$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/673A5D511FDCC0A498DE9E3428D35C44EB25AFBB.cer File: 673A5D511FDCC0A498DE9E3428D35C44EB25AFBB.cer (raw, json) Hash identifier: IJGvDDkJUWJ5he0uCvxsZucoWZQezABVrhVxsjK0v/g= Subject key identifier: 67:3A:5D:51:1F:DC:C0:A4:98:DE:9E:34:28:D3:5C:44:EB:25:AF:BB Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 51B460383D49680B008F0021CDA5328CD25E49B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/f504e4c7-7a2d-4d66-8fb4-205565787f24/0/673A5D511FDCC0A498DE9E3428D35C44EB25AFBB.mft caRepository: rsync://rpki-rsync.idnic.net/repo/f504e4c7-7a2d-4d66-8fb4-205565787f24/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 02:36:28 +0000 Certificate not after: Sun 02 May 2027 02:41:28 +0000 Subordinate resources: IP: 103.178.42.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:b4:60:38:3d:49:68:0b:00:8f:00:21:cd:a5:32:8c:d2:5e:49:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 02:36:28 2026 GMT Not After : May 2 02:41:28 2027 GMT Subject: CN=673A5D511FDCC0A498DE9E3428D35C44EB25AFBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f4:42:ab:58:39:ad:14:98:e7:8a:ff:a8:0c: 68:0e:d4:49:d6:bc:8b:ac:1f:bd:6f:b1:22:65:ed: fc:69:2a:13:67:08:99:77:8c:bf:6c:5b:7e:98:97: cc:60:c3:85:b1:18:11:ba:0c:95:e1:22:37:1f:5c: 02:24:3a:eb:7c:b0:fa:72:82:aa:2e:71:87:aa:36: a9:ae:0d:07:c0:96:fe:ac:d7:93:a9:c6:c4:c6:ea: a5:7a:65:fa:49:0e:56:5d:e2:c5:ba:80:12:91:98: 16:de:7f:04:fa:34:6c:c0:c4:59:ab:71:28:2b:58: ba:30:96:92:62:b3:6d:c0:7d:5e:8e:21:13:94:9c: 84:23:ae:af:c0:c3:c4:79:6d:76:ea:89:f0:6b:7e: 58:3f:53:cb:0b:7a:1b:e1:11:04:52:b0:72:0d:88: d0:e9:9a:1a:94:41:28:99:bb:77:f7:55:6d:a6:4b: 9e:c1:a0:6a:5f:08:42:e6:9b:9a:33:24:c0:79:db: 73:32:0f:df:4b:e6:8a:51:db:b9:6d:62:8e:6d:f7: 4e:71:b5:8a:a8:2a:b1:b4:f0:35:32:44:24:a4:b2: 22:22:73:b3:2c:ea:2f:39:eb:1f:6e:59:62:69:5e: 2a:60:6d:c0:44:37:dc:b5:d8:34:59:15:ca:72:f8: 8b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 67:3A:5D:51:1F:DC:C0:A4:98:DE:9E:34:28:D3:5C:44:EB:25:AF:BB X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/f504e4c7-7a2d-4d66-8fb4-205565787f24/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/f504e4c7-7a2d-4d66-8fb4-205565787f24/0/673A5D511FDCC0A498DE9E3428D35C44EB25AFBB.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.42.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:f5:20:e8:b8:b9:06:e5:81:29:39:d4:67:21:b0:84:2c:80: 1e:2f:9e:f2:07:81:66:b6:01:b3:fc:d3:fe:37:d5:85:fc:80: 62:43:bb:f6:c7:f8:d8:e0:cd:be:ce:bd:db:f0:a3:97:d7:37: 2e:9b:6f:b4:1b:64:f2:21:e7:51:54:75:4b:b6:d3:0f:00:32: c3:0d:1e:13:70:81:32:ac:50:18:6a:7b:da:e4:ff:b7:f2:ba: c0:58:43:9d:8c:93:7a:85:0d:c7:9b:09:a8:4e:3b:cf:4d:e7: bb:02:ee:16:7a:de:9b:bc:e0:35:0c:42:4b:b1:c7:0c:cf:99: f9:3c:00:94:c3:12:1d:26:b1:88:ec:a7:6d:b4:1c:b4:54:a8: 5d:88:2e:e3:64:2d:6e:ad:72:25:87:ea:70:64:4b:7b:7d:0b: 29:cc:23:dd:c6:ad:89:3d:9e:ae:5d:97:1c:79:c3:3b:21:5e: 16:48:68:11:7a:d2:c0:64:fd:f4:57:de:6e:95:ca:69:66:11: 63:d9:a4:31:2c:7c:16:c8:f5:32:65:0e:dc:c8:04:e8:cc:5c: c7:f2:a9:c3:9b:64:f6:91:4e:01:e8:57:00:80:7f:05:77:f7: 04:cc:a8:10:1a:f6:6d:27:81:0b:e2:77:6c:4c:6e:93:7e:96: d3:02:03:ce -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUUbRgOD1JaAsAjwAhzaUyjNJeSbAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAyMzYyOFoX DTI3MDUwMjAyNDEyOFowMzExMC8GA1UEAxMoNjczQTVENTExRkRDQzBBNDk4REU5 RTM0MjhEMzVDNDRFQjI1QUZCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANb0QqtYOa0UmOeK/6gMaA7USda8i6wfvW+xImXt/GkqE2cImXeMv2xbfpiX zGDDhbEYEboMleEiNx9cAiQ663yw+nKCqi5xh6o2qa4NB8CW/qzXk6nGxMbqpXpl +kkOVl3ixbqAEpGYFt5/BPo0bMDEWatxKCtYujCWkmKzbcB9Xo4hE5SchCOur8DD xHltduqJ8Gt+WD9Tywt6G+ERBFKwcg2I0OmaGpRBKJm7d/dVbaZLnsGgal8IQuab mjMkwHnbczIP30vmilHbuW1ijm33TnG1iqgqsbTwNTJEJKSyIiJzsyzqLznrH25Z YmleKmBtwEQ33LXYNFkVynL4i3UCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGc6XVEf3MCkmN6eNCjTXETrJa+7MB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv L2Y1MDRlNGM3LTdhMmQtNGQ2Ni04ZmI0LTIwNTU2NTc4N2YyNC8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9mNTA0ZTRj Ny03YTJkLTRkNjYtOGZiNC0yMDU1NjU3ODdmMjQvMC82NzNBNUQ1MTFGRENDMEE0 OThERTlFMzQyOEQzNUM0NEVCMjVBRkJCLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ7IqMA0GCSqGSIb3DQEBCwUAA4IBAQCe9SDouLkG5YEpOdRnIbCELIAeL57y B4FmtgGz/NP+N9WF/IBiQ7v2x/jY4M2+zr3b8KOX1zcum2+0G2TyIedRVHVLttMP ADLDDR4TcIEyrFAYanva5P+38rrAWEOdjJN6hQ3HmwmoTjvPTee7Au4Wet6bvOA1 DEJLsccMz5n5PACUwxIdJrGI7KdttBy0VKhdiC7jZC1urXIlh+pwZEt7fQspzCPd xq2JPZ6uXZccecM7IV4WSGgRetLAZP30V95ulcppZhFj2aQxLHwWyPUyZQ7cyATo zFzH8qnDm2T2kU4B6FcAgH8Fd/cEzKgQGvZtJ4EL4ndsTG6TfpbTAgPO -----END CERTIFICATE-----Generated at Tue May 12 22:47:36 2026 by rpki-client