$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer File: 24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer (raw, json) Hash identifier: B5SbczA+Lw1SJTHfESyA5xWgplNGukiH7GQdiv+tA2Q= Subject key identifier: 24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 730A15B0CB1BAC78D8CE529086F82D3A50C83BD7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.mft caRepository: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 17 Jun 2025 09:37:59 +0000 Certificate not after: Tue 16 Jun 2026 09:42:59 +0000 Subordinate resources: IP: 160.25.34.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 01:03:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:0a:15:b0:cb:1b:ac:78:d8:ce:52:90:86:f8:2d:3a:50:c8:3b:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 17 09:37:59 2025 GMT Not After : Jun 16 09:42:59 2026 GMT Subject: CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bd:61:e9:df:46:4e:7f:d3:a2:24:f5:71:e0: a7:44:8b:5e:fe:df:0b:e1:4c:0d:78:e2:ce:f1:4d: 4e:86:23:7b:b3:84:90:75:40:11:1c:31:92:fa:8b: 47:79:fd:ab:45:44:6a:95:17:a3:98:18:2d:db:9f: 4c:57:c1:02:61:4a:e4:8e:4a:47:2b:68:2e:54:32: 48:74:0a:8e:41:07:34:99:ee:7d:99:a0:a8:a1:c7: 84:bb:0e:3b:72:9c:00:ef:6b:ab:99:0e:08:a9:db: 6e:d4:ba:4d:4b:0d:4e:db:5e:d8:f9:c4:17:33:f2: d9:cc:a7:1d:f3:07:d1:12:1e:04:1d:c4:65:62:a3: 22:1f:88:47:af:28:e7:a3:8d:8e:40:f4:f3:a3:90: e9:e5:f1:64:7e:11:43:33:28:d4:2a:fe:33:c9:5f: 2d:e2:80:4a:85:ed:b1:b9:bc:97:0e:2c:31:ea:e8: 19:e0:1d:0b:22:53:5b:69:1e:43:01:85:ae:c5:17: 5d:4e:39:2b:76:28:74:46:f2:f3:fe:9c:95:32:dd: 3e:a5:22:db:f7:92:f8:6a:b3:b1:63:3a:9a:69:17: 3c:ba:1e:16:96:9c:30:d6:28:18:2d:03:34:59:f1: e6:5d:fc:45:ea:af:2b:9e:e1:50:04:da:fe:04:65: fd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.34.0/23 Signature Algorithm: sha256WithRSAEncryption 13:1f:85:50:7b:0a:e4:2b:61:ac:93:d5:82:70:35:8a:be:6b: fa:de:32:4e:be:e1:16:0f:49:30:04:52:f0:39:52:c4:74:24: 91:26:f7:60:d3:ec:cf:ae:06:4c:09:f8:e4:ea:d5:d9:ca:0c: ff:a9:46:c0:2c:b8:00:34:48:94:84:39:fc:25:1f:b4:c8:26: 65:a4:17:19:64:85:3e:c2:9d:8b:a0:b4:48:a4:b8:56:a4:40: 40:b7:4a:43:3e:d8:76:aa:cd:86:5f:6f:e1:80:4d:55:29:50: b7:74:61:a7:44:59:1d:fc:2c:5f:77:40:bc:92:65:80:ee:c9: c6:c3:7a:79:3a:90:33:59:80:f7:d4:97:e0:b0:1d:28:ad:a0: cf:96:7d:df:d2:28:08:52:0d:24:b3:a2:0e:56:0f:99:97:2f: ae:7c:09:ec:5b:41:2d:09:a8:d3:f4:74:7b:f8:48:65:08:19: 77:89:ba:e1:88:5c:7c:4b:37:67:31:9f:c7:c3:cb:2f:0f:c7: 55:95:73:f9:ad:f2:83:2e:4d:2a:b4:05:38:65:3c:31:93:f3: 5b:ff:b5:2e:bf:08:8f:e7:c0:e8:b6:6f:72:9c:3b:42:97:e6: bd:df:97:82:0f:88:c8:c2:31:b9:b9:6c:ae:54:58:88:7a:70: d2:9a:6b:76 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUcwoVsMsbrHjYzlKQhvgtOlDIO9cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDYxNzA5Mzc1OVoX DTI2MDYxNjA5NDI1OVowMzExMC8GA1UEAxMoMjRBRUNERDBBMDgyN0E0OEQ1RkJB RUY1MDFGRUQzRjRDNjJBQUJEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMu9YenfRk5/06Ik9XHgp0SLXv7fC+FMDXjizvFNToYje7OEkHVAERwxkvqL R3n9q0VEapUXo5gYLdufTFfBAmFK5I5KRytoLlQySHQKjkEHNJnufZmgqKHHhLsO O3KcAO9rq5kOCKnbbtS6TUsNTtte2PnEFzPy2cynHfMH0RIeBB3EZWKjIh+IR68o 56ONjkD086OQ6eXxZH4RQzMo1Cr+M8lfLeKASoXtsbm8lw4sMeroGeAdCyJTW2ke QwGFrsUXXU45K3YodEby8/6clTLdPqUi2/eS+GqzsWM6mmkXPLoeFpacMNYoGC0D NFnx5l38ReqvK57hUATa/gRl/YkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCSuzdCggnpI1fuu9QH+0/TGKqvYMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZDZjOWI4Yy0zYmU3LTRjMDItOTU1MS1mYmM2ZmZjNDA3MGYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNmM5Yjhj LTNiZTctNGMwMi05NTUxLWZiYzZmZmM0MDcwZi8wLzI0QUVDREQwQTA4MjdBNDhE NUZCQUVGNTAxRkVEM0Y0QzYyQUFCRDgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgGSIwDQYJKoZIhvcNAQELBQADggEBABMfhVB7CuQrYayT1YJwNYq+a/reMk6+ 4RYPSTAEUvA5UsR0JJEm92DT7M+uBkwJ+OTq1dnKDP+pRsAsuAA0SJSEOfwlH7TI JmWkFxlkhT7CnYugtEikuFakQEC3SkM+2HaqzYZfb+GATVUpULd0YadEWR38LF93 QLySZYDuycbDenk6kDNZgPfUl+CwHSitoM+Wfd/SKAhSDSSzog5WD5mXL658Cexb QS0JqNP0dHv4SGUIGXeJuuGIXHxLN2cxn8fDyy8Px1WVc/mt8oMuTSq0BThlPDGT 81v/tS6/CI/nwOi2b3KcO0KX5r3fl4IPiMjCMbm5bK5UWIh6cNKaa3Y= -----END CERTIFICATE-----Generated at Tue Jun 17 21:48:15 2025 by rpki-client