$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/5503FF5657012337EDF3A39CDA8A20EFCD9F725D.cer File: 5503FF5657012337EDF3A39CDA8A20EFCD9F725D.cer (raw, json) Hash identifier: lf53fzMpXQ6cPmE/nG0RjhDxZfNSnvy5ldeUImPpZBM= Subject key identifier: 55:03:FF:56:57:01:23:37:ED:F3:A3:9C:DA:8A:20:EF:CD:9F:72:5D Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 27373BF492F374B7BF006A952DFB5912041C5423 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/5503FF5657012337EDF3A39CDA8A20EFCD9F725D.mft caRepository: rsync://rpki-rsync.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 01:49:13 +0000 Certificate not after: Sun 02 May 2027 01:54:13 +0000 Subordinate resources: IP: 103.217.208.0/22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:37:3b:f4:92:f3:74:b7:bf:00:6a:95:2d:fb:59:12:04:1c:54:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 01:49:13 2026 GMT Not After : May 2 01:54:13 2027 GMT Subject: CN=5503FF5657012337EDF3A39CDA8A20EFCD9F725D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7e:68:39:e3:bb:67:74:7e:07:71:fc:08:40: 26:4c:91:58:4f:4b:ed:91:44:26:0f:f3:00:64:ac: a3:f8:c9:2f:f1:3b:e3:84:a4:2f:10:f2:13:57:f1: 3d:8a:aa:4b:70:6d:10:c8:91:33:84:49:f1:6e:8d: 7a:eb:bd:ce:84:c7:dc:de:77:24:6d:de:d9:06:f9: 03:88:68:51:29:89:64:77:74:d2:dc:a7:b6:8a:5b: fc:b0:6f:78:ab:2e:65:56:c1:3e:10:6a:bf:d9:b6: 0f:87:27:ea:b5:5b:f0:db:9e:50:69:85:38:79:15: 83:26:81:30:4f:cf:5d:e0:f8:bd:57:30:1e:a1:56: 40:30:34:3f:87:5d:94:40:f9:72:46:ed:d3:8f:55: 1d:c0:9f:23:48:c8:5e:68:ab:97:58:83:3b:52:3d: d9:ac:65:68:20:7c:08:36:b5:d9:de:11:04:12:0c: 28:61:bd:42:39:8e:77:3b:fe:4b:3f:51:97:e8:9a: c1:cd:8d:61:7e:61:8d:bf:2d:a7:df:15:84:9e:02: b2:ea:12:4f:fe:36:ab:54:3f:66:22:9c:ef:60:c8: ed:93:f9:41:98:07:54:56:44:bc:5f:7d:25:e9:57: ea:17:70:66:a8:82:f6:2e:49:9d:6d:4d:c3:b9:00: 97:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 55:03:FF:56:57:01:23:37:ED:F3:A3:9C:DA:8A:20:EF:CD:9F:72:5D X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/5503FF5657012337EDF3A39CDA8A20EFCD9F725D.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.208.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:13:fb:c2:5e:8d:3f:0f:bb:9d:81:bf:c6:21:ae:17:3a:fb: 7e:c7:2f:df:d9:16:e8:34:ff:8a:dd:7d:a7:02:20:cf:98:b8: b2:b0:61:1d:5c:ee:41:2e:1d:c1:0b:f1:a6:ad:2b:66:10:75: 3f:72:95:be:cf:a5:7e:2c:00:bb:e4:28:64:1c:4e:b1:65:6e: f9:99:aa:bd:35:7c:e7:d6:3e:ad:40:82:e4:dd:80:bd:bc:c5: 62:79:91:df:34:43:52:50:8e:2f:d3:41:45:0b:81:f3:a7:74: ed:c9:67:a3:54:85:fb:13:96:58:5b:bf:c1:d6:4a:af:3c:92: e4:da:15:e0:b1:cc:38:b3:fb:b9:65:b4:3f:57:67:4b:7b:eb: 66:6b:b1:6b:53:bb:29:7a:95:5a:84:83:8b:37:77:ce:8b:39: 8a:44:d2:ac:fd:8d:e5:4d:20:fb:0e:30:1b:9c:54:2c:0c:f5: 0b:be:a1:5f:d1:13:f3:e6:a5:91:8d:f2:1b:54:c5:8b:85:b6: ab:b0:ab:e8:ac:21:c7:d1:95:65:18:ca:bb:b9:27:9a:a0:f5: 65:e0:7a:57:3d:6a:7c:3e:f1:a4:96:53:2e:59:3e:d5:9d:05: a5:a4:8c:de:11:7a:a6:5c:50:e0:97:9a:8f:9c:da:bb:44:a3: dc:bf:a4:d3 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUJzc79JLzdLe/AGqVLftZEgQcVCMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAxNDkxM1oX DTI3MDUwMjAxNTQxM1owMzExMC8GA1UEAxMoNTUwM0ZGNTY1NzAxMjMzN0VERjNB MzlDREE4QTIwRUZDRDlGNzI1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOF+aDnju2d0fgdx/AhAJkyRWE9L7ZFEJg/zAGSso/jJL/E744SkLxDyE1fx PYqqS3BtEMiRM4RJ8W6Neuu9zoTH3N53JG3e2Qb5A4hoUSmJZHd00tyntopb/LBv eKsuZVbBPhBqv9m2D4cn6rVb8NueUGmFOHkVgyaBME/PXeD4vVcwHqFWQDA0P4dd lED5ckbt049VHcCfI0jIXmirl1iDO1I92axlaCB8CDa12d4RBBIMKGG9QjmOdzv+ Sz9Rl+iawc2NYX5hjb8tp98VhJ4CsuoST/42q1Q/ZiKc72DI7ZP5QZgHVFZEvF99 JelX6hdwZqiC9i5JnW1Nw7kAl1ECAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFUD/1ZXASM37fOjnNqKIO/Nn3JdMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv L2MzYTVmZmRjLTE1MWEtNGFhZC1hMmI3LTQzMjY0OWRlNmRiZS8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9jM2E1ZmZk Yy0xNTFhLTRhYWQtYTJiNy00MzI2NDlkZTZkYmUvMC81NTAzRkY1NjU3MDEyMzM3 RURGM0EzOUNEQThBMjBFRkNEOUY3MjVELm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ9nQMA0GCSqGSIb3DQEBCwUAA4IBAQB8E/vCXo0/D7udgb/GIa4XOvt+xy/f 2RboNP+K3X2nAiDPmLiysGEdXO5BLh3BC/GmrStmEHU/cpW+z6V+LAC75ChkHE6x ZW75maq9NXzn1j6tQILk3YC9vMVieZHfNENSUI4v00FFC4Hzp3TtyWejVIX7E5ZY W7/B1kqvPJLk2hXgscw4s/u5ZbQ/V2dLe+tma7FrU7spepVahIOLN3fOizmKRNKs /Y3lTSD7DjAbnFQsDPULvqFf0RPz5qWRjfIbVMWLhbarsKvorCHH0ZVlGMq7uSea oPVl4HpXPWp8PvGkllMuWT7VnQWlpIzeEXqmXFDgl5qPnNq7RKPcv6TT -----END CERTIFICATE-----Generated at Tue May 12 22:45:51 2026 by rpki-client