$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/681BE34DFA90CE2BD987C1F772EA7B05E57083E2.cer File: 681BE34DFA90CE2BD987C1F772EA7B05E57083E2.cer (raw, json) Hash identifier: KBNLWaJSi1yyrMGKt2P8QI7MaCWL7ebnH0La16UVw04= Subject key identifier: 68:1B:E3:4D:FA:90:CE:2B:D9:87:C1:F7:72:EA:7B:05:E5:70:83:E2 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 3F76E49F9F840BA1019EA2BED4BD92513CE1D91D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/993895e2-4020-4c3f-987f-dacdf8e8ea29/1/681BE34DFA90CE2BD987C1F772EA7B05E57083E2.mft caRepository: rsync://rpki-rsync.idnic.net/repo/993895e2-4020-4c3f-987f-dacdf8e8ea29/1/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 01:21:57 +0000 Certificate not after: Sun 02 May 2027 01:26:57 +0000 Subordinate resources: IP: 2001:df4:84c0::/48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:76:e4:9f:9f:84:0b:a1:01:9e:a2:be:d4:bd:92:51:3c:e1:d9:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 01:21:57 2026 GMT Not After : May 2 01:26:57 2027 GMT Subject: CN=681BE34DFA90CE2BD987C1F772EA7B05E57083E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:65:24:66:74:02:ef:90:f6:b0:67:75:c1:ec: 7a:bd:9e:78:c2:5d:c7:6b:fc:e0:be:1d:b5:4c:02: 6d:de:a1:95:70:32:af:d3:a4:73:7e:df:16:72:32: f8:15:19:87:5f:fb:8a:e6:38:a9:2b:35:3a:23:60: 94:e5:b4:39:be:1f:82:ed:38:ec:c0:be:71:a3:33: 7e:44:b8:9b:19:28:45:fb:e3:73:0b:aa:97:0e:76: c6:8e:23:6a:77:01:0a:82:0f:2b:07:5e:e9:16:e2: 7a:6a:f6:b7:a9:4e:40:1f:87:f0:98:33:2c:e5:08: 2f:8a:ce:c1:a2:40:04:0a:9f:26:3f:db:0a:fc:11: 80:9a:15:8d:80:a8:5f:4c:c7:7a:d6:c0:04:8e:1e: 86:24:6b:84:0d:7f:68:84:88:45:21:3c:7f:85:63: f1:91:b9:91:f5:ec:4d:a8:b6:2f:96:8e:e6:61:d7: 47:61:26:75:5a:b3:7f:3f:c7:2a:99:2d:f6:ae:1a: b9:b5:e9:02:ba:96:f8:89:18:8e:42:b1:0d:5b:07: 95:be:d6:62:9a:24:f9:e8:40:1b:5e:b0:75:9c:b1: c4:97:81:e1:d7:0b:a4:9d:b2:e7:0a:7c:04:95:54: 07:0d:68:02:e1:91:bb:ab:32:e9:c5:8a:14:9b:f5: 6d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 68:1B:E3:4D:FA:90:CE:2B:D9:87:C1:F7:72:EA:7B:05:E5:70:83:E2 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/993895e2-4020-4c3f-987f-dacdf8e8ea29/1/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/993895e2-4020-4c3f-987f-dacdf8e8ea29/1/681BE34DFA90CE2BD987C1F772EA7B05E57083E2.