$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer File: 29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.cer (raw, json) Hash identifier: XCXaWLcKy0rnGczknnOUOLgCL0wXv2ryT/mx8ZqHqC4= Subject key identifier: 29:C0:64:0D:D9:07:6D:C0:4C:F8:A3:90:EA:73:DF:C0:E0:E7:CF:9A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 41FC60C59088BA449C492B33CD19CFA3BAB4E1CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.mft caRepository: rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 04 Apr 2026 05:10:34 +0000 Certificate not after: Sat 03 Apr 2027 05:15:34 +0000 Subordinate resources: IP: 27.124.74.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:fc:60:c5:90:88:ba:44:9c:49:2b:33:cd:19:cf:a3:ba:b4:e1:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 4 05:10:34 2026 GMT Not After : Apr 3 05:15:34 2027 GMT Subject: CN=29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:71:7e:24:68:6c:34:08:aa:6d:0a:62:aa:ba: 45:47:31:de:e5:6b:dd:25:e3:8d:aa:68:bb:d2:68: 68:da:9e:11:05:32:a6:93:3a:8f:77:29:c5:f4:89: 7a:c1:16:ed:c0:2a:35:f2:1a:ba:84:ec:56:53:ed: f6:26:dc:c4:d1:92:40:d6:0e:49:e1:37:ba:80:e6: 54:f1:62:37:5e:ba:cb:8b:78:6c:ca:e0:2b:84:c5: 6f:aa:42:c9:42:39:27:e4:90:ad:7c:d0:9e:d1:c6: 48:3c:0d:ed:05:26:a4:a3:45:26:bf:9c:34:02:73: cc:43:4e:a6:7e:fe:f7:bf:91:fc:97:cb:db:c0:c5: a2:0d:5d:f6:36:4c:4c:94:2f:7b:20:cd:6b:1e:77: 23:6b:f2:c5:84:ca:72:a4:04:44:5e:7f:cc:a4:c9: 68:58:f4:88:fb:21:fc:ba:fa:89:96:93:a4:4d:b2: 3f:88:e1:f5:dd:4d:14:27:81:22:0d:8c:ab:79:31: 8f:44:da:57:c1:19:02:69:76:f3:d0:de:03:4d:0c: fd:95:c7:1f:94:5d:79:c7:88:07:b0:52:5f:dc:f2: d5:5b:fe:e2:9a:4b:7c:3b:83:af:d0:84:fb:47:59: df:9f:fd:02:83:59:1a:6e:62:46:e2:01:d9:07:ae: ae:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 29:C0:64:0D:D9:07:6D:C0:4C:F8:A3:90:EA:73:DF:C0:E0:E7:CF:9A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4daf9f0f-4fb1-40c0-b380-59a38dbc9a16/0/29C0640DD9076DC04CF8A390EA73DFC0E0E7CF9A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.74.0/23 Signature Algorithm: sha256WithRSAEncryption 26:c0:63:1b:ae:a5:c8:1c:a7:49:1f:38:c3:e1:33:e5:91:8c: 9c:9c:fd:1a:9f:90:af:67:e5:42:91:a7:0f:e3:35:2f:fd:43: 07:55:c3:c5:39:d0:b2:c0:b7:70:60:db:11:c3:2b:72:9f:24: 6a:84:6f:88:09:0a:e0:a2:e2:45:be:db:ce:0d:94:e1:32:05: d9:6e:05:20:fb:44:53:60:cf:35:e7:32:d9:0f:40:69:39:fe: 0c:03:e4:56:6d:9f:66:89:9c:45:31:42:e6:4e:f7:01:9f:ef: b9:d2:fe:d6:21:d5:70:f6:b8:e8:2b:87:cb:d4:f9:71:1b:58: 0f:d5:9e:ca:32:7f:50:0c:39:ec:4c:cf:41:9f:80:75:63:f0: 5f:0e:4f:89:6f:1e:f5:15:aa:60:6d:77:87:b2:1c:c4:65:20: 6d:9c:2c:4e:c0:9e:b2:c3:b0:3e:c2:f5:92:cf:81:0e:32:7b: 04:4f:34:35:8b:8e:f0:dd:ad:e4:5f:85:90:98:b3:36:6e:53: a3:c5:e1:ea:0e:bf:a3:60:45:97:43:32:2d:ad:1d:9b:5f:45: b6:ea:7c:40:b0:60:46:f6:2a:87:c1:96:85:9f:44:14:eb:9b: ed:77:3a:f1:a8:b1:08:02:23:2f:b8:f9:9c:15:25:c6:57:a8: c6:e8:f6:c4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQfxgxZCIukScSSszzRnPo7q04cwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDQwNDA1MTAzNFoX DTI3MDQwMzA1MTUzNFowMzExMC8GA1UEAxMoMjlDMDY0MEREOTA3NkRDMDRDRjhB MzkwRUE3M0RGQzBFMEU3Q0Y5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9xfiRobDQIqm0KYqq6RUcx3uVr3SXjjapou9JoaNqeEQUyppM6j3cpxfSJ esEW7cAqNfIauoTsVlPt9ibcxNGSQNYOSeE3uoDmVPFiN166y4t4bMrgK4TFb6pC yUI5J+SQrXzQntHGSDwN7QUmpKNFJr+cNAJzzENOpn7+97+R/JfL28DFog1d9jZM TJQveyDNax53I2vyxYTKcqQERF5/zKTJaFj0iPsh/Lr6iZaTpE2yP4jh9d1NFCeB Ig2Mq3kxj0TaV8EZAml289DeA00M/ZXHH5RdeceIB7BSX9zy1Vv+4ppLfDuDr9CE +0dZ35/9AoNZGm5iRuIB2QeurnMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCnAZA3ZB23ATPijkOpz38Dg58+aMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZGFmOWYwZi00ZmIxLTQwYzAtYjM4MC01OWEzOGRiYzlhMTYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkYWY5ZjBm LTRmYjEtNDBjMC1iMzgwLTU5YTM4ZGJjOWExNi8wLzI5QzA2NDBERDkwNzZEQzA0 Q0Y4QTM5MEVBNzNERkMwRTBFN0NGOUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEbfEowDQYJKoZIhvcNAQELBQADggEBACbAYxuupcgcp0kfOMPhM+WRjJyc/Rqf kK9n5UKRpw/jNS/9QwdVw8U50LLAt3Bg2xHDK3KfJGqEb4gJCuCi4kW+284NlOEy BdluBSD7RFNgzzXnMtkPQGk5/gwD5FZtn2aJnEUxQuZO9wGf77nS/tYh1XD2uOgr h8vU+XEbWA/Vnsoyf1AMOexMz0GfgHVj8F8OT4lvHvUVqmBtd4eyHMRlIG2cLE7A nrLDsD7C9ZLPgQ4yewRPNDWLjvDdreRfhZCYszZuU6PF4eoOv6NgRZdDMi2tHZtf RbbqfECwYEb2KofBloWfRBTrm+13OvGosQgCIy+4+ZwVJcZXqMbo9sQ= -----END CERTIFICATE-----Generated at Sun Apr 19 09:02:32 2026 by rpki-client