$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.cer File: CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.cer (raw, json) Hash identifier: lh+VEzkKG4ZTgYTRbPRPsPUVBry69xmaiQ0eHw0r0Lg= Subject key identifier: CF:E9:C1:4E:C2:F3:1A:24:1E:03:22:83:AB:ED:53:A3:F4:8D:7D:BF Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6E90D0641EAAD6CB412B7CC94E537BF9C6275E1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.mft caRepository: rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:21:08 +0000 Certificate not after: Sun 02 May 2027 00:26:08 +0000 Subordinate resources: IP: 103.164.68.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:90:d0:64:1e:aa:d6:cb:41:2b:7c:c9:4e:53:7b:f9:c6:27:5e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 00:21:08 2026 GMT Not After : May 2 00:26:08 2027 GMT Subject: CN=CFE9C14EC2F31A241E032283ABED53A3F48D7DBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0e:ca:ea:50:31:44:4c:7b:b3:ca:2d:39:03: d4:00:ff:79:6d:b9:cf:a0:b7:f2:a0:29:9d:b4:b0: 12:58:06:cd:e5:01:8e:4d:c7:ad:59:1a:ec:07:b8: ee:52:51:46:e5:6a:55:48:ca:4b:32:40:94:30:76: e1:cd:06:85:ad:c0:46:8d:84:f4:9e:67:7e:e3:4b: 52:04:e3:2c:32:76:64:af:e5:e1:a9:24:52:97:b6: b4:e5:71:44:56:42:c8:d2:c6:92:fb:8a:b4:4a:8c: 05:59:dc:91:b1:a1:9d:7f:3c:50:e6:47:6e:52:0b: a1:a1:33:16:47:d4:66:c6:79:52:23:70:37:d3:f5: c5:67:3f:bf:4c:02:b1:3c:6c:ed:75:ab:b8:e7:46: fe:35:a4:cd:b0:99:75:3b:b2:32:8e:25:bb:a0:f8: fe:4f:9e:42:c8:d3:7b:26:23:ec:1d:4b:82:cb:d9: c2:8b:16:f8:77:33:88:db:da:43:a1:f5:20:6b:9b: 66:b3:80:95:de:97:ff:87:aa:d1:8c:16:58:1b:58: 21:04:50:f9:29:cb:a8:7b:f7:32:58:9f:27:5b:33: 5d:3d:5d:ee:42:dd:05:13:8b:9f:52:ef:a6:77:98: 02:5c:1e:8c:a0:87:15:55:61:8d:ed:b1:cd:6b:a8: f9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CF:E9:C1:4E:C2:F3:1A:24:1E:03:22:83:AB:ED:53:A3:F4:8D:7D:BF X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/CFE9C14EC2F31A241E032283ABED53A3F48D7DBF.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.68.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:19:50:09:1e:cb:eb:13:2a:5e:5a:d7:00:53:15:f1:58:e2: 79:54:c6:f1:48:6c:f1:a6:9d:9c:ad:09:ab:75:55:b6:30:8f: 83:04:09:1b:f2:ec:1f:74:ea:f3:1f:16:1c:6a:57:75:a2:f6: f9:7c:c7:b9:1f:a9:59:c2:83:12:b3:aa:4b:89:08:1a:f0:c6: 53:15:a9:83:f4:17:e6:12:af:a4:d6:e3:a7:d7:b2:c2:14:41: e8:91:12:6f:26:21:c5:88:c5:ef:75:dc:c3:2c:e8:dc:90:00: 70:fa:23:38:b7:bf:cf:99:6e:62:39:5e:4a:d5:5a:59:21:c5: b5:fd:85:4d:a2:3b:d1:bf:12:32:88:a2:1e:a5:fe:78:26:9c: c4:3e:c4:7a:0c:5e:bd:58:3f:81:28:8d:00:52:ef:2b:92:33: 09:14:c3:47:76:b8:47:c3:d3:74:b2:96:99:12:2a:2e:34:bc: a6:86:39:34:d5:c5:ac:39:8d:ab:0a:83:79:5d:77:a5:8e:3b: 09:d7:0d:7b:41:42:8a:36:79:d8:6d:8e:e7:b3:bc:69:e3:0c: d2:9e:1f:51:73:d9:b7:54:37:ff:a7:e0:9a:56:b7:5b:98:dd: 1f:31:cb:0c:62:f9:13:e4:08:a5:33:76:a7:f2:66:5d:17:51: 7a:ea:af:f9 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUbpDQZB6q1stBK3zJTlN7+cYnXh4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAwMjEwOFoX DTI3MDUwMjAwMjYwOFowMzExMC8GA1UEAxMoQ0ZFOUMxNEVDMkYzMUEyNDFFMDMy MjgzQUJFRDUzQTNGNDhEN0RCRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKYOyupQMURMe7PKLTkD1AD/eW25z6C38qApnbSwElgGzeUBjk3HrVka7Ae4 7lJRRuVqVUjKSzJAlDB24c0Gha3ARo2E9J5nfuNLUgTjLDJ2ZK/l4akkUpe2tOVx RFZCyNLGkvuKtEqMBVnckbGhnX88UOZHblILoaEzFkfUZsZ5UiNwN9P1xWc/v0wC sTxs7XWruOdG/jWkzbCZdTuyMo4lu6D4/k+eQsjTeyYj7B1LgsvZwosW+HcziNva Q6H1IGubZrOAld6X/4eq0YwWWBtYIQRQ+SnLqHv3MlifJ1szXT1d7kLdBROLn1Lv pneYAlwejKCHFVVhje2xzWuo+ZECAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFM/pwU7C8xokHgMig6vtU6P0jX2/MB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzNkYjZiM2JjLWZhNjUtNDlmMy1hZjYxLTBkNWRjMzkzMzRhMS8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby8zZGI2YjNi Yy1mYTY1LTQ5ZjMtYWY2MS0wZDVkYzM5MzM0YTEvMC9DRkU5QzE0RUMyRjMxQTI0 MUUwMzIyODNBQkVENTNBM0Y0OEQ3REJGLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6REMA0GCSqGSIb3DQEBCwUAA4IBAQAPGVAJHsvrEypeWtcAUxXxWOJ5VMbx SGzxpp2crQmrdVW2MI+DBAkb8uwfdOrzHxYcald1ovb5fMe5H6lZwoMSs6pLiQga 8MZTFamD9BfmEq+k1uOn17LCFEHokRJvJiHFiMXvddzDLOjckABw+iM4t7/PmW5i OV5K1VpZIcW1/YVNojvRvxIyiKIepf54JpzEPsR6DF69WD+BKI0AUu8rkjMJFMNH drhHw9N0spaZEiouNLymhjk01cWsOY2rCoN5XXeljjsJ1w17QUKKNnnYbY7ns7xp 4wzSnh9Rc9m3VDf/p+CaVrdbmN0fMcsMYvkT5AilM3an8mZdF1F66q/5 -----END CERTIFICATE-----Generated at Tue May 12 22:10:18 2026 by rpki-client