$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/53A00628F6956E756C477A3B4A12344C34B5F1A8.cer File: 53A00628F6956E756C477A3B4A12344C34B5F1A8.cer (raw, json) Hash identifier: WZlD7BcqnQGKMDOs4712bLwsiLFze3CLeKdY/xP3KBc= Subject key identifier: 53:A0:06:28:F6:95:6E:75:6C:47:7A:3B:4A:12:34:4C:34:B5:F1:A8 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5CD7F437CA564C9475BC67D0947D260EC7227F93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/53A00628F6956E756C477A3B4A12344C34B5F1A8.mft caRepository: rsync://rpki-rsync.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:23:47 +0000 Certificate not after: Sun 02 May 2027 00:28:47 +0000 Subordinate resources: IP: 103.236.188.0/22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:d7:f4:37:ca:56:4c:94:75:bc:67:d0:94:7d:26:0e:c7:22:7f:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 00:23:47 2026 GMT Not After : May 2 00:28:47 2027 GMT Subject: CN=53A00628F6956E756C477A3B4A12344C34B5F1A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9b:a7:05:58:6e:2a:d0:b3:ee:7b:07:66:a2: 7c:69:b8:b5:99:cf:6d:1e:2d:01:64:28:12:5c:b2: 1d:04:c1:f5:82:42:a5:cc:31:f5:05:18:91:b6:57: c8:b5:e5:5f:b9:af:3e:9a:c2:e9:00:e4:ed:0c:c4: ae:39:78:d8:8f:45:e1:30:79:ec:04:4a:48:c8:8b: cb:64:da:9d:23:2f:52:f0:73:84:1a:37:ae:10:1e: 92:5d:16:4b:56:09:33:d9:b2:6b:b4:f3:3f:34:8e: 98:25:ff:d6:ab:da:fb:70:a9:29:23:81:73:f6:c6: d3:9c:8c:03:bc:52:f4:af:d1:e5:74:56:95:c2:d3: 5f:4e:88:fe:2b:cb:76:d6:39:25:d5:e8:a3:c1:92: da:eb:38:8e:17:b8:fe:e0:9c:0d:28:48:b7:8b:a9: 6f:9d:b1:f0:95:e1:57:d1:2b:49:83:c3:7e:2e:b2: de:cd:1e:31:9b:97:a3:d8:fd:92:3c:1d:80:b3:bf: f6:30:6a:cc:09:54:25:4f:9a:05:f1:05:39:76:32: 1d:67:ba:84:f9:42:5a:4d:9f:e1:79:5a:9f:09:39: 8e:20:30:55:5a:7f:00:40:b7:d0:fc:f6:00:07:53: b2:f4:cc:57:47:b0:60:5a:07:e8:99:37:ec:19:08: 07:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 53:A0:06:28:F6:95:6E:75:6C:47:7A:3B:4A:12:34:4C:34:B5:F1:A8 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/53A00628F6956E756C477A3B4A12344C34B5F1A8.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.188.0/22 Signature Algorithm: sha256WithRSAEncryption 52:99:d4:eb:ee:e0:b2:37:0a:f6:08:5e:c5:6d:87:8a:e2:99: a9:88:a9:7f:f2:3b:b4:0b:0e:4a:9f:49:8c:b9:f1:be:54:9e: 44:11:ca:09:63:2e:fb:30:42:3a:ce:21:63:a7:2a:b6:2f:1a: cb:32:52:99:2d:17:2c:2b:4c:b5:08:22:c4:eb:81:37:c0:27: e4:a4:f2:ff:e2:02:a3:db:b7:aa:ac:73:29:fe:e7:fb:d0:e0: cf:d8:21:90:5a:fb:4a:75:2c:19:a6:b8:a5:7b:39:d0:b9:fb: cb:e9:5a:fd:11:45:08:e7:d2:54:91:62:f8:e1:a3:30:80:72: 57:68:b8:cb:db:54:e9:5b:43:90:42:13:a5:87:ea:af:ba:30: 97:d7:09:9a:cc:70:17:5c:db:70:15:d4:05:ad:9e:3b:5b:26: 8b:14:4d:0c:56:8f:a7:c1:f5:15:3d:c5:55:b5:1e:30:3d:e1: 32:1b:db:40:3d:0b:e4:58:f6:57:3b:ff:57:d9:d1:72:bf:88: 00:4b:07:29:6a:8e:d3:90:97:29:82:25:df:70:80:ff:25:e7: 23:c7:40:8f:a3:1c:d6:fd:c4:fc:5a:5f:ae:78:f2:ab:ad:5c: af:d6:ee:18:6e:99:37:d0:2e:fa:b6:81:9a:e6:f6:98:49:0a: 6c:2f:61:bd -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUXNf0N8pWTJR1vGfQlH0mDscif5MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAwMjM0N1oX DTI3MDUwMjAwMjg0N1owMzExMC8GA1UEAxMoNTNBMDA2MjhGNjk1NkU3NTZDNDc3 QTNCNEExMjM0NEMzNEI1RjFBODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKebpwVYbirQs+57B2aifGm4tZnPbR4tAWQoElyyHQTB9YJCpcwx9QUYkbZX yLXlX7mvPprC6QDk7QzErjl42I9F4TB57ARKSMiLy2TanSMvUvBzhBo3rhAekl0W S1YJM9mya7TzPzSOmCX/1qva+3CpKSOBc/bG05yMA7xS9K/R5XRWlcLTX06I/ivL dtY5JdXoo8GS2us4jhe4/uCcDShIt4upb52x8JXhV9ErSYPDfi6y3s0eMZuXo9j9 kjwdgLO/9jBqzAlUJU+aBfEFOXYyHWe6hPlCWk2f4Xlanwk5jiAwVVp/AEC30Pz2 AAdTsvTMV0ewYFoH6Jk37BkIB/kCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFOgBij2lW51bEd6O0oSNEw0tfGoMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzQyNjFmYWJiLWQ0NmYtNGY4Yy04MTAwLTcxNGMyMGU3YjNjYS8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby80MjYxZmFi Yi1kNDZmLTRmOGMtODEwMC03MTRjMjBlN2IzY2EvMC81M0EwMDYyOEY2OTU2RTc1 NkM0NzdBM0I0QTEyMzQ0QzM0QjVGMUE4Lm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ+y8MA0GCSqGSIb3DQEBCwUAA4IBAQBSmdTr7uCyNwr2CF7FbYeK4pmpiKl/ 8ju0Cw5Kn0mMufG+VJ5EEcoJYy77MEI6ziFjpyq2LxrLMlKZLRcsK0y1CCLE64E3 wCfkpPL/4gKj27eqrHMp/uf70ODP2CGQWvtKdSwZprileznQufvL6Vr9EUUI59JU kWL44aMwgHJXaLjL21TpW0OQQhOlh+qvujCX1wmazHAXXNtwFdQFrZ47WyaLFE0M Vo+nwfUVPcVVtR4wPeEyG9tAPQvkWPZXO/9X2dFyv4gASwcpao7TkJcpgiXfcID/ Jecjx0CPoxzW/cT8Wl+uePKrrVyv1u4Ybpk30C76toGa5vaYSQpsL2G9 -----END CERTIFICATE-----Generated at Tue May 12 22:32:01 2026 by rpki-client