$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/D007B768F676B78650AA828FA3D4B1BBE28EED3A.cer File: D007B768F676B78650AA828FA3D4B1BBE28EED3A.cer (raw, json) Hash identifier: MlsVP3RGiRkVbqpwdZq+8X3DmleQPKM+yLw62N1mTpo= Subject key identifier: D0:07:B7:68:F6:76:B7:86:50:AA:82:8F:A3:D4:B1:BB:E2:8E:ED:3A Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 4F5E2C300EF6AF7D32CFA86F61483783CAAA3D49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/D007B768F676B78650AA828FA3D4B1BBE28EED3A.mft caRepository: rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 02:01:13 +0000 Certificate not after: Sun 02 May 2027 02:06:13 +0000 Subordinate resources: IP: 103.234.34.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:5e:2c:30:0e:f6:af:7d:32:cf:a8:6f:61:48:37:83:ca:aa:3d:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 02:01:13 2026 GMT Not After : May 2 02:06:13 2027 GMT Subject: CN=D007B768F676B78650AA828FA3D4B1BBE28EED3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cb:25:5f:26:eb:b1:bd:bd:b8:80:59:4a:ef: 2d:6e:8c:e7:6b:27:58:d4:ac:2f:68:52:1e:9f:16: 17:c6:71:a2:dd:67:a0:3d:a0:5c:39:e1:be:df:be: a8:3b:20:d8:17:5b:d9:cf:84:58:4d:70:e7:63:1c: 82:80:a8:3c:b0:5c:f2:33:65:96:33:4a:88:79:76: e8:e7:ec:09:e5:4a:45:a1:20:78:fc:61:b0:52:8a: 9f:d7:77:25:77:7e:b7:9a:52:28:b2:2f:fb:19:27: 10:c8:f9:9b:b6:94:53:f9:6e:7f:8e:66:dd:2d:87: 33:a1:d9:4f:3b:71:28:c6:fd:2b:48:3c:55:1d:61: 22:5f:3a:b9:0d:df:05:03:09:ce:b4:a9:47:59:b3: 55:36:50:ac:28:d1:36:d3:3e:73:80:a3:ff:f7:f8: f1:26:f2:e1:35:95:6c:76:f9:14:20:cb:4f:03:8e: e0:87:6f:0f:5e:15:61:9c:34:2a:3f:1a:ba:4c:98: 51:ac:7a:90:a5:91:3c:2b:ff:cd:22:65:49:3e:bb: d8:09:fd:37:25:2f:1f:df:c8:b8:cd:4b:9d:7b:06: aa:c4:4a:b2:ec:c0:94:f5:18:b3:77:8b:3b:a6:94: b9:4f:f5:ad:76:ee:79:87:22:8d:78:71:1a:d9:e1: 66:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D0:07:B7:68:F6:76:B7:86:50:AA:82:8F:A3:D4:B1:BB:E2:8E:ED:3A X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/d7a6b23b-c41e-4449-a149-bc0c6c8b011b/0/D007B768F676B78650AA828FA3D4B1BBE28EED3A.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.34.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:15:dc:ea:8b:4d:0f:e9:f6:c1:39:ec:4c:c7:59:77:52:2f: 59:22:b2:cf:09:fd:c3:f8:a9:c5:78:67:45:c2:27:ad:60:35: bd:57:fc:58:f5:ab:15:1a:96:e6:69:a1:92:23:22:4b:d6:e1: 97:ab:00:2a:50:96:d5:ed:9d:0c:07:c2:a2:14:06:7a:84:75: cc:6e:d5:50:ca:45:45:a1:d0:30:ab:56:50:20:e4:13:d6:02: ae:7a:e8:4b:02:17:1c:5d:d5:97:e3:f7:0a:35:5f:c6:f2:61: 7d:5e:86:46:7d:18:04:62:12:e4:64:5e:97:73:4d:90:27:f8: 4a:de:81:26:83:83:27:8b:2c:9d:12:2e:24:35:ec:cd:0a:6d: 4e:d7:37:e0:f8:eb:cd:48:ba:77:96:25:fc:4b:6f:e8:31:2d: 7f:1d:76:e2:9e:40:9c:15:cd:2d:83:76:d0:3b:1a:f4:16:f7: 0c:9b:7f:49:08:a7:5f:29:8c:ab:3b:81:cf:72:34:19:ae:f9: 11:cb:91:08:aa:5d:57:2f:87:39:25:89:33:4c:7c:8f:47:b6: d7:95:45:c7:fd:76:3c:bf:51:6a:43:2b:94:d9:ea:d9:3e:77: 39:17:fc:59:5e:2f:89:c7:b2:2c:31:27:60:9b:13:16:f6:5d: ca:35:e2:46 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUT14sMA72r30yz6hvYUg3g8qqPUkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAyMDExM1oX DTI3MDUwMjAyMDYxM1owMzExMC8GA1UEAxMoRDAwN0I3NjhGNjc2Qjc4NjUwQUE4 MjhGQTNENEIxQkJFMjhFRUQzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjLJV8m67G9vbiAWUrvLW6M52snWNSsL2hSHp8WF8Zxot1noD2gXDnhvt++ qDsg2Bdb2c+EWE1w52McgoCoPLBc8jNlljNKiHl26OfsCeVKRaEgePxhsFKKn9d3 JXd+t5pSKLIv+xknEMj5m7aUU/luf45m3S2HM6HZTztxKMb9K0g8VR1hIl86uQ3f BQMJzrSpR1mzVTZQrCjRNtM+c4Cj//f48Sby4TWVbHb5FCDLTwOO4IdvD14VYZw0 Kj8aukyYUax6kKWRPCv/zSJlST672An9NyUvH9/IuM1LnXsGqsRKsuzAlPUYs3eL O6aUuU/1rXbueYcijXhxGtnhZm0CAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNAHt2j2dreGUKqCj6PUsbviju06MB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv L2Q3YTZiMjNiLWM0MWUtNDQ0OS1hMTQ5LWJjMGM2YzhiMDExYi8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9kN2E2YjIz Yi1jNDFlLTQ0NDktYTE0OS1iYzBjNmM4YjAxMWIvMC9EMDA3Qjc2OEY2NzZCNzg2 NTBBQTgyOEZBM0Q0QjFCQkUyOEVFRDNBLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ+oiMA0GCSqGSIb3DQEBCwUAA4IBAQCcFdzqi00P6fbBOexMx1l3Ui9ZIrLP Cf3D+KnFeGdFwietYDW9V/xY9asVGpbmaaGSIyJL1uGXqwAqUJbV7Z0MB8KiFAZ6 hHXMbtVQykVFodAwq1ZQIOQT1gKueuhLAhccXdWX4/cKNV/G8mF9XoZGfRgEYhLk ZF6Xc02QJ/hK3oEmg4MniyydEi4kNezNCm1O1zfg+OvNSLp3liX8S2/oMS1/HXbi nkCcFc0tg3bQOxr0FvcMm39JCKdfKYyrO4HPcjQZrvkRy5EIql1XL4c5JYkzTHyP R7bXlUXH/XY8v1FqQyuU2erZPnc5F/xZXi+Jx7IsMSdgmxMW9l3KNeJG -----END CERTIFICATE-----Generated at Tue May 12 22:02:51 2026 by rpki-client