$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/D522456371D4AC1AABD94B54197F5014F8E929A5.cer File: D522456371D4AC1AABD94B54197F5014F8E929A5.cer (raw, json) Hash identifier: 3MGlBdqnxiMVzryq3Fe1LAp6VJXtiInxpyp6Y6baGSE= Subject key identifier: D5:22:45:63:71:D4:AC:1A:AB:D9:4B:54:19:7F:50:14:F8:E9:29:A5 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5FA472B303B1FE239FE62AEF8BD730D7ADC13C56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/D522456371D4AC1AABD94B54197F5014F8E929A5.mft caRepository: rsync://rpki-rsync.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:52:19 +0000 Certificate not after: Sun 02 May 2027 00:57:19 +0000 Subordinate resources: IP: 103.179.136.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a4:72:b3:03:b1:fe:23:9f:e6:2a:ef:8b:d7:30:d7:ad:c1:3c:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 00:52:19 2026 GMT Not After : May 2 00:57:19 2027 GMT Subject: CN=D522456371D4AC1AABD94B54197F5014F8E929A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a0:4e:99:12:9c:65:76:3b:1a:00:35:1e:f1: a2:3f:2d:65:20:6c:d6:b8:07:d5:b3:1b:a3:8d:fe: a6:2e:de:02:91:cf:e6:d1:b4:3d:26:14:ba:0d:42: 7c:3a:15:c9:8e:bb:18:5d:8e:9b:bd:16:33:ca:39: 04:11:ce:df:ff:3e:5c:d4:c3:e0:8b:42:9f:7a:93: 10:92:a2:69:3e:13:51:88:3d:20:09:7f:1c:36:01: 83:d5:e4:1c:49:83:b4:fd:1d:eb:ce:32:fe:7c:84: 65:08:95:0c:4b:af:1e:0a:74:5b:c5:e5:6c:85:20: 25:69:b1:1a:6f:f3:04:88:95:c0:95:cf:b4:6e:18: 41:10:4d:b2:2f:51:ed:11:d9:3a:0a:52:0e:a5:cd: e3:75:4a:c5:9a:67:99:82:2c:a1:98:51:81:10:d1: 5d:fa:25:42:76:2c:e8:40:1f:7a:de:87:4a:77:7f: 7f:62:f4:a4:eb:7f:e5:1a:5d:54:17:ed:84:18:88: a1:e1:25:b9:8f:58:ab:bd:fc:de:77:d3:36:b5:51: 16:71:72:98:ab:b4:c0:22:74:13:e6:a7:63:17:7f: 06:2e:8b:c2:5c:73:6d:c8:6a:4a:1b:e9:62:85:01: f0:1d:cb:d4:27:ff:e3:a6:1e:d2:99:23:e5:f9:09: c6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D5:22:45:63:71:D4:AC:1A:AB:D9:4B:54:19:7F:50:14:F8:E9:29:A5 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/D522456371D4AC1AABD94B54197F5014F8E929A5.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.136.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:df:6e:e2:d0:ab:a8:95:2f:e3:7b:be:d1:17:96:99:e4:02: 1d:7a:54:4a:84:77:54:7d:10:bf:5c:fe:d0:35:81:79:e1:f2: 3e:1a:99:75:e7:7f:e0:81:b6:8b:44:47:e5:d9:1f:39:48:3a: b7:8f:42:6d:86:da:56:fa:a4:85:ae:56:99:20:b0:5e:8c:2a: 14:66:55:14:6e:98:0f:28:b1:20:6a:03:01:ae:34:4c:92:d2: 20:7f:32:ae:8f:f6:84:80:15:af:4d:a6:1b:ec:05:28:34:34: dc:5a:e9:89:d8:ed:df:2f:ff:07:ae:ff:f3:a4:c8:3e:75:a0: 22:8c:cb:da:ec:8e:db:28:37:52:29:44:98:7d:61:51:59:f7: 80:05:c2:39:6e:ef:ea:d4:8d:17:4e:b7:61:33:ed:3e:99:54: 63:9b:2f:16:f8:84:d7:04:50:39:65:3f:a5:9d:17:2a:ee:1c: 9a:b5:b5:9c:77:d7:f6:5b:a6:04:c9:f2:ff:7d:0b:f9:3d:6d: 0e:db:6a:35:c5:51:ca:e4:19:2d:13:6b:e2:d1:0b:4e:6b:79: 5c:6c:a9:d3:f3:3b:24:83:31:39:af:93:81:a9:bd:fe:fc:82: 20:e7:54:f5:46:91:73:ec:ee:d5:22:be:37:39:9c:bb:02:2d: 9d:13:7a:0c -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUX6RyswOx/iOf5irvi9cw163BPFYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAwNTIxOVoX DTI3MDUwMjAwNTcxOVowMzExMC8GA1UEAxMoRDUyMjQ1NjM3MUQ0QUMxQUFCRDk0 QjU0MTk3RjUwMTRGOEU5MjlBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqgTpkSnGV2OxoANR7xoj8tZSBs1rgH1bMbo43+pi7eApHP5tG0PSYUug1C fDoVyY67GF2Om70WM8o5BBHO3/8+XNTD4ItCn3qTEJKiaT4TUYg9IAl/HDYBg9Xk HEmDtP0d684y/nyEZQiVDEuvHgp0W8XlbIUgJWmxGm/zBIiVwJXPtG4YQRBNsi9R 7RHZOgpSDqXN43VKxZpnmYIsoZhRgRDRXfolQnYs6EAfet6HSnd/f2L0pOt/5Rpd VBfthBiIoeEluY9Yq7383nfTNrVRFnFymKu0wCJ0E+anYxd/Bi6LwlxzbchqShvp YoUB8B3L1Cf/46Ye0pkj5fkJxs8CAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNUiRWNx1Kwaq9lLVBl/UBT46SmlMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzZkODBiMzIxLWFhMzEtNDMxNy05ZDMxLWMyYmQxOTBjMTM4NC8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby82ZDgwYjMy MS1hYTMxLTQzMTctOWQzMS1jMmJkMTkwYzEzODQvMC9ENTIyNDU2MzcxRDRBQzFB QUJEOTRCNTQxOTdGNTAxNEY4RTkyOUE1Lm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ7OIMA0GCSqGSIb3DQEBCwUAA4IBAQBv327i0KuolS/je77RF5aZ5AIdelRK hHdUfRC/XP7QNYF54fI+Gpl153/ggbaLREfl2R85SDq3j0JthtpW+qSFrlaZILBe jCoUZlUUbpgPKLEgagMBrjRMktIgfzKuj/aEgBWvTaYb7AUoNDTcWumJ2O3fL/8H rv/zpMg+daAijMva7I7bKDdSKUSYfWFRWfeABcI5bu/q1I0XTrdhM+0+mVRjmy8W +ITXBFA5ZT+lnRcq7hyatbWcd9f2W6YEyfL/fQv5PW0O22o1xVHK5BktE2vi0QtO a3lcbKnT8zskgzE5r5OBqb3+/IIg51T1RpFz7O7VIr43OZy7Ai2dE3oM -----END CERTIFICATE-----Generated at Tue May 12 22:16:34 2026 by rpki-client