$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/A950C0F5B830659E499444729038D5D2047859FB.cer File: A950C0F5B830659E499444729038D5D2047859FB.cer (raw, json) Hash identifier: y83m/ppPf7QnWelSKYePNcNWTDq/ExsBar4fsmJOgKA= Subject key identifier: A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7B5C5BE5FD85141ADDA94862FAA66DCF63317B9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.mft caRepository: rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 12 May 2025 20:31:07 +0000 Certificate not after: Mon 11 May 2026 20:36:07 +0000 Subordinate resources: IP: 160.22.36.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:58:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:5c:5b:e5:fd:85:14:1a:dd:a9:48:62:fa:a6:6d:cf:63:31:7b:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 12 20:31:07 2025 GMT Not After : May 11 20:36:07 2026 GMT Subject: CN=A950C0F5B830659E499444729038D5D2047859FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:77:3f:6e:ca:82:60:80:00:53:0c:96:37:da: e5:01:7a:19:de:64:b6:04:4f:fb:68:20:e7:8a:ab: cb:ee:92:37:84:af:7d:9e:18:f1:de:ee:0d:2e:92: cd:0e:be:b9:3c:03:49:59:51:41:c4:99:53:dd:99: 4e:65:d9:dd:06:7f:57:66:4d:b3:a5:d5:98:9a:e1: 23:70:32:27:0f:82:c6:4a:25:8f:0b:e5:44:84:81: 6f:8d:24:2b:49:11:18:22:7b:05:94:b9:1f:17:90: 49:53:52:48:d9:eb:f9:9c:ab:50:ce:d1:92:60:df: 6e:3d:b6:84:1d:8e:e4:b3:d6:fc:ea:6a:28:47:e3: 00:26:f9:26:cc:2d:2c:09:d4:45:b8:11:76:60:0f: f5:0b:1c:ee:b3:65:9f:2f:ad:4b:87:2f:88:c9:36: d0:e8:03:6b:44:5e:7a:67:a5:09:1b:97:5c:70:ab: 93:cc:c3:96:22:3c:1d:1a:c1:99:eb:ee:a2:78:8c: b8:c4:b4:ef:cf:c5:95:25:1d:d7:c3:10:fe:9a:2f: c5:d3:15:95:0f:81:46:67:2b:62:96:e1:22:d6:15: b4:d5:f8:12:fe:58:8f:9e:48:ae:57:46:93:60:52: b4:fb:3f:11:7a:e6:28:67:c1:b4:cc:0f:e2:2c:03: 4f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A9:50:C0:F5:B8:30:65:9E:49:94:44:72:90:38:D5:D2:04:78:59:FB X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/8f582f2b-8625-4f38-b26e-42fbd3c21cf0/0/A950C0F5B830659E499444729038D5D2047859FB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.36.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:88:ac:8a:4f:fa:14:59:f9:7a:fb:50:17:7f:4a:c5:cf:98: b3:19:d5:9a:86:53:01:b1:47:31:64:36:26:04:a8:88:d0:8b: ca:de:62:c8:fc:48:b6:b6:7e:fc:14:c8:69:21:63:7c:28:71: 31:90:18:18:fb:b4:6c:73:17:a4:57:71:85:3a:85:b8:12:0c: 91:cf:d2:5d:2f:e1:11:d3:46:7c:6a:6f:43:77:8c:aa:42:c2: 6b:3b:47:4f:72:a1:20:84:db:6d:13:eb:6a:83:42:f2:52:11: b0:af:88:ae:c0:a5:1b:fb:6b:64:92:ed:13:d1:53:62:e7:ff: 6b:97:16:e3:03:79:64:5a:37:da:86:d7:22:20:5e:09:0e:c8: 73:ff:e2:b1:52:f8:43:54:35:53:e9:91:24:4c:1b:53:27:3d: 04:a9:b1:4f:6e:f5:c7:87:17:ab:21:ca:b0:d7:20:26:51:d0: 44:3f:70:13:0f:f0:05:06:f4:dc:f6:fb:c6:af:03:f0:28:a7: b0:fc:15:b5:ff:97:4c:f3:fb:d1:89:d2:dc:14:3b:96:d5:30: af:39:ca:4a:96:95:03:b0:07:28:0c:a8:14:16:04:df:f9:e5: b1:7a:02:a5:7f:68:4a:97:a4:b7:29:8b:71:7f:8e:03:6f:ec: 40:87:4f:41 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUe1xb5f2FFBrdqUhi+qZtz2Mxe58wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDUxMjIwMzEwN1oX DTI2MDUxMTIwMzYwN1owMzExMC8GA1UEAxMoQTk1MEMwRjVCODMwNjU5RTQ5OTQ0 NDcyOTAzOEQ1RDIwNDc4NTlGQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZ3P27KgmCAAFMMljfa5QF6Gd5ktgRP+2gg54qry+6SN4SvfZ4Y8d7uDS6S zQ6+uTwDSVlRQcSZU92ZTmXZ3QZ/V2ZNs6XVmJrhI3AyJw+CxkoljwvlRISBb40k K0kRGCJ7BZS5HxeQSVNSSNnr+ZyrUM7RkmDfbj22hB2O5LPW/OpqKEfjACb5Jswt LAnURbgRdmAP9Qsc7rNlny+tS4cviMk20OgDa0ReemelCRuXXHCrk8zDliI8HRrB mevuoniMuMS078/FlSUd18MQ/povxdMVlQ+BRmcrYpbhItYVtNX4Ev5Yj55IrldG k2BStPs/EXrmKGfBtMwP4iwDT6MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKlQwPW4MGWeSZREcpA41dIEeFn7MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84ZjU4MmYyYi04NjI1LTRmMzgtYjI2ZS00MmZiZDNjMjFjZjAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmNTgyZjJi LTg2MjUtNGYzOC1iMjZlLTQyZmJkM2MyMWNmMC8wL0E5NTBDMEY1QjgzMDY1OUU0 OTk0NDQ3MjkwMzhENUQyMDQ3ODU5RkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFiQwDQYJKoZIhvcNAQELBQADggEBAIqIrIpP+hRZ+Xr7UBd/SsXPmLMZ1ZqG UwGxRzFkNiYEqIjQi8reYsj8SLa2fvwUyGkhY3wocTGQGBj7tGxzF6RXcYU6hbgS DJHP0l0v4RHTRnxqb0N3jKpCwms7R09yoSCE220T62qDQvJSEbCviK7ApRv7a2SS 7RPRU2Ln/2uXFuMDeWRaN9qG1yIgXgkOyHP/4rFS+ENUNVPpkSRMG1MnPQSpsU9u 9ceHF6shyrDXICZR0EQ/cBMP8AUG9Nz2+8avA/Aop7D8FbX/l0zz+9GJ0twUO5bV MK85ykqWlQOwBygMqBQWBN/55bF6AqV/aEqXpLcpi3F/jgNv7ECHT0E= -----END CERTIFICATE-----Generated at Tue Jun 17 08:52:52 2025 by rpki-client