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:84c0::/48 Signature Algorithm: sha256WithRSAEncryption 57:94:0f:ce:9f:13:c7:c9:17:ad:9b:ed:b2:6c:ff:78:60:e5: 01:15:17:c8:dd:10:e4:fd:40:e4:39:5e:24:69:e9:fb:98:7e: 27:1d:32:37:52:e7:fe:bc:e5:d0:a2:61:ff:94:92:de:33:01: 3a:54:0b:41:c3:8d:e4:e5:ae:f3:cc:ba:ba:c4:86:c0:08:dc: 36:7a:5f:72:fa:15:88:f6:03:23:e8:42:db:c7:c7:0f:94:db: d1:c8:2e:86:54:34:0b:60:ea:9b:16:44:fa:41:3a:17:ab:14: e3:5f:b6:d5:99:1a:7a:35:85:b4:87:9a:d9:c4:9b:e2:29:c4: a2:73:f9:9c:99:28:97:20:ab:17:d8:be:fd:5f:2e:20:5e:84: d8:91:f3:22:6e:59:d0:d2:8c:ed:b2:22:8d:36:91:2e:4d:a7: 3a:a9:29:47:74:67:3c:b1:f1:2b:81:c9:cc:b3:9c:06:55:dd: c0:56:a4:c8:28:6c:85:3f:12:f1:29:d1:3b:2c:e5:3a:10:4d: 3f:fc:67:14:96:49:ce:d6:31:20:2c:f1:4e:5e:5d:4c:23:f0: 83:d0:ce:c8:ff:cd:b4:e1:77:56:49:48:b7:7a:16:16:b6:f4: 5d:fd:e0:9a:fb:5f:a5:ab:95:ac:19:84:45:25:8a:92:db:e3: 80:46:21:f0 -----BEGIN CERTIFICATE----- MIIFyTCCBLGgAwIBAgIUP3bkn5+EC6EBnqK+1L2SUTzh2R0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAxMjE1N1oX DTI3MDUwMjAxMjY1N1owMzExMC8GA1UEAxMoNjgxQkUzNERGQTkwQ0UyQkQ5ODdD MUY3NzJFQTdCMDVFNTcwODNFMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtlJGZ0Au+Q9rBndcHser2eeMJdx2v84L4dtUwCbd6hlXAyr9Okc37fFnIy +BUZh1/7iuY4qSs1OiNglOW0Ob4fgu047MC+caMzfkS4mxkoRfvjcwuqlw52xo4j ancBCoIPKwde6Rbiemr2t6lOQB+H8JgzLOUIL4rOwaJABAqfJj/bCvwRgJoVjYCo X0zHetbABI4ehiRrhA1/aISIRSE8f4Vj8ZG5kfXsTai2L5aO5mHXR2EmdVqzfz/H Kpkt9q4aubXpArqW+IkYjkKxDVsHlb7WYpok+ehAG16wdZyxxJeB4dcLpJ2y5wp8 BJVUBw1oAuGRu6sy6cWKFJv1bdUCAwEAAaOCArwwggK4MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGgb4036kM4r2YfB93LqewXlcIPiMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv Lzk5Mzg5NWUyLTQwMjAtNGMzZi05ODdmLWRhY2RmOGU4ZWEyOS8xLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby85OTM4OTVl Mi00MDIwLTRjM2YtOTg3Zi1kYWNkZjhlOGVhMjkvMS82ODFCRTM0REZBOTBDRTJC RDk4N0MxRjc3MkVBN0IwNUU1NzA4M0UyLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcAIAEN9ITAMA0GCSqGSIb3DQEBCwUAA4IBAQBXlA/OnxPHyRetm+2ybP94YOUB FRfI3RDk/UDkOV4kaen7mH4nHTI3Uuf+vOXQomH/lJLeMwE6VAtBw43k5a7zzLq6 xIbACNw2el9y+hWI9gMj6ELbx8cPlNvRyC6GVDQLYOqbFkT6QToXqxTjX7bVmRp6 NYW0h5rZxJviKcSic/mcmSiXIKsX2L79Xy4gXoTYkfMiblnQ0oztsiKNNpEuTac6 qSlHdGc8sfErgcnMs5wGVd3AVqTIKGyFPxLxKdE7LOU6EE0//GcUlknO1jEgLPFO Xl1MI/CD0M7I/8204XdWSUi3ehYWtvRd/eCa+1+lq5WsGYRFJYqS2+OARiHw -----END CERTIFICATE-----Generated at Tue May 12 22:32:46 2026 by rpki-client