$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/59C6DD576568EAA049F24E2205FDFFA34E712D32.cer File: 59C6DD576568EAA049F24E2205FDFFA34E712D32.cer (raw, json) Hash identifier: cEzdxgTjgC43h7yhWwfHlBzm1/o584y2tt6TGbop0oU= Subject key identifier: 59:C6:DD:57:65:68:EA:A0:49:F2:4E:22:05:FD:FF:A3:4E:71:2D:32 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 57DA9005C3AC7512418D1CD2E92E3A12F7138D44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/9113e7c4-773f-474c-b06d-6260a306a0ca/0/59C6DD576568EAA049F24E2205FDFFA34E712D32.mft caRepository: rsync://rpki-rsync.idnic.net/repo/9113e7c4-773f-474c-b06d-6260a306a0ca/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 01:17:09 +0000 Certificate not after: Sun 02 May 2027 01:22:09 +0000 Subordinate resources: IP: 103.244.96.0/22 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:da:90:05:c3:ac:75:12:41:8d:1c:d2:e9:2e:3a:12:f7:13:8d:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 01:17:09 2026 GMT Not After : May 2 01:22:09 2027 GMT Subject: CN=59C6DD576568EAA049F24E2205FDFFA34E712D32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:07:10:8a:f0:75:d9:0d:c5:69:40:6f:f7:7c: b8:78:84:70:c6:d0:9e:30:91:6d:de:16:d9:92:1a: ef:43:c9:a4:a6:ec:1f:55:42:39:53:18:9f:08:7c: ec:7c:6d:53:05:00:b0:87:65:1e:61:65:81:54:bd: a4:71:de:30:07:b1:8c:c3:ea:ee:c5:c2:37:04:98: 38:42:8a:0d:62:8d:d4:91:45:d9:f0:53:b4:0b:af: b9:dd:2f:4f:9f:7d:3c:51:9c:44:04:df:de:5b:4c: ff:9b:dc:90:9c:2c:e9:16:b8:17:c0:1e:db:b7:f3: 8d:d2:26:18:76:9b:d1:37:37:2a:b8:af:6b:5a:0d: 86:95:2f:a9:c6:22:34:da:6c:c8:e7:7f:b1:73:b5: 5d:be:b5:04:0e:b4:97:4f:05:d5:88:02:d9:5d:35: db:8c:18:af:8b:7e:d6:64:0e:b5:02:77:19:91:1c: 0f:23:e4:21:13:f0:73:ec:bb:dd:02:46:0d:49:ee: 64:65:7a:f3:8d:90:19:75:41:1c:52:c3:5f:83:80: c6:b8:61:ad:8d:96:a6:63:37:c8:07:6d:55:91:1a: bc:1f:40:aa:93:60:32:31:75:c5:22:ee:bf:c9:eb: ff:69:15:f3:48:08:b9:12:22:86:00:24:74:a3:a0: 88:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 59:C6:DD:57:65:68:EA:A0:49:F2:4E:22:05:FD:FF:A3:4E:71:2D:32 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/9113e7c4-773f-474c-b06d-6260a306a0ca/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/9113e7c4-773f-474c-b06d-6260a306a0ca/0/59C6DD576568EAA049F24E2205FDFFA34E712D32.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.96.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:6c:78:af:6f:d1:de:f7:0d:42:9f:cd:99:c6:d7:ad:1e:6e: c7:f5:60:61:12:c5:cb:f4:0b:2d:97:fb:2f:c3:50:13:84:1e: 4d:32:8b:df:86:ce:2c:79:c7:5b:c1:81:0d:80:c3:f3:34:1c: f5:4f:3f:75:8c:4f:46:fb:d6:b1:f4:8c:73:99:5a:f1:11:a8: 1f:d4:18:fc:c7:34:ba:4a:45:2c:30:6b:dd:20:15:70:1b:38: da:0b:32:18:74:90:cf:f9:7b:62:2e:61:d6:25:37:7d:34:b4: 7a:cd:22:c8:38:65:6a:2d:4c:b7:74:9f:be:bb:c4:5f:ce:f2: b0:e6:77:b0:5d:e5:23:dd:5e:e8:59:6d:b0:81:b8:9e:85:31: 83:e4:a8:04:e6:dd:1f:fb:f8:75:02:1d:44:1f:28:73:b4:0c: d3:7e:70:5a:3a:34:6c:c2:68:51:2a:c5:df:6e:18:cc:29:b7: 77:e7:9f:d6:51:d9:ce:0f:22:0a:c7:c4:1c:0b:37:a5:eb:cd: 8d:71:02:2c:38:37:8a:4d:16:44:a0:62:86:59:15:e8:ce:9c: c5:d2:b1:c7:c7:c7:05:e4:a6:33:c8:01:bc:8b:cc:24:5e:7e: 00:0e:9f:23:70:b4:d9:b3:8f:dc:81:53:74:54:0d:20:b9:51: c1:3f:11:56 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUV9qQBcOsdRJBjRzS6S46EvcTjUQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAxMTcwOVoX DTI3MDUwMjAxMjIwOVowMzExMC8GA1UEAxMoNTlDNkRENTc2NTY4RUFBMDQ5RjI0 RTIyMDVGREZGQTM0RTcxMkQzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJYHEIrwddkNxWlAb/d8uHiEcMbQnjCRbd4W2ZIa70PJpKbsH1VCOVMYnwh8 7HxtUwUAsIdlHmFlgVS9pHHeMAexjMPq7sXCNwSYOEKKDWKN1JFF2fBTtAuvud0v T599PFGcRATf3ltM/5vckJws6Ra4F8Ae27fzjdImGHab0Tc3Kriva1oNhpUvqcYi NNpsyOd/sXO1Xb61BA60l08F1YgC2V0124wYr4t+1mQOtQJ3GZEcDyPkIRPwc+y7 3QJGDUnuZGV6842QGXVBHFLDX4OAxrhhrY2WpmM3yAdtVZEavB9AqpNgMjF1xSLu v8nr/2kV80gIuRIihgAkdKOgiJkCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFnG3VdlaOqgSfJOIgX9/6NOcS0yMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzkxMTNlN2M0LTc3M2YtNDc0Yy1iMDZkLTYyNjBhMzA2YTBjYS8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby85MTEzZTdj NC03NzNmLTQ3NGMtYjA2ZC02MjYwYTMwNmEwY2EvMC81OUM2REQ1NzY1NjhFQUEw NDlGMjRFMjIwNUZERkZBMzRFNzEyRDMyLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ/RgMA0GCSqGSIb3DQEBCwUAA4IBAQAebHivb9He9w1Cn82ZxtetHm7H9WBh EsXL9Astl/svw1AThB5NMovfhs4secdbwYENgMPzNBz1Tz91jE9G+9ax9IxzmVrx Eagf1Bj8xzS6SkUsMGvdIBVwGzjaCzIYdJDP+XtiLmHWJTd9NLR6zSLIOGVqLUy3 dJ++u8RfzvKw5newXeUj3V7oWW2wgbiehTGD5KgE5t0f+/h1Ah1EHyhztAzTfnBa OjRswmhRKsXfbhjMKbd355/WUdnODyIKx8QcCzel682NcQIsODeKTRZEoGKGWRXo zpzF0rHHx8cF5KYzyAG8i8wkXn4ADp8jcLTZs4/cgVN0VA0guVHBPxFW -----END CERTIFICATE-----Generated at Tue May 12 22:03:23 2026 by rpki-client