$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/2537FCDA868F72C2F6D998446BDFC90F5DF742DA.cer File: 2537FCDA868F72C2F6D998446BDFC90F5DF742DA.cer (raw, json) Hash identifier: 0nNUjdkvtjtUEehAKO5kekOk4EWsy8kyyFk+7sbdSdE= Subject key identifier: 25:37:FC:DA:86:8F:72:C2:F6:D9:98:44:6B:DF:C9:0F:5D:F7:42:DA Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 61A9C8DF5E453A72E1B1E53CFC0C0C211B7694F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/21334d03-eae4-4d20-ba54-b1889d9247ac/0/2537FCDA868F72C2F6D998446BDFC90F5DF742DA.mft caRepository: rsync://rpki-rsync.idnic.net/repo/21334d03-eae4-4d20-ba54-b1889d9247ac/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:01:27 +0000 Certificate not after: Sun 02 May 2027 00:06:27 +0000 Subordinate resources: IP: 103.71.160.0/22 IP: 2406:9880::/32 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:a9:c8:df:5e:45:3a:72:e1:b1:e5:3c:fc:0c:0c:21:1b:76:94:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 00:01:27 2026 GMT Not After : May 2 00:06:27 2027 GMT Subject: CN=2537FCDA868F72C2F6D998446BDFC90F5DF742DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5b:3c:83:19:f1:a2:dc:62:c9:02:be:6f:82: 8e:0b:b6:8d:08:d5:16:01:e4:1f:15:2c:10:42:52: 92:a8:92:07:aa:92:da:0c:ff:d4:70:85:ac:28:0d: 42:73:6f:77:d5:c6:02:56:a8:5f:68:31:48:98:45: e0:a7:25:8f:d1:2d:b9:7a:13:5d:1a:39:69:38:93: cf:d6:86:27:57:59:5d:f2:db:e8:66:e4:bd:2c:26: 18:50:ea:01:52:0e:a8:55:9f:3b:6c:d8:f4:50:ec: cf:e1:77:d3:2a:5d:18:d7:9d:56:d3:a1:53:46:19: 9c:4a:e9:46:38:0f:6e:6e:45:9b:7b:e3:8f:e4:0a: ba:be:24:c5:36:95:1b:b9:c3:b8:88:54:c7:2f:e5: 5e:df:a5:60:54:6f:c8:3e:0f:35:a0:b8:51:ef:44: d9:03:8a:84:18:f3:83:1a:a2:82:49:e7:89:f7:63: 6a:6b:2e:51:6c:30:38:ec:13:08:36:8c:50:48:97: 03:e7:99:15:9c:e5:db:66:2a:c9:dd:5b:cb:a6:29: 46:e9:61:11:d6:fe:11:e2:e8:77:53:6c:55:9d:6d: 63:e4:1f:a3:a7:ef:ad:40:a5:6d:ce:2a:b1:4d:6c: 4b:1b:9a:fa:cf:9f:2f:09:f1:91:74:a5:00:7c:7c: 6b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 25:37:FC:DA:86:8F:72:C2:F6:D9:98:44:6B:DF:C9:0F:5D:F7:42:DA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/21334d03-eae4-4d20-ba54-b1889d9247ac/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/21334d03-eae4-4d20-ba54-b1889d9247ac/0/2537FCDA868F72C2F6D998446BDFC90F5DF742DA.