Certificate
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/1FD138814ED6ED10A74AEDE620ECC6CB414D8D49.cer
File: 1FD138814ED6ED10A74AEDE620ECC6CB414D8D49.cer (raw, json)
Hash identifier: k8tcda+vZkkowfHwpCjFn06OfYS5U6XIrPxy5xIVTAo=
Subject key identifier: 1F:D1:38:81:4E:D6:ED:10:A7:4A:ED:E6:20:EC:C6:CB:41:4D:8D:49
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 741163C57C551FB17A7F7A8B73CC3B61D4054BC0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Manifest: rsync://rpki-rsync.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/1FD138814ED6ED10A74AEDE620ECC6CB414D8D49.mft
caRepository: rsync://rpki-rsync.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/
Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml
Certificate not before: Sun 03 May 2026 02:19:14 +0000
Certificate not after: Sun 02 May 2027 02:24:14 +0000
Subordinate resources: IP: 103.31.156.0/22
IP: 103.234.216.0/23
IP: 103.234.219.0/24
IP: 112.78.96.0/21
IP: 114.31.240.0/21
IP: 114.110.40.0/21
IP: 114.134.72.0/21
IP: 115.178.120.0/21
IP: 116.66.200.0/21
IP: 116.254.120.0/21
IP: 117.103.8.0/21
IP: 182.23.160.0/20
IP: 202.87.176.0/20
IP: 203.191.40.0/21
IP: 223.27.144.0/20
IP: 2401:2400::/32
IP: 2402:3700::/32
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 09:32:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:11:63:c5:7c:55:1f:b1:7a:7f:7a:8b:73:cc:3b:61:d4:05:4b:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 3 02:19:14 2026 GMT
Not After : May 2 02:24:14 2027 GMT
Subject: CN=1FD138814ED6ED10A74AEDE620ECC6CB414D8D49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fe:d4:b8:d8:02:77:44:89:3c:24:ef:40:8c:
38:7d:8d:71:0c:c6:2f:ad:42:03:f5:a3:7b:4c:72:
3a:22:65:17:0c:ab:69:18:b0:6d:19:e5:6d:89:04:
a2:bb:35:f4:8c:77:be:98:f8:d0:7f:c6:0b:04:79:
56:59:fc:c6:36:48:54:4a:52:cd:b3:db:03:d5:43:
96:5c:5f:6f:aa:a4:6e:25:8e:80:ce:2f:01:b8:53:
7d:b4:61:62:95:96:18:d3:c2:66:3f:e5:39:ec:4b:
99:3f:49:21:1f:38:d6:e6:bc:67:a5:0f:fc:5d:f9:
1a:cd:69:23:37:a0:3f:3f:e2:6b:cb:09:4b:98:fb:
91:e1:ca:1f:75:c0:9c:96:72:fd:49:15:e1:bb:ea:
b9:d0:eb:2f:08:e9:3f:ee:c7:26:fa:40:fd:5e:26:
b2:1f:f9:3c:2a:d9:0f:28:cd:99:2d:c3:22:36:6d:
10:2a:df:d4:65:ce:68:b4:76:a0:c4:82:a7:a7:f8:
4e:3f:3b:ec:ad:74:ea:9d:35:1b:70:a0:5e:c1:ca:
ec:ac:f0:80:0d:83:50:f3:b4:be:ba:7b:df:c5:ca:
4f:55:48:7c:64:de:3f:cb:91:e9:94:21:19:32:ca:
61:8c:f9:05:af:2d:bd:35:00:30:49:65:64:bd:41:
7e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
1F:D1:38:81:4E:D6:ED:10:A7:4A:ED:E6:20:EC:C6:CB:41:4D:8D:49
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/
RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/1FD138814ED6ED10A74AEDE620ECC6CB414D8D49.mft
RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.31.156.0/22
103.234.216.0/23
103.234.219.0/24
112.78.96.0/21
114.31.240.0/21
114.110.40.0/21
114.134.72.0/21
115.178.120.0/21
116.66.200.0/21
116.254.120.0/21
117.103.8.0/21
182.23.160.0/20
202.87.176.0/20
203.191.40.0/21
223.27.144.0/20
IPv6:
2401:2400::/32
2402:3700::/32
Signature Algorithm: sha256WithRSAEncryption
