$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer File: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer (raw, json) Hash identifier: P7LY2Zqg1atyeqUt/s6gEQIi024qeyMe+5EFhU4Ywmc= Subject key identifier: 52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 042DC967B8F015EE551E9235EBDC426D38750A1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft caRepository: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 13 Sep 2025 22:17:28 +0000 Certificate not after: Sat 12 Sep 2026 22:22:28 +0000 Subordinate resources: IP: 157.10.184.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 08:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:2d:c9:67:b8:f0:15:ee:55:1e:92:35:eb:dc:42:6d:38:75:0a:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 13 22:17:28 2025 GMT Not After : Sep 12 22:22:28 2026 GMT Subject: CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:80:6d:bc:eb:e1:82:59:c9:99:0d:e3:cc:44: ef:50:c3:e4:66:8f:64:06:12:e6:5b:e0:23:fa:9e: 07:9c:6e:e0:43:62:d8:12:fe:d5:33:19:1a:f2:88: 7b:78:04:e4:91:c9:1b:e3:ff:46:f4:8e:c7:64:11: 42:df:f9:fc:2c:ac:8b:f3:c7:b3:d4:d7:47:65:69: 70:29:fb:08:a2:2e:e3:1a:77:c2:87:43:50:ab:50: d1:03:6b:e9:bf:d6:14:f7:9f:ba:7e:dc:42:bd:6f: 42:fc:96:75:e7:50:ca:ce:9a:d0:ca:9e:fc:b4:95: 9a:81:44:0a:82:87:6f:20:2e:bf:57:9f:f2:c4:00: f7:a7:fc:cb:06:21:30:71:4f:70:c0:27:f6:f6:97: c0:16:14:13:6e:a0:83:a1:44:0c:c0:34:05:b0:47: 7c:34:fe:57:ef:c6:d4:f7:aa:80:ea:09:4d:7e:48: 86:36:16:40:ed:93:56:a7:68:e8:e4:98:a0:32:aa: da:47:a7:26:22:38:6e:64:dd:98:72:19:31:d8:fb: 35:d6:5f:15:26:86:62:e9:e9:82:f8:a7:f8:e3:15: 97:1f:80:f1:39:a1:54:92:fb:f6:4b:2f:14:f3:9b: f1:5e:8b:11:45:ea:d5:3f:80:7c:1a:34:c8:52:91: 51:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.184.0/24 Signature Algorithm: sha256WithRSAEncryption 66:f1:b1:83:58:e5:bf:80:e0:d4:6e:26:54:21:53:21:5f:be: 6b:5f:3b:d7:50:e3:bc:d0:d9:78:22:81:fb:d8:8b:54:dc:c7: 8b:cc:d3:da:41:11:51:86:ca:60:04:62:e8:ed:0e:eb:76:cb: da:ea:c3:17:d4:3c:4c:7b:a6:46:46:a3:d7:4c:e8:2e:ba:f9: d9:fd:25:f4:17:f6:9d:ea:79:a2:98:94:b8:29:c2:21:b1:20: 41:96:de:3e:f8:32:70:5f:72:6b:a4:54:08:ba:b6:c3:ca:c3: d6:86:00:bc:62:53:c0:24:59:8d:9f:79:c0:b6:23:a9:a1:39: db:82:55:af:13:bd:18:ab:b8:b9:3b:8a:62:4a:29:5a:07:60: 81:fa:b0:69:6c:67:22:93:68:bb:96:4a:0f:4d:23:82:94:fd: f5:bb:f6:7a:72:a1:cc:8b:4b:4d:5e:e8:da:55:e3:7b:a1:21: 65:2a:fe:d5:2b:7d:8d:ee:e1:d3:90:76:d9:51:73:27:0a:ec: 15:cf:3e:52:96:91:92:4a:65:ba:85:58:99:0d:bb:ba:6a:7b: 75:47:6c:4a:2c:10:31:6d:e9:28:7f:e2:32:ef:b7:32:6e:ad: 0f:7e:6d:b9:8a:8a:81:5a:a2:9c:a5:bd:da:97:93:8a:92:95: ac:41:cc:e5 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUBC3JZ7jwFe5VHpI169xCbTh1ChwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDkxMzIyMTcyOFoX DTI2MDkxMjIyMjIyOFowMzExMC8GA1UEAxMoNTJCOUMxRTVGMEJBRjM0NUM0MEYy RTc5NjY5QzYzQ0IzOUU1Q0YzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWAbbzr4YJZyZkN48xE71DD5GaPZAYS5lvgI/qeB5xu4ENi2BL+1TMZGvKI e3gE5JHJG+P/RvSOx2QRQt/5/Cysi/PHs9TXR2VpcCn7CKIu4xp3wodDUKtQ0QNr 6b/WFPefun7cQr1vQvyWdedQys6a0Mqe/LSVmoFECoKHbyAuv1ef8sQA96f8ywYh MHFPcMAn9vaXwBYUE26gg6FEDMA0BbBHfDT+V+/G1PeqgOoJTX5IhjYWQO2TVqdo 6OSYoDKq2kenJiI4bmTdmHIZMdj7NdZfFSaGYunpgvin+OMVlx+A8TmhVJL79ksv FPOb8V6LEUXq1T+AfBo0yFKRUaUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFK5weXwuvNFxA8ueWacY8s55c86MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xMGE4NTkwZS1lNGRjLTQ0MTYtYTZmYS1mYjc4ZDZkZDEyZDcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwYTg1OTBl LWU0ZGMtNDQxNi1hNmZhLWZiNzhkNmRkMTJkNy8wLzUyQjlDMUU1RjBCQUYzNDVD NDBGMkU3OTY2OUM2M0NCMzlFNUNGM0EubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdCrgwDQYJKoZIhvcNAQELBQADggEBAGbxsYNY5b+A4NRuJlQhUyFfvmtfO9dQ 47zQ2XgigfvYi1Tcx4vM09pBEVGGymAEYujtDut2y9rqwxfUPEx7pkZGo9dM6C66 +dn9JfQX9p3qeaKYlLgpwiGxIEGW3j74MnBfcmukVAi6tsPKw9aGALxiU8AkWY2f ecC2I6mhOduCVa8TvRiruLk7imJKKVoHYIH6sGlsZyKTaLuWSg9NI4KU/fW79npy ocyLS01e6NpV43uhIWUq/tUrfY3u4dOQdtlRcycK7BXPPlKWkZJKZbqFWJkNu7pq e3VHbEosEDFt6Sh/4jLvtzJurQ9+bbmKioFaopylvdqXk4qSlaxBzOU= -----END CERTIFICATE-----Generated at Wed Nov 5 07:19:58 2025 by rpki-client