$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer File: 228D8D937BBC58B186163CE4DD0333EF171136B5.cer (raw, json) Hash identifier: 4DwuMJyjfE28Qm+BjTsKHaVFrKL4xEAG2jnYcTHsijQ= Subject key identifier: 22:8D:8D:93:7B:BC:58:B1:86:16:3C:E4:DD:03:33:EF:17:11:36:B5 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 56DA7B3082B57326D5F254D83F1831886DE0E2F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft caRepository: rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 02:02:53 +0000 Certificate not after: Sun 02 May 2027 02:07:53 +0000 Subordinate resources: IP: 45.249.224.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:da:7b:30:82:b5:73:26:d5:f2:54:d8:3f:18:31:88:6d:e0:e2:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 02:02:53 2026 GMT Not After : May 2 02:07:53 2027 GMT Subject: CN=228D8D937BBC58B186163CE4DD0333EF171136B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:58:3a:39:04:a7:33:67:fc:8c:6a:6a:66:af: 0a:4b:ae:cd:b1:e0:9d:2a:bf:11:88:92:e2:3c:c7: d8:76:75:42:75:70:29:52:0f:24:c4:05:fd:e0:3a: 80:22:19:c1:70:a3:8d:a6:da:c8:b7:06:60:a1:59: fd:f2:28:75:87:56:2e:a3:f8:49:01:f7:ef:b0:0b: d2:9d:8e:18:78:81:cf:91:41:a0:30:8e:86:aa:fa: d8:b7:e8:1a:e7:46:b9:3f:11:2b:76:8f:46:2f:21: 4b:21:79:97:8f:5e:a1:bb:75:48:80:f4:83:9c:c8: 99:ec:51:0e:11:5e:9a:a7:1b:ba:51:fe:6d:a7:61: ca:9b:6b:d4:60:8f:de:6e:bc:53:fd:95:9c:cb:e9: 96:e1:e0:50:04:00:b2:ac:69:9f:1f:84:21:fe:de: 36:27:09:90:2d:b4:13:1d:63:b6:d6:67:66:a1:b4: 42:aa:dc:7d:43:a9:58:f9:a0:8d:ea:14:52:09:2b: 47:4d:d5:90:e2:61:81:4f:e7:c9:51:2d:00:69:5a: 56:69:2a:e5:6f:a9:47:e6:a6:66:6b:18:05:d6:26: 58:64:9d:c3:c4:51:53:4b:e6:16:27:4c:ea:2b:03: b2:2b:7b:3c:d0:2c:dc:04:6d:2f:cc:ef:e9:d3:dc: 38:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 22:8D:8D:93:7B:BC:58:B1:86:16:3C:E4:DD:03:33:EF:17:11:36:B5 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.224.0/23 Signature Algorithm: sha256WithRSAEncryption 35:1c:10:97:04:23:4f:68:f0:cc:6f:74:96:d4:d0:5b:ed:9a: b8:c2:e0:80:76:89:c1:1d:7c:aa:25:52:17:54:e0:df:86:ae: 1f:e7:a6:67:13:15:0e:eb:a0:2b:4b:34:55:ab:ee:a9:bb:29: 9c:6c:c2:58:5d:7b:6a:51:00:93:75:f0:d1:e1:6a:ec:c3:31: 0c:6d:a1:b9:55:26:90:51:fc:c6:43:b8:39:53:0f:1f:a4:88: 39:c4:14:f8:f9:9a:e4:d6:01:0c:dd:92:eb:df:04:ff:16:2c: df:e2:e4:a8:c1:43:7f:8d:a2:7f:e1:01:41:a1:ea:cb:b8:e2: 96:e4:a4:43:d0:19:1b:c9:7b:09:0e:cb:0a:72:19:a6:85:a2: d7:81:88:7f:2e:99:6c:a1:2e:f2:97:01:ba:83:ce:30:cf:02: 60:73:df:66:78:1d:63:88:0d:d2:b7:a9:48:b9:b4:e8:d1:86: 3e:6e:a7:0a:ee:00:48:f0:ac:45:f9:2d:3b:29:16:3c:2b:0b: 3f:e4:99:6f:38:fa:06:5b:a9:f1:ad:5a:0c:c6:3a:4a:d3:0a: 80:f3:f2:d3:e3:cb:1e:62:74:1c:bd:71:2a:f7:11:a0:24:cf: 6d:75:a0:d6:3a:7c:a5:df:bf:6f:f9:53:0a:90:14:26:bb:79: 58:3d:e2:53 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUVtp7MIK1cybV8lTYPxgxiG3g4vYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAyMDI1M1oX DTI3MDUwMjAyMDc1M1owMzExMC8GA1UEAxMoMjI4RDhEOTM3QkJDNThCMTg2MTYz Q0U0REQwMzMzRUYxNzExMzZCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI5YOjkEpzNn/IxqamavCkuuzbHgnSq/EYiS4jzH2HZ1QnVwKVIPJMQF/eA6 gCIZwXCjjabayLcGYKFZ/fIodYdWLqP4SQH377AL0p2OGHiBz5FBoDCOhqr62Lfo GudGuT8RK3aPRi8hSyF5l49eobt1SID0g5zImexRDhFemqcbulH+badhyptr1GCP 3m68U/2VnMvpluHgUAQAsqxpnx+EIf7eNicJkC20Ex1jttZnZqG0QqrcfUOpWPmg jeoUUgkrR03VkOJhgU/nyVEtAGlaVmkq5W+pR+amZmsYBdYmWGSdw8RRU0vmFidM 6isDsit7PNAs3ARtL8zv6dPcOEMCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCKNjZN7vFixhhY85N0DM+8XETa1MB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv L2Q5Yjg5OWFjLTQ4NzAtNGUyOC04ZTRlLTJjMjM3NTJhNGE2MC8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9kOWI4OTlh Yy00ODcwLTRlMjgtOGU0ZS0yYzIzNzUyYTRhNjAvMC8yMjhEOEQ5MzdCQkM1OEIx ODYxNjNDRTRERDAzMzNFRjE3MTEzNkI1Lm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBLfngMA0GCSqGSIb3DQEBCwUAA4IBAQA1HBCXBCNPaPDMb3SW1NBb7Zq4wuCA donBHXyqJVIXVODfhq4f56ZnExUO66ArSzRVq+6puymcbMJYXXtqUQCTdfDR4Wrs wzEMbaG5VSaQUfzGQ7g5Uw8fpIg5xBT4+Zrk1gEM3ZLr3wT/Fizf4uSowUN/jaJ/ 4QFBoerLuOKW5KRD0BkbyXsJDssKchmmhaLXgYh/LplsoS7ylwG6g84wzwJgc99m eB1jiA3St6lIubTo0YY+bqcK7gBI8KxF+S07KRY8Kws/5JlvOPoGW6nxrVoMxjpK 0wqA8/LT48seYnQcvXEq9xGgJM9tdaDWOnyl379v+VMKkBQmu3lYPeJT -----END CERTIFICATE-----Generated at Tue May 12 22:16:54 2026 by rpki-client