$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.cer File: CFE270B664EB6494B67927A1489C0F8AB9E36FE8.cer (raw, json) Hash identifier: JNX541Kpn6DI4/4u49N/YII5wAFg29B5hcRYQ6NRXUA= Subject key identifier: CF:E2:70:B6:64:EB:64:94:B6:79:27:A1:48:9C:0F:8A:B9:E3:6F:E8 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: BD3DF612115A2F67B430FD7986227E817D87EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.mft caRepository: rsync://rpki-rsync.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:19:29 +0000 Certificate not after: Sun 02 May 2027 00:24:29 +0000 Subordinate resources: IP: 103.152.7.0/24 IP: 2001:df3:e980::/48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: bd:3d:f6:12:11:5a:2f:67:b4:30:fd:79:86:22:7e:81:7d:87:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 00:19:29 2026 GMT Not After : May 2 00:24:29 2027 GMT Subject: CN=CFE270B664EB6494B67927A1489C0F8AB9E36FE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a7:57:db:bc:5a:07:3f:5b:2b:b5:17:16:de: 6c:b5:9a:36:a5:30:52:6d:1e:2b:89:37:9b:c6:b2: 10:01:a5:25:c3:67:df:88:98:7e:3f:29:09:39:90: 23:04:90:44:8d:ae:72:8b:c3:ff:92:81:75:65:69: 1c:46:81:b6:df:8a:01:a9:bb:73:09:e0:a1:99:2c: 20:b9:70:97:fc:65:76:0b:71:a8:d1:3f:2a:9c:0d: 42:84:3c:a0:ea:fb:4d:00:46:e1:31:a2:77:9e:56: 19:1a:e9:09:66:9e:7e:0e:5d:26:48:16:30:ff:57: a2:71:a0:38:07:03:b1:e5:30:a3:ba:ab:e9:1f:b5: b0:9b:34:95:ca:a7:fe:36:ff:07:1b:21:36:ec:2b: cc:0a:b5:38:2d:73:6f:8f:95:c6:d7:bf:54:60:73: 3c:e6:21:b4:a5:dc:1f:fa:10:03:78:30:9c:28:f5: ae:2f:c5:f9:1d:ea:c6:13:18:0c:e0:13:29:e7:0e: fe:16:82:db:0d:b1:c4:fa:d8:e5:30:38:5d:3e:10: c5:a9:c2:54:3f:84:eb:fc:e8:ad:f7:a4:e2:8d:73: 1b:74:dc:8b:b4:d4:43:9d:78:b9:f8:8f:77:b2:ad: eb:ab:3c:67:a9:43:31:21:a5:1a:51:3d:5a:91:d4: 3b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CF:E2:70:B6:64:EB:64:94:B6:79:27:A1:48:9C:0F:8A:B9:E3:6F:E8 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.7.0/24 IPv6: 2001:df3:e980::/48 Signature Algorithm: sha256WithRSAEncryption 58:93:bf:18:13:e3:4f:76:c4:75:74:9a:4d:f9:87:17:2d:f8: 81:01:47:96:a7:d0:a3:40:2c:1f:aa:f8:53:81:14:6f:6a:a6: 83:f4:de:c5:29:13:42:31:7b:a3:62:ff:83:78:00:dd:27:a0: 2e:fb:fb:21:fa:b3:b9:0b:68:b3:81:d7:00:9e:8d:b8:67:64: 19:04:3d:74:10:85:09:c7:56:6f:f8:28:fb:62:bf:cc:08:f4: 9c:91:a8:b6:f5:36:20:dc:1f:8c:ca:b8:bc:b7:72:c1:dc:48: 52:a9:01:5c:ae:35:b2:71:70:ec:b3:92:f3:23:8f:9a:1a:54: 74:3e:05:a3:92:bc:8c:e1:5e:cb:30:a6:4c:03:48:fb:c1:fa: 23:7f:20:61:02:88:c3:95:22:80:3a:80:71:e5:da:ba:bb:d5: 5b:52:59:b6:3d:e2:45:70:86:15:94:0c:a5:63:72:74:d7:f4: 18:b7:32:ec:68:6a:33:0c:cb:5f:88:14:5d:f7:9b:35:d4:67: cf:d7:97:48:2c:78:7d:4d:2b:82:54:b3:51:04:4c:6f:c4:ea: 71:48:f7:6f:de:a3:b5:ce:2d:03:05:8f:20:43:c6:d4:e7:36: fb:37:8e:ff:1e:c7:ed:bb:8d:46:6f:29:07:ef:df:9e:e3:ba: f7:c9:7e:58 -----BEGIN CERTIFICATE----- MIIF1zCCBL+gAwIBAgIUAL099hIRWi9ntDD9eYYifoF9h+wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAwMTkyOVoX DTI3MDUwMjAwMjQyOVowMzExMC8GA1UEAxMoQ0ZFMjcwQjY2NEVCNjQ5NEI2Nzky N0ExNDg5QzBGOEFCOUUzNkZFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO2nV9u8Wgc/Wyu1FxbebLWaNqUwUm0eK4k3m8ayEAGlJcNn34iYfj8pCTmQ IwSQRI2ucovD/5KBdWVpHEaBtt+KAam7cwngoZksILlwl/xldgtxqNE/KpwNQoQ8 oOr7TQBG4TGid55WGRrpCWaefg5dJkgWMP9XonGgOAcDseUwo7qr6R+1sJs0lcqn /jb/BxshNuwrzAq1OC1zb4+Vxte/VGBzPOYhtKXcH/oQA3gwnCj1ri/F+R3qxhMY DOATKecO/haC2w2xxPrY5TA4XT4QxanCVD+E6/zorfek4o1zG3Tci7TUQ514ufiP d7Kt66s8Z6lDMSGlGlE9WpHUO+8CAwEAAaOCAsowggLGMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFM/icLZk62SUtnknoUicD4q542/oMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzNiYWYzNjVlLTA1ZGUtNGMzOS1iZjk2LTgzZTkzOWJlZDdkZi8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby8zYmFmMzY1 ZS0wNWRlLTRjMzktYmY5Ni04M2U5MzliZWQ3ZGYvMC9DRkUyNzBCNjY0RUI2NDk0 QjY3OTI3QTE0ODlDMEY4QUI5RTM2RkU4Lm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAG AwQAZ5gHMA8EAgACMAkDBwAgAQ3z6YAwDQYJKoZIhvcNAQELBQADggEBAFiTvxgT 4092xHV0mk35hxct+IEBR5an0KNALB+q+FOBFG9qpoP03sUpE0Ixe6Ni/4N4AN0n oC77+yH6s7kLaLOB1wCejbhnZBkEPXQQhQnHVm/4KPtiv8wI9JyRqLb1NiDcH4zK uLy3csHcSFKpAVyuNbJxcOyzkvMjj5oaVHQ+BaOSvIzhXsswpkwDSPvB+iN/IGEC iMOVIoA6gHHl2rq71VtSWbY94kVwhhWUDKVjcnTX9Bi3MuxoajMMy1+IFF33mzXU Z8/Xl0gseH1NK4JUs1EETG/E6nFI92/eo7XOLQMFjyBDxtTnNvs3jv8ex+27jUZv KQfv357juvfJflg= -----END CERTIFICATE-----Generated at Tue May 12 22:03:53 2026 by rpki-client