$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/1AF016E175A90D133C5B21DF91F60FA91FC1898F.cer File: 1AF016E175A90D133C5B21DF91F60FA91FC1898F.cer (raw, json) Hash identifier: rJcgpvF+l72MiymNxNO5fM8O0KS7ZYFmKyguyYsJHVw= Subject key identifier: 1A:F0:16:E1:75:A9:0D:13:3C:5B:21:DF:91:F6:0F:A9:1F:C1:89:8F Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 32B3688C25553D2BFCE9B3507BA7629EE7E6F715 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1AF016E175A90D133C5B21DF91F60FA91FC1898F.mft caRepository: rsync://rpki-rsync.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 01:41:06 +0000 Certificate not after: Sun 02 May 2027 01:46:06 +0000 Subordinate resources: IP: 103.102.140.0/22 IP: 2401:e440::/32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:b3:68:8c:25:55:3d:2b:fc:e9:b3:50:7b:a7:62:9e:e7:e6:f7:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 01:41:06 2026 GMT Not After : May 2 01:46:06 2027 GMT Subject: CN=1AF016E175A90D133C5B21DF91F60FA91FC1898F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:49:b5:88:f9:6a:07:f5:ed:e6:4e:e2:84:a8: 6e:ad:17:4c:6b:b9:5b:1b:53:91:f3:aa:bc:ab:0b: f7:9f:3d:a2:ab:f0:13:49:c5:e9:ff:a9:1d:02:1e: c0:9b:d5:0d:ea:e5:db:de:23:a7:32:3e:64:4f:3d: f8:78:5f:4f:63:f4:db:25:68:4a:20:ae:4c:92:42: ef:d2:7a:d0:24:4e:b0:e2:fa:3e:d9:49:ae:25:22: af:28:01:4a:f4:35:f0:53:df:77:c6:46:dd:cc:83: fd:22:2b:70:13:b3:ee:1f:f2:5a:56:34:a8:ff:84: f6:00:3c:56:39:cf:d8:04:7e:7c:6a:f3:1c:9f:bc: 38:2e:76:5f:0b:fb:5f:da:13:a9:86:64:ec:3d:bf: b1:1d:bb:7f:6d:7a:7b:36:cd:56:96:17:00:7f:bd: 33:93:b8:4b:4f:da:59:85:0a:42:44:72:d8:45:d9: ab:58:95:d7:ad:40:0b:44:38:36:88:92:bb:7e:be: e3:88:0d:5c:1a:f6:4c:40:e4:e5:b4:dc:a7:34:cf: 69:56:39:77:f0:d2:2e:a9:89:a6:49:b0:ef:30:a0: 0e:e0:e1:90:4b:c3:97:b7:7c:12:bd:64:a4:54:6c: 7a:fb:c3:c4:b9:02:5b:14:53:2a:00:4d:ac:04:2f: 9e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1A:F0:16:E1:75:A9:0D:13:3C:5B:21:DF:91:F6:0F:A9:1F:C1:89:8F X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1AF016E175A90D133C5B21DF91F60FA91FC1898F.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.140.0/22 IPv6: 2401:e440::/32 Signature Algorithm: sha256WithRSAEncryption 29:c3:ae:31:be:92:59:7d:e0:5c:d4:71:25:92:3e:1f:08:a3: 76:6f:60:9b:5a:1a:18:28:12:87:e9:bf:84:04:19:2f:04:86: cf:52:cd:a6:1e:3a:87:fa:d6:6f:82:92:7b:12:20:18:41:45: ab:13:c5:95:a4:be:4e:8a:1d:90:e4:45:95:94:69:d8:a6:63: fa:b1:9a:fd:79:09:de:d9:0f:d4:97:ee:ec:97:aa:d4:dc:5b: 74:0b:79:f5:03:7e:61:c1:3d:9f:de:44:27:c5:9d:c0:fb:d0: c6:6a:12:f6:0c:f4:22:0f:b3:fa:1c:60:17:54:01:23:25:67: 66:11:40:3e:f3:5d:8d:9e:cc:37:ca:95:51:6e:69:e6:16:47: b8:5b:2d:a3:65:8a:50:54:0a:bc:5e:d1:04:96:e2:18:44:f4: d9:04:26:ec:93:5a:e3:1e:f1:53:22:a0:55:b2:8a:3d:68:bb: 56:a6:91:97:fc:ff:73:8b:1f:e9:89:04:4a:1d:89:3f:bf:87: 8e:75:de:fd:3e:9c:06:15:90:6d:91:12:e8:be:2c:dc:17:22: ac:b0:02:49:02:4a:42:23:55:5d:5d:6c:c0:2c:8b:9d:ae:ba: d8:dd:57:5c:a1:3b:b0:e4:0c:f4:e2:84:37:44:ea:60:7a:5c: 53:4f:53:20 -----BEGIN CERTIFICATE----- MIIF1TCCBL2gAwIBAgIUMrNojCVVPSv86bNQe6dinufm9xUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAxNDEwNloX DTI3MDUwMjAxNDYwNlowMzExMC8GA1UEAxMoMUFGMDE2RTE3NUE5MEQxMzNDNUIy MURGOTFGNjBGQTkxRkMxODk4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANBJtYj5agf17eZO4oSobq0XTGu5WxtTkfOqvKsL9589oqvwE0nF6f+pHQIe wJvVDerl294jpzI+ZE89+HhfT2P02yVoSiCuTJJC79J60CROsOL6PtlJriUirygB SvQ18FPfd8ZG3cyD/SIrcBOz7h/yWlY0qP+E9gA8VjnP2AR+fGrzHJ+8OC52Xwv7 X9oTqYZk7D2/sR27f216ezbNVpYXAH+9M5O4S0/aWYUKQkRy2EXZq1iV161AC0Q4 NoiSu36+44gNXBr2TEDk5bTcpzTPaVY5d/DSLqmJpkmw7zCgDuDhkEvDl7d8Er1k pFRsevvDxLkCWxRTKgBNrAQvns8CAwEAAaOCAsgwggLEMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBrwFuF1qQ0TPFsh35H2D6kfwYmPMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv L2I1NjMyZDk5LTMyYjItNDY3Yi1iN2ZlLTBkMjVmODUzYmZhNi8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9iNTYzMmQ5 OS0zMmIyLTQ2N2ItYjdmZS0wZDI1Zjg1M2JmYTYvMC8xQUYwMTZFMTc1QTkwRDEz M0M1QjIxREY5MUY2MEZBOTFGQzE4OThGLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAG AwQCZ2aMMA0EAgACMAcDBQAkAeRAMA0GCSqGSIb3DQEBCwUAA4IBAQApw64xvpJZ feBc1HElkj4fCKN2b2CbWhoYKBKH6b+EBBkvBIbPUs2mHjqH+tZvgpJ7EiAYQUWr E8WVpL5Oih2Q5EWVlGnYpmP6sZr9eQne2Q/Ul+7sl6rU3Ft0C3n1A35hwT2f3kQn xZ3A+9DGahL2DPQiD7P6HGAXVAEjJWdmEUA+812Nnsw3ypVRbmnmFke4Wy2jZYpQ VAq8XtEEluIYRPTZBCbsk1rjHvFTIqBVsoo9aLtWppGX/P9zix/piQRKHYk/v4eO dd79PpwGFZBtkRLovizcFyKssAJJAkpCI1VdXWzALIudrrrY3VdcoTuw5Az04oQ3 ROpgelxTT1Mg -----END CERTIFICATE-----Generated at Tue May 12 22:45:55 2026 by rpki-client