13:50:b0:21:5c:1d:5f:fd:71:68:67:4f:c9:ce:13:bc:07:79:
ad:34:87:3f:69:ed:9a:9c:ab:61:78:80:19:17:d3:04:1e:71:
02:8c:36:84:3a:86:59:00:89:9c:4b:27:00:23:ae:66:7e:be:
57:a8:e5:b4:62:1a:1a:28:58:8e:bf:d3:77:3f:10:21:f6:c0:
4c:37:bd:bd:db:26:bd:f8:71:b1:26:bb:b0:74:ac:7c:c6:03:
ae:e8:fb:d3:51:a7:d2:24:68:60:45:d1:99:59:29:d1:60:b7:
09:a9:c6:d4:07:c3:c3:3f:54:f2:17:71:10:cb:1a:5b:dd:3d:
ad:09:5e:72:38:d6:85:09:62:3b:c0:fb:e0:05:76:ed:7b:9b:
97:1e:ab:f5:82:45:43:7a:39:54:9e:37:a4:39:96:85:fd:6f:
d1:fd:99:65:8a:ea:1f:4a:f5:56:a8:dc:c9:dd:75:af:19:68:
a7:39:f5:d2:c7:9c:97:aa:aa:db:78:37:33:2c:b7:49:91:3e:
4f:b4:1e:35:57:3e:a5:9f:5d:03:2e:74:14:aa:1d:b9:91:ea:
0a:5b:c1:67:21:6c:bf:cc:9d:7e:82:70:3d:68:d4:c5:06:4a:
93:b5:8d:14:c1:c6:6c:e3:fc:77:28:ae:f8:8e:85:2f:8e:8f:
69:d4:72:be
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIUdBFjxXxVH7F6f3qLc8w7YdQFS8AwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4
QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAyMTkxNFoX
DTI3MDUwMjAyMjQxNFowMzExMC8GA1UEAxMoMUZEMTM4ODE0RUQ2RUQxMEE3NEFF
REU2MjBFQ0M2Q0I0MTREOEQ0OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJ7+1LjYAndEiTwk70CMOH2NcQzGL61CA/Wje0xyOiJlFwyraRiwbRnlbYkE
ors19Ix3vpj40H/GCwR5Vln8xjZIVEpSzbPbA9VDllxfb6qkbiWOgM4vAbhTfbRh
YpWWGNPCZj/lOexLmT9JIR841ua8Z6UP/F35Gs1pIzegPz/ia8sJS5j7keHKH3XA
nJZy/UkV4bvqudDrLwjpP+7HJvpA/V4msh/5PCrZDyjNmS3DIjZtECrf1GXOaLR2
oMSCp6f4Tj877K106p01G3CgXsHK7KzwgA2DUPO0vrp738XKT1VIfGTeP8uR6ZQh
GTLKYYz5Ba8tvTUAMEllZL1BflkCAwEAAaOCAyQwggMgMA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFB/ROIFO1u0Qp0rt5iDsxstBTY1JMB8GA1UdIwQYMBaAFEGa
hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg
WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80
MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr
BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv
cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG
emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB
GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv
L2U4NzM0OWZiLTQ2NWUtNGU4Yi1hOTc0LTkwZTkzOWJjYjBmYi8wLzCBgQYIKwYB
BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9lODczNDlm
Yi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC8xRkQxMzg4MTRFRDZFRDEw
QTc0QUVERTYyMEVDQzZDQjQxNEQ4RDQ5Lm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6
Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV
HSABAf8EDjAMMAoGCCsGAQUFBw4CMIGJBggrBgEFBQcBBwEB/wR6MHgwYAQCAAEw
WgMEAmcfnAMEAWfq2AMEAGfq2wMEA3BOYAMEA3If8AMEA3JuKAMEA3KGSAMEA3Oy
eAMEA3RCyAMEA3T+eAMEA3VnCAMEBLYXoAMEBMpXsAMEA8u/KAMEBN8bkDAUBAIA
AjAOAwUAJAEkAAMFACQCNwAwDQYJKoZIhvcNAQELBQADggEBABNQsCFcHV/9cWhn
T8nOE7wHea00hz9p7Zqcq2F4gBkX0wQecQKMNoQ6hlkAiZxLJwAjrmZ+vleo5bRi
GhooWI6/03c/ECH2wEw3vb3bJr34cbEmu7B0rHzGA67o+9NRp9IkaGBF0ZlZKdFg
twmpxtQHw8M/VPIXcRDLGlvdPa0JXnI41oUJYjvA++AFdu17m5ceq/WCRUN6OVSe
N6Q5loX9b9H9mWWK6h9K9Vao3Mndda8ZaKc59dLHnJeqqtt4NzMst0mRPk+0HjVX
PqWfXQMudBSqHbmR6gpbwWchbL/MnX6CcD1o1MUGSpO1jRTBxmzj/HcorviOhS+O
j2nUcr4=
-----END CERTIFICATE-----
Generated at Tue May 12 22:45:40 2026 by rpki-client