$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/5340DB769DA0690FFA8A696A6047EDC148F1991A.cer File: 5340DB769DA0690FFA8A696A6047EDC148F1991A.cer (raw, json) Hash identifier: SHuC7oFfHppnoRHq8E8eRZzZxfC5B0DE1mPFD293K+k= Subject key identifier: 53:40:DB:76:9D:A0:69:0F:FA:8A:69:6A:60:47:ED:C1:48:F1:99:1A Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 14818D1C9C6732A592072B4D4600007666A5AD73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/ac714122-860c-414e-a67a-684a1be960de/0/5340DB769DA0690FFA8A696A6047EDC148F1991A.mft caRepository: rsync://rpki-rsync.idnic.net/repo/ac714122-860c-414e-a67a-684a1be960de/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 01:35:23 +0000 Certificate not after: Sun 02 May 2027 01:40:23 +0000 Subordinate resources: IP: 103.147.140.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:81:8d:1c:9c:67:32:a5:92:07:2b:4d:46:00:00:76:66:a5:ad:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 01:35:23 2026 GMT Not After : May 2 01:40:23 2027 GMT Subject: CN=5340DB769DA0690FFA8A696A6047EDC148F1991A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:93:26:56:f1:3e:91:22:6f:6d:78:a1:f8:d3: c7:c6:95:2c:3c:1e:b9:c9:43:04:74:9a:81:9c:88: 41:ee:9a:10:36:88:d3:d9:ca:98:8e:74:06:b0:a4: da:2b:5e:1e:d4:f6:9d:7b:ed:72:2c:ab:7e:bf:68: 27:b9:f0:e3:15:c1:42:8b:25:a0:9e:73:3d:ee:c2: 33:ef:b5:11:5a:c0:f3:e8:5f:6e:ad:37:3b:25:4d: 66:c0:98:54:ee:fa:b7:69:c0:7b:7a:40:0f:21:b6: b8:90:d0:b3:5c:70:e5:9f:bf:cd:13:41:a0:b2:d2: 3e:35:8b:9f:13:6a:4f:f0:2c:61:26:10:53:8c:c9: be:b3:22:4a:91:59:b9:8c:b1:e7:7b:d2:28:bf:45: 0f:f8:56:f3:8e:6b:b4:bd:58:79:55:2e:2c:a1:c9: f5:cb:fc:40:1b:e8:27:e9:2f:26:d9:eb:64:a7:1c: f8:be:cd:01:d0:d4:81:6d:bf:03:14:da:a8:a0:90: bf:96:38:50:47:36:7d:51:f6:69:04:50:eb:f5:3a: 56:08:73:0a:44:02:94:df:e5:ff:ac:3a:df:c5:24: 68:c1:7a:e5:03:07:17:7b:49:a5:3f:9b:a3:f2:24: b7:6f:17:73:75:3e:e5:62:9b:37:e6:9d:7d:fe:e6: cc:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 53:40:DB:76:9D:A0:69:0F:FA:8A:69:6A:60:47:ED:C1:48:F1:99:1A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/ac714122-860c-414e-a67a-684a1be960de/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/ac714122-860c-414e-a67a-684a1be960de/0/5340DB769DA0690FFA8A696A6047EDC148F1991A.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.140.0/23 Signature Algorithm: sha256WithRSAEncryption a2:72:3b:b2:88:b4:6d:77:e4:01:28:c1:ab:a8:db:d5:d9:e1: d8:b3:f1:38:b6:33:d6:86:c8:6f:b9:97:db:07:34:39:d6:74: d7:e3:3d:97:1c:3e:7e:f7:04:64:9c:07:47:8b:41:80:82:24: a4:8f:79:a7:eb:17:07:71:af:4a:4e:92:e2:e9:6e:a3:c4:7d: 9f:09:17:e8:9a:e7:b9:df:76:cf:5d:62:8a:9a:60:2e:e9:c7: d9:60:f7:42:4f:a6:aa:ff:c1:6a:25:56:ad:b5:a5:b1:54:13: 53:24:26:05:5a:e1:06:73:fe:ed:69:86:57:06:a6:a0:09:5c: 4b:90:d0:14:b1:12:a3:bf:fe:aa:24:e8:8b:07:71:d4:97:71: e7:50:04:34:f3:38:7f:eb:d5:91:bb:52:af:3c:b4:54:8a:b9: ea:2c:73:c2:d4:d2:3e:ce:ae:a2:01:82:43:1d:51:54:25:08: 0f:ae:83:20:b5:3e:ca:55:cd:dd:54:e8:83:ec:9d:51:d6:8f: 80:fd:be:4e:6e:f1:dd:ba:fd:5f:06:4b:69:82:2d:02:4f:7a: 0e:3d:f7:3c:86:5e:d0:7c:83:4e:a2:dd:ac:b2:72:ce:97:0e: 55:c8:cf:15:ff:ee:98:a8:f1:e4:57:d7:ef:60:41:90:1f:54: 7e:ae:86:fe -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUFIGNHJxnMqWSBytNRgAAdmalrXMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAxMzUyM1oX DTI3MDUwMjAxNDAyM1owMzExMC8GA1UEAxMoNTM0MERCNzY5REEwNjkwRkZBOEE2 OTZBNjA0N0VEQzE0OEYxOTkxQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGTJlbxPpEib214ofjTx8aVLDweuclDBHSagZyIQe6aEDaI09nKmI50BrCk 2iteHtT2nXvtciyrfr9oJ7nw4xXBQosloJ5zPe7CM++1EVrA8+hfbq03OyVNZsCY VO76t2nAe3pADyG2uJDQs1xw5Z+/zRNBoLLSPjWLnxNqT/AsYSYQU4zJvrMiSpFZ uYyx53vSKL9FD/hW845rtL1YeVUuLKHJ9cv8QBvoJ+kvJtnrZKcc+L7NAdDUgW2/ AxTaqKCQv5Y4UEc2fVH2aQRQ6/U6VghzCkQClN/l/6w638UkaMF65QMHF3tJpT+b o/Ikt28Xc3U+5WKbN+adff7mzP8CAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFNA23adoGkP+oppamBH7cFI8ZkaMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv L2FjNzE0MTIyLTg2MGMtNDE0ZS1hNjdhLTY4NGExYmU5NjBkZS8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9hYzcxNDEy Mi04NjBjLTQxNGUtYTY3YS02ODRhMWJlOTYwZGUvMC81MzQwREI3NjlEQTA2OTBG RkE4QTY5NkE2MDQ3RURDMTQ4RjE5OTFBLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ5OMMA0GCSqGSIb3DQEBCwUAA4IBAQCicjuyiLRtd+QBKMGrqNvV2eHYs/E4 tjPWhshvuZfbBzQ51nTX4z2XHD5+9wRknAdHi0GAgiSkj3mn6xcHca9KTpLi6W6j xH2fCRfomue533bPXWKKmmAu6cfZYPdCT6aq/8FqJVattaWxVBNTJCYFWuEGc/7t aYZXBqagCVxLkNAUsRKjv/6qJOiLB3HUl3HnUAQ08zh/69WRu1KvPLRUirnqLHPC 1NI+zq6iAYJDHVFUJQgProMgtT7KVc3dVOiD7J1R1o+A/b5ObvHduv1fBktpgi0C T3oOPfc8hl7QfINOot2ssnLOlw5VyM8V/+6YqPHkV9fvYEGQH1R+rob+ -----END CERTIFICATE-----Generated at Tue May 12 22:47:51 2026 by rpki-client