$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.cer File: CEB4F9AE3476630AAF22F4CD42CE606BB4444140.cer (raw, json) Hash identifier: f+Qx+jGBlxcnw6MtMd9zyjfAnZ6sdKpBP/Jy+5E9DoU= Subject key identifier: CE:B4:F9:AE:34:76:63:0A:AF:22:F4:CD:42:CE:60:6B:B4:44:41:40 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 56F97A84527B384F04A521461A32BFBC98BDB04D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.mft caRepository: rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 27 Mar 2026 01:48:58 +0000 Certificate not after: Fri 26 Mar 2027 01:53:58 +0000 Subordinate resources: IP: 157.10.222.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 20:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f9:7a:84:52:7b:38:4f:04:a5:21:46:1a:32:bf:bc:98:bd:b0:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 27 01:48:58 2026 GMT Not After : Mar 26 01:53:58 2027 GMT Subject: CN=CEB4F9AE3476630AAF22F4CD42CE606BB4444140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:93:dd:d4:4c:d1:60:4f:58:32:5d:4f:7d:9d: 25:c3:cf:e8:8f:ba:cf:57:fc:2c:dc:30:6e:b2:c8: 9d:3f:26:02:c0:07:6f:b1:e8:2a:4b:58:93:6f:fe: 3f:db:8c:94:e9:35:a9:46:60:e0:50:be:8e:94:85: 11:33:b2:d3:f5:f0:c8:39:de:4a:82:05:77:a0:9c: cc:d1:77:3e:65:a3:1c:69:6f:d2:35:44:3a:18:3f: be:01:a7:a5:07:fc:4c:d7:67:bc:f2:f1:4b:f4:31: 38:6d:03:ae:23:18:26:5b:c3:66:75:f5:5f:20:8e: 65:fb:4c:8b:3b:13:b5:d6:ea:33:50:58:45:2f:48: df:75:b2:7d:3f:58:a9:e2:f1:a9:a7:0a:0e:41:7b: 84:1f:4d:b9:d1:6f:32:3a:a5:14:7f:51:12:5f:a2: 73:b6:98:8c:9b:88:10:94:51:ef:25:32:44:df:da: 73:9e:48:76:96:8d:f4:34:1e:9c:b7:1d:80:ed:c5: 8c:07:4e:dd:4f:16:e3:19:4e:7b:dd:eb:ca:9b:32: eb:29:a6:6d:2a:18:d8:c0:26:2b:6c:1b:75:cd:92: 4b:fa:72:ff:a5:43:a1:07:cd:30:74:93:82:a5:d3: 4b:7a:a8:f6:a6:f0:a9:2e:11:1a:9d:4c:42:9c:a3: 69:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CE:B4:F9:AE:34:76:63:0A:AF:22:F4:CD:42:CE:60:6B:B4:44:41:40 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ca376a6e-3eca-4f73-8d15-d1ddee91ff98/0/CEB4F9AE3476630AAF22F4CD42CE606BB4444140.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.222.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:c3:6f:95:a5:79:c6:04:57:d8:14:06:54:52:65:07:cf:63: 48:1e:7d:d4:dc:c6:dd:d1:22:44:87:37:8f:e8:96:93:4a:e2: 35:d0:a5:13:0b:cc:a3:3c:03:ef:68:7a:04:f8:41:3e:8f:f3: a6:75:f8:f4:b3:90:60:59:6a:62:d9:06:91:cf:35:7f:91:a2: f8:a9:d6:7b:fc:80:33:59:15:a6:21:9c:67:1a:61:63:c4:a5: f9:9e:46:ba:63:ea:6e:ab:50:a7:55:57:f5:a6:80:b2:8d:17: c0:67:da:23:c7:08:87:91:5a:2f:45:a7:b1:b3:59:1e:be:6e: 52:83:f0:43:75:6f:90:a4:7a:fd:b3:d6:98:d0:c4:8f:cf:8d: 50:2a:87:6f:42:12:49:e9:07:ce:d1:17:be:83:00:33:9b:1e: 6a:6f:d3:ad:88:d0:74:d4:a0:fb:ad:17:e3:52:8e:fd:eb:4a: b9:bb:c1:5d:1e:b7:6e:5e:bf:d2:e6:31:22:15:12:90:2a:c2: fd:ab:b9:39:23:a1:69:d1:d8:2d:e2:1c:8e:52:2b:c1:f4:1a: 7d:11:84:cb:f3:5f:02:36:a2:0d:d2:e5:8b:e5:af:71:d1:2d: dd:2c:d8:4c:23:93:61:21:4a:3c:80:99:aa:6d:18:c7:5c:af: 88:b0:18:32 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVvl6hFJ7OE8EpSFGGjK/vJi9sE0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDMyNzAxNDg1OFoX DTI3MDMyNjAxNTM1OFowMzExMC8GA1UEAxMoQ0VCNEY5QUUzNDc2NjMwQUFGMjJG NENENDJDRTYwNkJCNDQ0NDE0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPKT3dRM0WBPWDJdT32dJcPP6I+6z1f8LNwwbrLInT8mAsAHb7HoKktYk2/+ P9uMlOk1qUZg4FC+jpSFETOy0/XwyDneSoIFd6CczNF3PmWjHGlv0jVEOhg/vgGn pQf8TNdnvPLxS/QxOG0DriMYJlvDZnX1XyCOZftMizsTtdbqM1BYRS9I33WyfT9Y qeLxqacKDkF7hB9NudFvMjqlFH9REl+ic7aYjJuIEJRR7yUyRN/ac55IdpaN9DQe nLcdgO3FjAdO3U8W4xlOe93rypsy6ymmbSoY2MAmK2wbdc2SS/py/6VDoQfNMHST gqXTS3qo9qbwqS4RGp1MQpyjaWkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFM60+a40dmMKryL0zULOYGu0REFAMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jYTM3NmE2ZS0zZWNhLTRmNzMtOGQxNS1kMWRkZWU5MWZmOTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhMzc2YTZl LTNlY2EtNGY3My04ZDE1LWQxZGRlZTkxZmY5OC8wL0NFQjRGOUFFMzQ3NjYzMEFB RjIyRjRDRDQyQ0U2MDZCQjQ0NDQxNDAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdCt4wDQYJKoZIhvcNAQELBQADggEBAGrDb5WlecYEV9gUBlRSZQfPY0gefdTc xt3RIkSHN4/olpNK4jXQpRMLzKM8A+9oegT4QT6P86Z1+PSzkGBZamLZBpHPNX+R ovip1nv8gDNZFaYhnGcaYWPEpfmeRrpj6m6rUKdVV/WmgLKNF8Bn2iPHCIeRWi9F p7GzWR6+blKD8EN1b5Ckev2z1pjQxI/PjVAqh29CEknpB87RF76DADObHmpv062I 0HTUoPutF+NSjv3rSrm7wV0et25ev9LmMSIVEpAqwv2ruTkjoWnR2C3iHI5SK8H0 Gn0RhMvzXwI2og3S5Yvlr3HRLd0s2Ewjk2EhSjyAmaptGMdcr4iwGDI= -----END CERTIFICATE-----Generated at Fri Apr 17 11:12:38 2026 by rpki-client