$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/D0C8B43AE85F0F09D4987329232BECE8BCC74B8E.cer File: D0C8B43AE85F0F09D4987329232BECE8BCC74B8E.cer (raw, json) Hash identifier: vuEIhcAAmp/n/LjTQ2POnsFAHBh+qu9mT3WdhQ6SL88= Subject key identifier: D0:C8:B4:3A:E8:5F:0F:09:D4:98:73:29:23:2B:EC:E8:BC:C7:4B:8E Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 7FD7AF668F3F930A9F3ABB78065756E1FAAF668C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/D0C8B43AE85F0F09D4987329232BECE8BCC74B8E.mft caRepository: rsync://rpki-rsync.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 01:09:40 +0000 Certificate not after: Sun 02 May 2027 01:14:40 +0000 Subordinate resources: IP: 103.157.6.0/24 IP: 2001:df5:780::/48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:d7:af:66:8f:3f:93:0a:9f:3a:bb:78:06:57:56:e1:fa:af:66:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 01:09:40 2026 GMT Not After : May 2 01:14:40 2027 GMT Subject: CN=D0C8B43AE85F0F09D4987329232BECE8BCC74B8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:23:37:93:58:a8:3a:a5:7a:37:62:1b:12:64: d5:ee:34:01:e9:63:4c:16:50:9d:7d:71:81:af:2d: 0e:38:3e:e2:af:d4:5e:a4:87:3b:ef:fa:96:2b:31: e3:cf:ef:38:fa:9c:f4:f0:cc:59:bc:bc:58:d5:fe: 9f:3a:66:14:c9:6b:15:fb:fd:00:a7:de:3f:bc:47: 3b:35:07:6f:97:78:be:92:7d:3c:b0:58:85:dd:c9: c8:ee:3c:3f:cd:a3:8e:70:04:71:c0:21:e3:e6:27: a2:9d:c8:22:ca:50:99:aa:53:08:7f:09:1d:dd:8e: 1e:18:f0:7e:dd:aa:79:e4:d7:06:d8:12:6a:91:af: 04:16:b3:90:bf:e5:6c:0b:f0:ac:8a:8c:f5:60:77: 01:58:73:8f:97:37:da:31:bf:89:75:c9:41:81:1f: 3f:24:fd:28:e0:c1:08:d6:8c:32:5c:a3:ed:c3:08: 03:d1:2f:b7:4d:54:4f:90:9d:26:f6:74:80:91:d2: 97:08:fa:f9:b8:fe:24:fc:61:31:30:6d:75:85:5b: 5c:3e:5c:be:47:d0:54:e7:0f:a5:50:65:3a:88:55: 49:21:52:86:50:9e:56:49:8d:1a:e4:ca:31:32:50: 2a:b9:8b:cd:77:54:41:8e:f7:7e:e5:d0:66:6b:0d: 3f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D0:C8:B4:3A:E8:5F:0F:09:D4:98:73:29:23:2B:EC:E8:BC:C7:4B:8E X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/D0C8B43AE85F0F09D4987329232BECE8BCC74B8E.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.6.0/24 IPv6: 2001:df5:780::/48 Signature Algorithm: sha256WithRSAEncryption 2d:37:8d:8f:25:3a:71:be:98:23:a3:ae:1f:bf:ae:06:65:89: 18:bc:00:c1:2a:fc:44:4f:7c:28:63:a5:34:11:6a:60:f4:b2: 53:95:86:50:b7:7a:d0:47:b5:b3:c4:18:f4:9a:c7:5a:82:b6: 00:3e:8b:2d:12:0c:b1:b1:9e:19:b2:a1:ba:4d:6e:98:59:20: b4:41:65:c4:6b:3d:c0:7f:e3:f4:dc:95:da:79:9e:4a:0e:2a: ce:8e:20:07:4c:4e:12:36:bc:55:37:d9:5f:47:14:26:fd:e4: 29:ff:25:21:e0:a2:98:74:0b:48:25:4e:03:26:e9:15:eb:3d: 9c:07:06:bb:4f:3c:9f:63:b8:c0:f2:57:d7:08:78:9e:a1:b5: d5:08:f0:2c:11:6b:c4:b7:86:9f:44:d9:91:f7:20:92:f1:de: 66:12:65:78:52:64:c3:d1:75:79:33:5c:3e:54:41:70:bf:61: 33:28:b7:20:26:03:d7:63:e3:6b:44:8b:bb:83:f6:4a:80:14: 55:2d:f1:b4:52:93:bf:00:d6:94:f8:13:76:cf:33:e2:78:24: d0:08:e3:be:59:45:a0:5f:b1:94:e1:7d:9c:e0:3b:52:5c:27: 63:61:f5:b1:eb:50:67:9a:64:ca:23:e7:2b:ff:61:c9:fb:ab: dd:32:0e:38 -----BEGIN CERTIFICATE----- MIIF1zCCBL+gAwIBAgIUf9evZo8/kwqfOrt4BldW4fqvZowwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAxMDk0MFoX DTI3MDUwMjAxMTQ0MFowMzExMC8GA1UEAxMoRDBDOEI0M0FFODVGMEYwOUQ0OTg3 MzI5MjMyQkVDRThCQ0M3NEI4RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIcjN5NYqDqlejdiGxJk1e40AeljTBZQnX1xga8tDjg+4q/UXqSHO+/6lisx 48/vOPqc9PDMWby8WNX+nzpmFMlrFfv9AKfeP7xHOzUHb5d4vpJ9PLBYhd3JyO48 P82jjnAEccAh4+Ynop3IIspQmapTCH8JHd2OHhjwft2qeeTXBtgSapGvBBazkL/l bAvwrIqM9WB3AVhzj5c32jG/iXXJQYEfPyT9KODBCNaMMlyj7cMIA9Evt01UT5Cd JvZ0gJHSlwj6+bj+JPxhMTBtdYVbXD5cvkfQVOcPpVBlOohVSSFShlCeVkmNGuTK MTJQKrmLzXdUQY73fuXQZmsNP98CAwEAAaOCAsowggLGMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNDItDroXw8J1JhzKSMr7Oi8x0uOMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv Lzg1ZGQ0ZjE2LTU3MGUtNGM4Yy1hOTkyLWRiODllYTNiYWQzNi8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby84NWRkNGYx Ni01NzBlLTRjOGMtYTk5Mi1kYjg5ZWEzYmFkMzYvMC9EMEM4QjQzQUU4NUYwRjA5 RDQ5ODczMjkyMzJCRUNFOEJDQzc0QjhFLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAG AwQAZ50GMA8EAgACMAkDBwAgAQ31B4AwDQYJKoZIhvcNAQELBQADggEBAC03jY8l OnG+mCOjrh+/rgZliRi8AMEq/ERPfChjpTQRamD0slOVhlC3etBHtbPEGPSax1qC tgA+iy0SDLGxnhmyobpNbphZILRBZcRrPcB/4/Tcldp5nkoOKs6OIAdMThI2vFU3 2V9HFCb95Cn/JSHgoph0C0glTgMm6RXrPZwHBrtPPJ9juMDyV9cIeJ6htdUI8CwR a8S3hp9E2ZH3IJLx3mYSZXhSZMPRdXkzXD5UQXC/YTMotyAmA9dj42tEi7uD9kqA FFUt8bRSk78A1pT4E3bPM+J4JNAI475ZRaBfsZThfZzgO1JcJ2Nh9bHrUGeaZMoj 5yv/Ycn7q90yDjg= -----END CERTIFICATE-----Generated at Wed May 13 01:07:08 2026 by rpki-client