$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.cer File: D57816B86ABF0E6E25D84D1D5EB37F57672082E2.cer (raw, json) Hash identifier: U2XDLyvRzlIYeueRGeH/7gI0Sl5Ab3aqRcoNeQzeWlA= Subject key identifier: D5:78:16:B8:6A:BF:0E:6E:25:D8:4D:1D:5E:B3:7F:57:67:20:82:E2 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 297DBB5CD4B66DE017F41E2C954E04ACCC07C34F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.mft caRepository: rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sat 02 May 2026 23:49:54 +0000 Certificate not after: Sat 01 May 2027 23:54:54 +0000 Subordinate resources: IP: 103.14.74.0/23 IP: 2001:df7:5400::/48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:7d:bb:5c:d4:b6:6d:e0:17:f4:1e:2c:95:4e:04:ac:cc:07:c3:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 23:49:54 2026 GMT Not After : May 1 23:54:54 2027 GMT Subject: CN=D57816B86ABF0E6E25D84D1D5EB37F57672082E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:dd:77:c2:5a:3d:31:fc:b5:0a:9a:fe:cb:da: dc:76:a0:ca:62:81:09:5d:8c:c0:19:85:36:b1:8d: c8:6d:c7:9d:21:5a:a1:74:e2:70:cb:7b:91:38:a9: 37:41:25:b9:28:5a:b0:09:e1:c7:b2:9e:99:dd:17: 09:85:09:a9:01:c0:0c:62:a6:7f:c8:77:95:bd:af: 33:cd:0d:99:6d:ab:e9:5e:1e:dd:1e:db:09:0f:dd: bb:0d:74:73:ec:0e:23:03:59:4d:3e:ef:86:81:2f: f2:f2:e5:ac:df:b4:bd:ba:c6:e1:92:71:34:21:9d: a9:71:e7:bd:22:17:f9:85:da:4a:6d:3e:d8:3a:9d: bf:b4:4a:17:b1:59:38:ab:2d:b5:47:5b:0a:a2:ec: bc:89:23:e1:ae:d5:88:ba:2b:74:f0:dc:51:ea:2c: cc:1f:f5:25:58:77:58:c5:3a:1e:8b:61:e0:85:ef: 54:38:1f:2f:96:e0:35:67:8a:5c:1f:cf:4b:7b:37: 39:7c:c6:9b:cf:75:25:0b:ef:c6:2f:57:c1:c8:9c: 3d:2e:60:cf:06:e7:94:a9:08:67:3a:b4:ac:64:cf: 7c:83:58:56:9f:db:1c:c6:f7:9b:64:42:a6:84:f3: 81:b4:77:10:af:e9:2d:e4:ec:c2:9b:c0:cb:39:77: aa:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D5:78:16:B8:6A:BF:0E:6E:25:D8:4D:1D:5E:B3:7F:57:67:20:82:E2 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.74.0/23 IPv6: 2001:df7:5400::/48 Signature Algorithm: sha256WithRSAEncryption 49:07:85:89:3e:a4:11:ed:12:81:31:52:15:03:1b:68:af:8f: 0b:18:ca:a2:96:12:4b:39:00:90:8b:ca:25:38:4e:0d:ea:44: d2:6c:1e:47:0d:6d:11:50:80:78:5b:27:64:d2:e5:cd:75:82: 96:14:f2:a9:ab:5e:19:66:2d:c2:88:0c:7d:bc:7b:a6:e5:d4: 98:b4:60:42:cb:2a:f3:5a:ea:04:5c:1c:53:48:85:c8:8e:ed: 19:0b:bf:8b:eb:3b:47:15:a8:8c:d4:31:3a:45:ea:b4:0c:90: 96:47:62:87:a0:0b:7e:b7:53:b8:c8:fb:01:69:43:20:58:92: 76:22:16:68:d5:87:e5:ca:c5:7d:81:52:1b:96:29:cd:3d:e3: 1b:cd:a5:cc:a9:cb:38:47:6d:85:11:26:54:c9:f4:ea:82:b5: 5a:c7:21:34:bf:80:4f:df:ad:4d:2d:3e:e0:07:d8:50:0d:0d: e6:22:12:d1:c4:52:4e:4a:28:ea:31:1e:4d:4d:4b:6e:c3:66: c1:eb:29:87:32:6e:d8:d9:7e:84:e0:ec:4b:c4:f4:62:26:10: 0f:b7:9d:73:49:0a:39:d3:30:45:25:5d:22:4e:5b:b6:b4:31: 4a:c2:82:45:26:9f:a7:ec:da:e3:ab:d2:8f:45:16:4d:5f:82: dd:c4:f4:ec -----BEGIN CERTIFICATE----- MIIF1zCCBL+gAwIBAgIUKX27XNS2beAX9B4slU4ErMwHw08wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIzNDk1NFoX DTI3MDUwMTIzNTQ1NFowMzExMC8GA1UEAxMoRDU3ODE2Qjg2QUJGMEU2RTI1RDg0 RDFENUVCMzdGNTc2NzIwODJFMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKndd8JaPTH8tQqa/sva3HagymKBCV2MwBmFNrGNyG3HnSFaoXTicMt7kTip N0EluShasAnhx7Kemd0XCYUJqQHADGKmf8h3lb2vM80NmW2r6V4e3R7bCQ/duw10 c+wOIwNZTT7vhoEv8vLlrN+0vbrG4ZJxNCGdqXHnvSIX+YXaSm0+2Dqdv7RKF7FZ OKsttUdbCqLsvIkj4a7ViLordPDcUeoszB/1JVh3WMU6Hoth4IXvVDgfL5bgNWeK XB/PS3s3OXzGm891JQvvxi9XwcicPS5gzwbnlKkIZzq0rGTPfINYVp/bHMb3m2RC poTzgbR3EK/pLeTswpvAyzl3qgcCAwEAAaOCAsowggLGMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNV4Frhqvw5uJdhNHV6zf1dnIILiMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzEwMDBlMjNlLWY0NGEtNGNmYy1iZjU2LWQ5OWEwOTJkNzMxNC8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby8xMDAwZTIz ZS1mNDRhLTRjZmMtYmY1Ni1kOTlhMDkyZDczMTQvMC9ENTc4MTZCODZBQkYwRTZF MjVEODREMUQ1RUIzN0Y1NzY3MjA4MkUyLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAG AwQBZw5KMA8EAgACMAkDBwAgAQ33VAAwDQYJKoZIhvcNAQELBQADggEBAEkHhYk+ pBHtEoExUhUDG2ivjwsYyqKWEks5AJCLyiU4Tg3qRNJsHkcNbRFQgHhbJ2TS5c11 gpYU8qmrXhlmLcKIDH28e6bl1Ji0YELLKvNa6gRcHFNIhciO7RkLv4vrO0cVqIzU MTpF6rQMkJZHYoegC363U7jI+wFpQyBYknYiFmjVh+XKxX2BUhuWKc094xvNpcyp yzhHbYURJlTJ9OqCtVrHITS/gE/frU0tPuAH2FANDeYiEtHEUk5KKOoxHk1NS27D ZsHrKYcybtjZfoTg7EvE9GImEA+3nXNJCjnTMEUlXSJOW7a0MUrCgkUmn6fs2uOr 0o9FFk1fgt3E9Ow= -----END CERTIFICATE-----Generated at Tue May 12 22:03:03 2026 by rpki-client