsiJ93TlStNmjLxBZ7g5vTUBfGQXe -----END CERTIFICATE-----Generated at Wed May 13 01:07:12 2026 by rpki-client