$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/F0FC57FF24DAE357E0792B0418ADF9F1833B56CA.cer File: F0FC57FF24DAE357E0792B0418ADF9F1833B56CA.cer (raw, json) Hash identifier: NTx4A7i/UpZ1Tc2/qvItmZ7mlkN30LoyHaqJBBiBYKA= Subject key identifier: F0:FC:57:FF:24:DA:E3:57:E0:79:2B:04:18:AD:F9:F1:83:3B:56:CA Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 66902F90AD18F6E058E688E31FFC5FED3DCC0611 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/07dcf0a4-ad1b-4b72-840f-1f4a807f6594/0/F0FC57FF24DAE357E0792B0418ADF9F1833B56CA.mft caRepository: rsync://rpki-rsync.idnic.net/repo/07dcf0a4-ad1b-4b72-840f-1f4a807f6594/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sat 02 May 2026 23:45:27 +0000 Certificate not after: Sat 01 May 2027 23:50:27 +0000 Subordinate resources: IP: 103.177.152.0/24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:90:2f:90:ad:18:f6:e0:58:e6:88:e3:1f:fc:5f:ed:3d:cc:06:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 23:45:27 2026 GMT Not After : May 1 23:50:27 2027 GMT Subject: CN=F0FC57FF24DAE357E0792B0418ADF9F1833B56CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d9:c0:20:3e:c0:ca:94:d0:50:cd:eb:16:4c: 62:3b:0d:e3:f7:fe:e8:1c:e4:9a:fb:0a:7d:47:3d: ba:04:29:57:27:d8:64:00:b6:d5:c7:f9:11:55:57: 04:88:06:8c:1a:e4:bb:a1:6f:ef:1f:a6:d0:33:60: df:45:95:16:3d:da:ac:e4:8b:5e:09:57:75:9b:17: b2:b4:ec:95:c2:72:43:bb:21:6d:c7:b3:49:f6:da: e3:6f:44:c5:e6:2e:a7:8b:85:e1:7d:a5:34:0f:e8: 9a:ce:5e:b9:00:38:73:bc:bb:f9:27:d9:4d:47:92: ba:84:d5:9f:81:8c:12:11:55:c7:6c:2a:98:33:2c: 56:41:c7:7b:9f:dd:71:6e:27:ae:29:09:0d:48:5b: 70:8b:65:1c:fa:65:00:30:fd:91:10:d1:c6:72:cf: 97:69:57:d3:46:7c:e8:5f:df:01:ab:81:36:1a:cb: d7:dc:16:01:5e:c6:d5:08:b3:1e:30:11:f4:f7:a0: 48:bc:50:8c:d8:2f:e8:cd:2a:06:bd:a4:01:82:57: 66:bf:07:52:46:bd:bb:3a:19:fd:40:99:c1:59:5c: a3:19:45:61:59:4f:85:29:c9:97:a4:b4:86:3e:80: 6d:d3:0b:b5:5a:16:89:4f:b2:03:ac:35:d2:e6:1c: 03:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F0:FC:57:FF:24:DA:E3:57:E0:79:2B:04:18:AD:F9:F1:83:3B:56:CA X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/07dcf0a4-ad1b-4b72-840f-1f4a807f6594/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/07dcf0a4-ad1b-4b72-840f-1f4a807f6594/0/F0FC57FF24DAE357E0792B0418ADF9F1833B56CA.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.152.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:be:05:c3:d0:00:a5:a7:9e:06:a1:07:9e:4d:df:9e:d0:a1: 0b:d2:22:87:19:19:4e:b5:6e:ce:8c:41:43:ad:0b:05:6e:27: c3:10:f7:fe:d6:94:02:f5:55:3a:02:80:70:07:5d:58:9c:4d: b1:b7:e6:d4:60:45:e5:6a:fc:35:f7:96:c5:35:57:ae:be:32: 87:03:b9:16:a5:1f:16:e6:85:b7:34:93:a5:03:1d:50:f8:aa: 8f:db:2c:74:79:5b:0e:65:a6:5a:af:0a:13:0a:f3:b0:a1:6d: 39:40:52:44:21:9d:d9:8b:43:25:54:4a:a9:8f:82:53:d1:c4: 67:ea:b9:af:70:8b:b5:2b:2d:f1:53:4d:a3:6d:7c:bf:8b:63: cd:00:8a:d0:97:46:b3:18:aa:dd:74:ee:4e:18:f8:08:29:bb: be:5c:0a:8e:f6:fd:01:f9:3d:03:60:e0:43:0e:0e:d9:78:49: 60:7d:7a:c1:70:7d:54:d3:59:f5:02:df:59:6c:d8:fe:2b:5d: 17:b5:c7:13:11:39:47:08:c5:ad:2f:71:63:86:74:97:13:45: 22:d1:ce:d0:2d:9d:f3:d9:fd:bf:a0:e2:0c:4a:7c:af:94:12: ad:64:b2:48:8b:be:b2:74:08:60:2e:d0:bb:9f:dc:ba:96:38: 7e:01:20:38 -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUZpAvkK0Y9uBY5ojjH/xf7T3MBhEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIzNDUyN1oX DTI3MDUwMTIzNTAyN1owMzExMC8GA1UEAxMoRjBGQzU3RkYyNERBRTM1N0UwNzky QjA0MThBREY5RjE4MzNCNTZDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7ZwCA+wMqU0FDN6xZMYjsN4/f+6BzkmvsKfUc9ugQpVyfYZAC21cf5EVVX BIgGjBrku6Fv7x+m0DNg30WVFj3arOSLXglXdZsXsrTslcJyQ7shbcezSfba429E xeYup4uF4X2lNA/oms5euQA4c7y7+SfZTUeSuoTVn4GMEhFVx2wqmDMsVkHHe5/d cW4nrikJDUhbcItlHPplADD9kRDRxnLPl2lX00Z86F/fAauBNhrL19wWAV7G1Qiz HjAR9PegSLxQjNgv6M0qBr2kAYJXZr8HUka9uzoZ/UCZwVlcoxlFYVlPhSnJl6S0 hj6AbdMLtVoWiU+yA6w10uYcAwcCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPD8V/8k2uNX4HkrBBit+fGDO1bKMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzA3ZGNmMGE0LWFkMWItNGI3Mi04NDBmLTFmNGE4MDdmNjU5NC8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby8wN2RjZjBh NC1hZDFiLTRiNzItODQwZi0xZjRhODA3ZjY1OTQvMC9GMEZDNTdGRjI0REFFMzU3 RTA3OTJCMDQxOEFERjlGMTgzM0I1NkNBLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ7GYMA0GCSqGSIb3DQEBCwUAA4IBAQBNvgXD0AClp54GoQeeTd+e0KEL0iKH GRlOtW7OjEFDrQsFbifDEPf+1pQC9VU6AoBwB11YnE2xt+bUYEXlavw195bFNVeu vjKHA7kWpR8W5oW3NJOlAx1Q+KqP2yx0eVsOZaZarwoTCvOwoW05QFJEIZ3Zi0Ml VEqpj4JT0cRn6rmvcIu1Ky3xU02jbXy/i2PNAIrQl0azGKrddO5OGPgIKbu+XAqO 9v0B+T0DYOBDDg7ZeElgfXrBcH1U01n1At9ZbNj+K10XtccTETlHCMWtL3FjhnSX E0Ui0c7QLZ3z2f2/oOIMSnyvlBKtZLJIi76ydAhgLtC7n9y6ljh+ASA4 -----END CERTIFICATE-----Generated at Tue May 12 22:45:37 2026 by rpki-client