$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.cer File: A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.cer (raw, json) Hash identifier: ytCkAAnoJiaol2a3d7ZjOd+wSP52RfDoyq2Kx3l6D9E= Subject key identifier: A4:B6:31:C8:CF:E0:EE:72:AC:D5:F2:08:FC:12:39:06:4F:6C:DE:44 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7CF732568276491DF672588CC7FB97631AB5E1C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.mft caRepository: rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 25 May 2025 23:28:00 +0000 Certificate not after: Sun 24 May 2026 23:33:00 +0000 Subordinate resources: IP: 157.66.248.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 14:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:f7:32:56:82:76:49:1d:f6:72:58:8c:c7:fb:97:63:1a:b5:e1:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 25 23:28:00 2025 GMT Not After : May 24 23:33:00 2026 GMT Subject: CN=A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ff:b2:a5:bc:4a:bc:14:46:83:1e:bb:e2:e7: 3a:f2:34:0f:4e:65:8b:12:fa:25:14:1c:aa:72:ac: ac:8a:b1:ec:69:56:e2:43:43:38:47:f1:a8:6d:d2: 5d:76:b6:c8:b6:94:ee:51:48:6e:de:f6:14:f2:40: 6e:23:59:8e:7a:c9:0e:34:b6:a4:a2:7f:25:01:36: 4d:09:3a:62:db:6a:97:88:d4:f5:19:32:73:25:f7: 93:53:43:cc:91:95:8b:67:80:c7:bb:4e:dd:5e:56: 38:41:3d:e1:8c:83:1a:7d:53:ab:c7:9f:36:c3:c5: 31:22:95:15:9a:fd:e4:ee:64:19:40:10:65:dd:6b: 44:b3:c3:1f:93:43:98:6f:ea:48:c8:e4:d2:ba:31: c5:d4:37:be:1b:6f:06:f9:10:a4:f4:54:e8:75:a6: 63:fe:96:3b:5c:95:01:f8:17:8b:05:6e:8b:11:9e: c7:c1:9a:c8:6a:1a:0f:01:17:7d:66:26:d2:ea:a3: 55:61:92:0e:f4:8b:15:6b:d4:e5:46:82:d6:dd:77: 08:aa:b5:65:b2:21:03:f0:b2:d8:78:a5:f8:69:78: ea:3c:9a:b9:16:ce:22:15:12:7f:4e:9e:60:8b:51: 7d:2c:a2:88:8e:ba:5f:d3:fd:86:f7:72:61:6e:7d: cc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A4:B6:31:C8:CF:E0:EE:72:AC:D5:F2:08:FC:12:39:06:4F:6C:DE:44 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.248.0/23 Signature Algorithm: sha256WithRSAEncryption 12:17:46:97:7b:da:70:5d:8d:af:00:36:bf:a4:46:17:9e:29: 32:51:80:94:96:36:cb:f3:f9:37:85:e8:56:be:1f:d7:7b:54: 3e:53:3c:30:c7:23:9d:b6:87:b6:c2:8b:16:b2:be:0f:22:e6: c0:42:e9:8e:f9:81:7b:eb:a5:ca:de:14:a0:9a:e6:eb:45:36: 90:0b:81:a5:4e:eb:9a:62:ed:33:86:5f:84:cb:e3:44:8b:04: 86:40:e2:20:d3:3d:0f:96:5b:5f:2c:d5:9e:44:ce:75:56:0a: dc:cc:fb:08:88:51:7a:93:39:37:84:69:55:6e:e1:a2:93:4f: 46:c5:2a:ef:1b:96:46:7e:23:80:a0:ce:19:42:46:fe:2f:81: 52:38:7d:18:ee:35:4f:ba:17:bc:b7:73:c8:79:6e:d6:af:0d: 8b:21:c3:c9:b3:68:78:34:ff:2c:48:48:a6:fc:25:56:92:04: 59:aa:75:bd:8d:8d:2d:32:75:e8:2e:7b:59:51:44:06:9d:49: 35:f5:fe:13:ce:48:35:3b:83:a9:d3:1c:bb:10:f6:4a:9b:16: a8:e0:76:ea:a4:79:15:c4:1b:f0:24:73:20:0b:ff:ad:ec:16: 86:7a:28:44:b3:4c:fe:71:46:f8:fb:f5:bc:1d:38:ce:0f:8c: d2:c4:0b:7b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUfPcyVoJ2SR32cliMx/uXYxq14ckwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDUyNTIzMjgwMFoX DTI2MDUyNDIzMzMwMFowMzExMC8GA1UEAxMoQTRCNjMxQzhDRkUwRUU3MkFDRDVG MjA4RkMxMjM5MDY0RjZDREU0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALX/sqW8SrwURoMeu+LnOvI0D05lixL6JRQcqnKsrIqx7GlW4kNDOEfxqG3S XXa2yLaU7lFIbt72FPJAbiNZjnrJDjS2pKJ/JQE2TQk6Yttql4jU9RkycyX3k1ND zJGVi2eAx7tO3V5WOEE94YyDGn1Tq8efNsPFMSKVFZr95O5kGUAQZd1rRLPDH5ND mG/qSMjk0roxxdQ3vhtvBvkQpPRU6HWmY/6WO1yVAfgXiwVuixGex8GayGoaDwEX fWYm0uqjVWGSDvSLFWvU5UaC1t13CKq1ZbIhA/Cy2Hil+Gl46jyauRbOIhUSf06e YItRfSyiiI66X9P9hvdyYW59zAkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKS2McjP4O5yrNXyCPwSOQZPbN5EMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iMzk5MWY3YS0wYTcxLTRmMGQtOTMzZi1lY2Y4MTM1MzAyNzQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzOTkxZjdh LTBhNzEtNGYwZC05MzNmLWVjZjgxMzUzMDI3NC8wL0E0QjYzMUM4Q0ZFMEVFNzJB Q0Q1RjIwOEZDMTIzOTA2NEY2Q0RFNDQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQvgwDQYJKoZIhvcNAQELBQADggEBABIXRpd72nBdja8ANr+kRheeKTJRgJSW Nsvz+TeF6Fa+H9d7VD5TPDDHI522h7bCixayvg8i5sBC6Y75gXvrpcreFKCa5utF NpALgaVO65pi7TOGX4TL40SLBIZA4iDTPQ+WW18s1Z5EznVWCtzM+wiIUXqTOTeE aVVu4aKTT0bFKu8blkZ+I4CgzhlCRv4vgVI4fRjuNU+6F7y3c8h5btavDYshw8mz aHg0/yxISKb8JVaSBFmqdb2NjS0ydegue1lRRAadSTX1/hPOSDU7g6nTHLsQ9kqb FqjgduqkeRXEG/AkcyAL/63sFoZ6KESzTP5xRvj79bwdOM4PjNLEC3s= -----END CERTIFICATE-----Generated at Mon Jun 16 23:58:24 2025 by rpki-client