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.160.0/22 IPv6: 2406:9880::/32 Signature Algorithm: sha256WithRSAEncryption 47:10:e4:01:70:83:df:61:40:2a:12:54:d8:02:9a:4e:94:2b: 13:16:f7:50:59:d1:1e:93:2f:c5:00:ff:c4:e2:6a:49:78:cd: 0b:1b:4e:63:a4:b0:03:e1:f1:03:6f:e9:82:22:c7:20:ac:9c: c9:2b:fc:bd:ed:43:b3:fd:e9:36:0d:25:f5:79:75:95:59:e6: 3c:39:21:88:e9:fb:60:80:88:8b:cf:7b:5d:22:60:c7:7f:9a: 9b:a7:ed:6f:66:ce:3e:57:31:0e:ca:a0:aa:82:52:fe:dc:3b: 5c:a8:36:2c:0c:9d:04:12:81:ce:a4:6c:93:05:d6:18:cd:80: 76:77:5f:30:66:e3:b5:6e:5b:db:3e:cf:ea:b4:f6:36:d5:25: 78:6e:28:7b:15:d8:59:de:34:70:6d:e5:aa:1f:37:1f:93:7d: cf:8a:80:54:c7:e7:20:15:05:7e:8b:f9:d8:eb:60:7a:d5:ea: 9d:75:89:d9:3b:d6:8f:f4:cf:da:a5:20:c4:c8:c2:8d:6b:f4: 20:1e:46:a8:15:46:b9:e9:be:8c:39:bf:b8:1d:f8:c4:d6:9f: 50:b8:f6:e0:d9:91:db:30:19:7e:7f:73:4f:a5:6e:70:f5:8e: 56:07:59:5e:4e:71:f2:35:07:3b:70:99:b9:98:11:d4:e0:a2: da:65:be:6a -----BEGIN CERTIFICATE----- MIIF1TCCBL2gAwIBAgIUYanI315FOnLhseU8/AwMIRt2lPYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAwMDEyN1oX DTI3MDUwMjAwMDYyN1owMzExMC8GA1UEAxMoMjUzN0ZDREE4NjhGNzJDMkY2RDk5 ODQ0NkJERkM5MEY1REY3NDJEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOVbPIMZ8aLcYskCvm+Cjgu2jQjVFgHkHxUsEEJSkqiSB6qS2gz/1HCFrCgN QnNvd9XGAlaoX2gxSJhF4Kclj9EtuXoTXRo5aTiTz9aGJ1dZXfLb6GbkvSwmGFDq AVIOqFWfO2zY9FDsz+F30ypdGNedVtOhU0YZnErpRjgPbm5Fm3vjj+QKur4kxTaV G7nDuIhUxy/lXt+lYFRvyD4PNaC4Ue9E2QOKhBjzgxqigknnifdjamsuUWwwOOwT CDaMUEiXA+eZFZzl22Yqyd1by6YpRulhEdb+EeLod1NsVZ1tY+Qfo6fvrUClbc4q sU1sSxua+s+fLwnxkXSlAHx8a4ECAwEAAaOCAsgwggLEMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCU3/NqGj3LC9tmYRGvfyQ9d90LaMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzIxMzM0ZDAzLWVhZTQtNGQyMC1iYTU0LWIxODg5ZDkyNDdhYy8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby8yMTMzNGQw My1lYWU0LTRkMjAtYmE1NC1iMTg4OWQ5MjQ3YWMvMC8yNTM3RkNEQTg2OEY3MkMy RjZEOTk4NDQ2QkRGQzkwRjVERjc0MkRBLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAG AwQCZ0egMA0EAgACMAcDBQAkBpiAMA0GCSqGSIb3DQEBCwUAA4IBAQBHEOQBcIPf YUAqElTYAppOlCsTFvdQWdEeky/FAP/E4mpJeM0LG05jpLAD4fEDb+mCIscgrJzJ K/y97UOz/ek2DSX1eXWVWeY8OSGI6ftggIiLz3tdImDHf5qbp+1vZs4+VzEOyqCq glL+3DtcqDYsDJ0EEoHOpGyTBdYYzYB2d18wZuO1blvbPs/qtPY21SV4bih7FdhZ 3jRwbeWqHzcfk33PioBUx+cgFQV+i/nY62B61eqddYnZO9aP9M/apSDEyMKNa/Qg HkaoFUa56b6MOb+4HfjE1p9QuPbg2ZHbMBl+f3NPpW5w9Y5WB1leTnHyNQc7cJm5 mBHU4KLaZb5q -----END CERTIFICATE-----Generated at Tue May 12 22:10:22 2026 by rpki-client