$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/D85B5F563F238E2E321FCB30013AE445C7D38DEB.cer File: D85B5F563F238E2E321FCB30013AE445C7D38DEB.cer (raw, json) Hash identifier: HS8hEsJ4wVaktSTb5LW8mOTiC9mOBhXg6o3DbNFGhFw= Subject key identifier: D8:5B:5F:56:3F:23:8E:2E:32:1F:CB:30:01:3A:E4:45:C7:D3:8D:EB Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5DF05BC05E77966E258B11D8C8870334D67768EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/D85B5F563F238E2E321FCB30013AE445C7D38DEB.mft caRepository: rsync://rpki-rsync.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:53:47 +0000 Certificate not after: Sun 02 May 2027 00:58:47 +0000 Subordinate resources: IP: 27.124.76.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:f0:5b:c0:5e:77:96:6e:25:8b:11:d8:c8:87:03:34:d6:77:68:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 00:53:47 2026 GMT Not After : May 2 00:58:47 2027 GMT Subject: CN=D85B5F563F238E2E321FCB30013AE445C7D38DEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:33:7f:56:0b:fb:b7:24:a8:d4:d2:01:9a:a0: 2e:6f:33:ea:1c:7c:78:b1:09:0a:ad:50:39:31:9b: 79:b0:d6:eb:b9:61:a9:23:da:f8:0e:2c:35:e9:db: f0:56:53:8b:18:94:9b:22:a1:60:12:23:e7:e1:c5: 0c:37:ae:6b:f6:6d:89:9f:f1:d6:47:9a:19:d0:0c: 65:32:29:3f:cb:83:c4:8e:79:90:a4:db:51:11:bc: fc:3e:b6:c8:ec:8b:b1:92:4f:79:8f:9b:6c:14:ff: f1:1c:40:32:8c:7d:06:65:65:aa:5a:7a:3f:25:a7: 0d:51:be:b9:3f:dc:f0:1f:95:0a:4a:55:42:f3:f3: e8:d9:b2:17:19:29:b5:c3:0a:8a:83:70:e6:3d:ad: 03:29:82:db:e5:63:a9:4d:99:ef:e2:79:4d:d1:b4: a7:93:c1:a0:33:ab:e8:d7:17:39:c1:f0:2b:c6:d9: fa:22:68:e1:d0:9f:58:e4:7e:fa:8b:5a:a6:a8:10: 2b:8f:44:9c:da:9a:3d:f1:f0:04:c0:0b:c7:ce:68: d0:22:83:c2:41:c5:9a:ad:4b:30:6d:a4:68:79:50: 43:b3:09:a8:57:d8:79:3c:4b:e5:34:c4:ea:dc:46: 33:3c:e6:61:3c:e3:b0:8e:37:44:d3:40:87:32:c6: 0a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D8:5B:5F:56:3F:23:8E:2E:32:1F:CB:30:01:3A:E4:45:C7:D3:8D:EB X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/D85B5F563F238E2E321FCB30013AE445C7D38DEB.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.76.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:22:ca:10:bf:39:5e:ed:66:b6:fe:de:e3:6f:0b:16:c6:2f: 0b:af:32:11:4a:c2:41:e6:5d:60:cf:3e:2b:14:e8:c5:8d:e7: f0:e3:0b:c2:b6:8c:43:e3:ca:84:08:8f:b6:a6:35:07:09:97: 1a:25:b0:81:86:d5:8c:41:31:1a:77:94:62:06:76:02:05:de: 5d:8c:9f:5b:25:4c:2d:a9:12:5f:e8:99:da:97:6f:89:64:bb: 1e:e4:d3:f4:d3:c5:be:c3:fd:6e:b4:92:bb:66:b7:65:15:3f: c9:8b:ac:a4:e2:61:f8:21:d6:1c:9a:53:c6:a6:70:ce:f6:2c: 94:05:84:44:35:fd:e5:02:1a:c9:b2:0f:df:98:2d:f1:66:cf: 72:b5:9a:6e:45:d1:66:ce:4c:7f:0b:3b:85:d9:95:f0:7c:d1: 1b:7f:e1:56:54:a7:e4:95:21:ba:33:93:09:25:6d:17:cc:67: 30:e1:16:fc:d2:51:cd:f9:22:e5:4c:43:4f:f0:4a:94:e8:ea: 6f:63:07:9c:25:68:10:81:d8:e0:c3:f3:0a:ec:f7:20:af:86: 66:7e:aa:63:8b:1c:45:f3:b5:7d:bd:52:69:96:7f:64:1b:32: a2:c5:7d:bc:0b:2c:c0:e4:1f:cf:07:cc:41:d5:af:18:f5:f3: ee:62:bc:4d -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUXfBbwF53lm4lixHYyIcDNNZ3aO8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAwNTM0N1oX DTI3MDUwMjAwNTg0N1owMzExMC8GA1UEAxMoRDg1QjVGNTYzRjIzOEUyRTMyMUZD QjMwMDEzQUU0NDVDN0QzOERFQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ8zf1YL+7ckqNTSAZqgLm8z6hx8eLEJCq1QOTGbebDW67lhqSPa+A4sNenb 8FZTixiUmyKhYBIj5+HFDDeua/ZtiZ/x1keaGdAMZTIpP8uDxI55kKTbURG8/D62 yOyLsZJPeY+bbBT/8RxAMox9BmVlqlp6PyWnDVG+uT/c8B+VCkpVQvPz6NmyFxkp tcMKioNw5j2tAymC2+VjqU2Z7+J5TdG0p5PBoDOr6NcXOcHwK8bZ+iJo4dCfWOR+ +otapqgQK49EnNqaPfHwBMALx85o0CKDwkHFmq1LMG2kaHlQQ7MJqFfYeTxL5TTE 6txGMzzmYTzjsI43RNNAhzLGCqcCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNhbX1Y/I44uMh/LMAE65EXH043rMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzZmMmE4MDExLTRjNjYtNDNkMS1iYmM1LWZiMTFlODlmOTFlMC8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby82ZjJhODAx MS00YzY2LTQzZDEtYmJjNS1mYjExZTg5ZjkxZTAvMC9EODVCNUY1NjNGMjM4RTJF MzIxRkNCMzAwMTNBRTQ0NUM3RDM4REVCLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBG3xMMA0GCSqGSIb3DQEBCwUAA4IBAQBvIsoQvzle7Wa2/t7jbwsWxi8LrzIR SsJB5l1gzz4rFOjFjefw4wvCtoxD48qECI+2pjUHCZcaJbCBhtWMQTEad5RiBnYC Bd5djJ9bJUwtqRJf6Jnal2+JZLse5NP008W+w/1utJK7ZrdlFT/Ji6yk4mH4IdYc mlPGpnDO9iyUBYRENf3lAhrJsg/fmC3xZs9ytZpuRdFmzkx/CzuF2ZXwfNEbf+FW VKfklSG6M5MJJW0XzGcw4Rb80lHN+SLlTENP8EqU6OpvYwecJWgQgdjgw/MK7Pcg r4ZmfqpjixxF87V9vVJpln9kGzKixX28CyzA5B/PB8xB1a8Y9fPuYrxN -----END CERTIFICATE-----Generated at Tue May 12 22:03:00 2026 by rpki-client