$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/9D23189F67CA669A4612567DD77CC645E3AFDF71.cer File: 9D23189F67CA669A4612567DD77CC645E3AFDF71.cer (raw, json) Hash identifier: 1gcMX0lCQ+Vn+AgiNQyzoXLKqvhoaXkj29l6VkXZOhM= Subject key identifier: 9D:23:18:9F:67:CA:66:9A:46:12:56:7D:D7:7C:C6:45:E3:AF:DF:71 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4FC8BC1D3D0414AA14FC074BA5D75B64167DBBC4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/9D23189F67CA669A4612567DD77CC645E3AFDF71.mft caRepository: rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 04 Feb 2026 05:48:47 +0000 Certificate not after: Wed 03 Feb 2027 05:53:47 +0000 Subordinate resources: IP: 157.15.76.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:c8:bc:1d:3d:04:14:aa:14:fc:07:4b:a5:d7:5b:64:16:7d:bb:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 4 05:48:47 2026 GMT Not After : Feb 3 05:53:47 2027 GMT Subject: CN=9D23189F67CA669A4612567DD77CC645E3AFDF71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bd:1e:f5:f8:29:80:40:53:51:93:c6:27:bd: 82:16:ea:b1:45:48:95:d5:9c:81:27:b2:b3:e4:35: a0:c5:6f:d1:e6:c5:3a:14:77:22:1d:7a:bc:7e:f0: 90:e0:4d:66:54:d6:59:d7:09:67:4e:5b:61:c7:f6: 95:dc:2a:2c:6b:2b:79:fc:cd:73:f9:bf:25:5c:5f: ad:f1:8b:97:07:64:72:84:84:7f:dd:c2:d4:16:31: cb:1c:8b:60:69:74:92:5b:e7:47:7c:a6:a9:4c:63: 6d:36:9a:87:22:df:22:9e:4c:88:b6:8e:ef:68:3d: 30:b7:f2:71:d9:5c:07:74:e8:e7:56:71:6d:c1:2a: be:56:ab:11:df:35:b6:ef:ce:a6:1d:c7:55:f6:f5: b0:24:32:a5:3a:ec:d7:d4:4b:6e:0f:06:45:66:e8: cd:a6:b9:d0:06:ff:33:bd:be:44:47:55:8e:a0:53: 19:40:ab:92:7d:dc:ef:c8:ef:5f:03:01:20:d2:99: b7:45:fb:c1:17:fa:0b:a3:96:51:9d:39:de:bf:1c: ea:8e:2d:4e:90:38:16:df:d1:13:70:c4:b2:3b:f7: 00:6e:24:32:64:a3:b9:3f:05:58:7c:17:7e:7a:21: b1:d2:0f:61:86:29:73:9a:fe:56:96:bf:72:47:73: 41:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9D:23:18:9F:67:CA:66:9A:46:12:56:7D:D7:7C:C6:45:E3:AF:DF:71 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/9D23189F67CA669A4612567DD77CC645E3AFDF71.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.76.0/24 Signature Algorithm: sha256WithRSAEncryption 46:d8:32:53:b1:dc:a0:25:70:b4:8b:14:e8:c7:85:7d:bc:83: cf:c7:21:13:3b:49:e2:d5:f4:83:97:2b:37:d8:d0:aa:02:da: 5e:0e:d5:c9:23:af:50:bb:26:94:eb:1f:13:9e:63:58:ab:c7: 13:02:6a:ef:27:2b:0f:11:30:53:4b:75:0c:24:75:96:18:36: 24:fb:39:24:71:bb:e8:68:a1:af:53:16:a0:eb:78:c0:64:46: 98:cd:ee:de:5a:e8:57:03:b1:40:b2:23:80:9f:cf:56:53:70: 66:91:cc:53:16:12:8f:e4:ff:14:b1:be:29:52:db:25:b7:b3: ac:6a:d8:75:52:e8:38:f8:10:5c:d7:1e:a5:a2:33:f9:46:81: 51:5b:c7:b5:10:fd:cf:aa:10:ef:8b:46:ae:df:c4:15:54:f6: 2d:01:dc:c9:29:c3:7e:97:a9:34:11:c9:e0:82:f6:b0:fa:c8: 90:a9:44:53:fc:bf:c7:14:23:3c:bd:d3:11:89:0b:06:9f:f0: 09:8a:55:8d:19:a4:ec:d3:a7:a7:52:65:17:74:7e:c2:c3:1d: ed:19:a6:e8:8a:b6:d7:53:af:10:91:23:a1:1b:f1:e1:37:21: bc:90:93:11:be:23:8b:da:0c:d7:5e:81:d3:44:97:1f:fe:1a: 30:34:3b:1b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUT8i8HT0EFKoU/AdLpddbZBZ9u8QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDIwNDA1NDg0N1oX DTI3MDIwMzA1NTM0N1owMzExMC8GA1UEAxMoOUQyMzE4OUY2N0NBNjY5QTQ2MTI1 NjdERDc3Q0M2NDVFM0FGREY3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+9HvX4KYBAU1GTxie9ghbqsUVIldWcgSeys+Q1oMVv0ebFOhR3Ih16vH7w kOBNZlTWWdcJZ05bYcf2ldwqLGsrefzNc/m/JVxfrfGLlwdkcoSEf93C1BYxyxyL YGl0klvnR3ymqUxjbTaahyLfIp5MiLaO72g9MLfycdlcB3To51ZxbcEqvlarEd81 tu/Oph3HVfb1sCQypTrs19RLbg8GRWbozaa50Ab/M72+REdVjqBTGUCrkn3c78jv XwMBINKZt0X7wRf6C6OWUZ053r8c6o4tTpA4Ft/RE3DEsjv3AG4kMmSjuT8FWHwX fnohsdIPYYYpc5r+Vpa/ckdzQesCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ0jGJ9nymaaRhJWfdd8xkXjr99xMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MzVhY2IwNy05ZDVmLTQ5N2YtOTkzMi0zM2E0MzRkM2FhMzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzNWFjYjA3 LTlkNWYtNDk3Zi05OTMyLTMzYTQzNGQzYWEzMi8wLzlEMjMxODlGNjdDQTY2OUE0 NjEyNTY3REQ3N0NDNjQ1RTNBRkRGNzEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdD0wwDQYJKoZIhvcNAQELBQADggEBAEbYMlOx3KAlcLSLFOjHhX28g8/HIRM7 SeLV9IOXKzfY0KoC2l4O1ckjr1C7JpTrHxOeY1irxxMCau8nKw8RMFNLdQwkdZYY NiT7OSRxu+hooa9TFqDreMBkRpjN7t5a6FcDsUCyI4Cfz1ZTcGaRzFMWEo/k/xSx vilS2yW3s6xq2HVS6Dj4EFzXHqWiM/lGgVFbx7UQ/c+qEO+LRq7fxBVU9i0B3Mkp w36XqTQRyeCC9rD6yJCpRFP8v8cUIzy90xGJCwaf8AmKVY0ZpOzTp6dSZRd0fsLD He0ZpuiKttdTrxCRI6Eb8eE3IbyQkxG+I4vaDNdegdNElx/+GjA0Oxs= -----END CERTIFICATE-----Generated at Mon Mar 2 09:41:39 2026 by rpki-client