$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer File: 4EB8521D8427720F50A3F65249F2D26C6CD22F13.cer (raw, json) Hash identifier: yzRO43C4u93oO37JRIuBfODBSYOMIJ+kKRyJtbE+vXM= Subject key identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 503703CC0F1DAC1A6365A1885DD18E503F115187 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.mft caRepository: rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 05 Jun 2025 01:50:56 +0000 Certificate not after: Thu 04 Jun 2026 01:55:56 +0000 Subordinate resources: IP: 103.158.154.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 00:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:37:03:cc:0f:1d:ac:1a:63:65:a1:88:5d:d1:8e:50:3f:11:51:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 5 01:50:56 2025 GMT Not After : Jun 4 01:55:56 2026 GMT Subject: CN=4EB8521D8427720F50A3F65249F2D26C6CD22F13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8f:05:e5:f5:d2:14:76:e1:48:ae:9e:a5:63: d1:69:03:5f:b8:ee:9e:68:6c:61:39:7b:d5:cd:47: 4f:cb:d9:b7:21:be:4e:4d:99:3e:fb:d7:46:d5:41: 18:cd:e4:f6:41:49:74:c5:a6:13:de:3c:a3:07:6b: d7:9d:17:f2:f0:64:49:6a:90:3b:8b:29:23:31:77: 57:56:13:cc:d7:e0:81:8b:24:65:4b:91:16:7a:2a: 9a:3e:d3:de:87:0e:7f:91:3c:81:32:8c:36:72:f1: f0:30:e3:be:2e:a1:8b:71:38:b1:69:d2:bd:91:7f: 6d:f3:c5:82:06:8a:4f:c6:41:d0:69:fc:a9:38:73: 25:79:5a:3f:55:e0:0e:15:59:c4:b2:58:32:ad:5c: e4:0b:fb:28:1e:92:a1:2a:2d:68:b7:64:ca:13:1c: 0f:a7:ab:2e:4e:36:2a:0f:e3:9e:b0:e6:18:35:12: 82:f7:b0:b3:b6:f2:98:82:22:b7:28:69:fd:fe:f2: 72:2b:fa:75:80:69:b4:a3:0e:6a:a0:73:ae:71:61: e5:29:10:61:8b:3c:01:ff:9d:1d:1c:b9:53:0f:99: fa:ee:29:aa:27:7a:1a:16:30:c7:44:b1:0e:86:3b: ae:d5:f2:59:1e:4c:10:23:57:ec:f1:05:dc:1c:a5: 3b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4E:B8:52:1D:84:27:72:0F:50:A3:F6:52:49:F2:D2:6C:6C:D2:2F:13 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/533f60e6-afdd-4e10-83b4-e8cbd641c52f/0/4EB8521D8427720F50A3F65249F2D26C6CD22F13.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.154.0/23 Signature Algorithm: sha256WithRSAEncryption 90:04:cc:a0:14:45:37:8d:2b:16:e9:83:f7:d5:3f:ae:5b:38: 9a:f1:33:2b:d6:33:4d:39:20:30:90:fe:62:86:7c:b5:a8:b4: f3:d8:fd:c0:34:8c:53:58:eb:c5:ca:a1:dc:88:39:c8:0e:9d: 77:dc:c1:47:66:73:a7:7f:9b:28:91:15:20:38:73:da:6e:45: cf:44:b5:46:b0:a1:26:f0:01:42:2c:11:2d:62:15:c8:f7:ac: f9:4a:d9:7a:90:79:3c:54:68:72:99:58:66:3f:6b:39:33:b9: 27:f5:f1:b9:61:20:cc:ef:ee:fe:62:81:c9:e4:56:ce:ed:ec: 11:50:66:eb:1b:a0:2e:b0:5c:26:78:88:de:be:53:bf:4d:0c: c2:f6:55:fc:c1:b6:9f:35:bd:e2:ff:9e:76:09:f3:72:a6:5d: e0:4b:7e:a3:b5:29:83:68:a9:0a:90:ec:97:66:e7:90:af:1d: f2:e4:e8:7b:c4:f8:60:30:e3:d1:4a:5d:b7:3f:e5:a2:cb:be: 9f:fd:2a:18:9d:a8:85:f9:a4:89:0d:b4:40:a7:fb:32:91:01: 5d:33:2c:f5:b1:86:24:16:f1:6f:87:24:85:14:6c:99:6f:47: d6:0d:53:1b:45:fa:34:5b:ce:c9:1f:90:63:77:cb:99:e7:b3: b2:98:26:d7 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUUDcDzA8drBpjZaGIXdGOUD8RUYcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwNTAxNTA1NloX DTI2MDYwNDAxNTU1NlowMzExMC8GA1UEAxMoNEVCODUyMUQ4NDI3NzIwRjUwQTNG NjUyNDlGMkQyNkM2Q0QyMkYxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL+PBeX10hR24UiunqVj0WkDX7junmhsYTl71c1HT8vZtyG+Tk2ZPvvXRtVB GM3k9kFJdMWmE948owdr150X8vBkSWqQO4spIzF3V1YTzNfggYskZUuRFnoqmj7T 3ocOf5E8gTKMNnLx8DDjvi6hi3E4sWnSvZF/bfPFggaKT8ZB0Gn8qThzJXlaP1Xg DhVZxLJYMq1c5Av7KB6SoSotaLdkyhMcD6erLk42Kg/jnrDmGDUSgvews7bymIIi tyhp/f7yciv6dYBptKMOaqBzrnFh5SkQYYs8Af+dHRy5Uw+Z+u4pqid6GhYwx0Sx DoY7rtXyWR5MECNX7PEF3BylO68CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE64Uh2EJ3IPUKP2Ukny0mxs0i8TMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81MzNmNjBlNi1hZmRkLTRlMTAtODNiNC1lOGNiZDY0MWM1MmYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUzM2Y2MGU2 LWFmZGQtNGUxMC04M2I0LWU4Y2JkNjQxYzUyZi8wLzRFQjg1MjFEODQyNzcyMEY1 MEEzRjY1MjQ5RjJEMjZDNkNEMjJGMTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnnpowDQYJKoZIhvcNAQELBQADggEBAJAEzKAURTeNKxbpg/fVP65bOJrxMyvW M005IDCQ/mKGfLWotPPY/cA0jFNY68XKodyIOcgOnXfcwUdmc6d/myiRFSA4c9pu Rc9EtUawoSbwAUIsES1iFcj3rPlK2XqQeTxUaHKZWGY/azkzuSf18blhIMzv7v5i gcnkVs7t7BFQZusboC6wXCZ4iN6+U79NDML2VfzBtp81veL/nnYJ83KmXeBLfqO1 KYNoqQqQ7Jdm55CvHfLk6HvE+GAw49FKXbc/5aLLvp/9KhidqIX5pIkNtECn+zKR AV0zLPWxhiQW8W+HJIUUbJlvR9YNUxtF+jRbzskfkGN3y5nns7KYJtc= -----END CERTIFICATE-----Generated at Mon Nov 3 19:33:07 2025 by rpki-client