$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/967E94B3DE771E4C5977FF1E0C2A61A1DF444939.cer File: 967E94B3DE771E4C5977FF1E0C2A61A1DF444939.cer (raw, json) Hash identifier: FEFIlAxuNBUk8u1XtwbRsLXe7o1DkJ5HSMBb34fw8yA= Subject key identifier: 96:7E:94:B3:DE:77:1E:4C:59:77:FF:1E:0C:2A:61:A1:DF:44:49:39 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6234F533239DA20B5A5C4C980B9C301635074FCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d50c867b-2cb9-457b-856b-a2afa38f57cc/0/967E94B3DE771E4C5977FF1E0C2A61A1DF444939.mft caRepository: rsync://repo-rpki.idnic.net/repo/d50c867b-2cb9-457b-856b-a2afa38f57cc/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 29 Jul 2025 18:23:40 +0000 Certificate not after: Tue 28 Jul 2026 18:28:40 +0000 Subordinate resources: IP: 202.74.72.0/22 IP: 2400:7dc0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 06:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:34:f5:33:23:9d:a2:0b:5a:5c:4c:98:0b:9c:30:16:35:07:4f:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 29 18:23:40 2025 GMT Not After : Jul 28 18:28:40 2026 GMT Subject: CN=967E94B3DE771E4C5977FF1E0C2A61A1DF444939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:61:15:48:83:66:f8:9d:ae:f8:97:0d:f5:a3: fb:58:9c:4e:58:2e:81:ba:2b:7e:dc:65:82:72:bc: 98:de:d4:01:aa:07:b9:c2:0e:22:81:20:7f:85:9d: eb:ce:94:2d:51:b2:cd:69:41:8b:16:3f:97:95:11: 5b:ab:9d:0f:ec:8e:d7:17:8f:92:8e:8d:31:03:6f: c2:5e:26:fe:8a:72:eb:d1:79:e3:21:1a:5e:f7:2f: 4e:9d:f5:a9:45:f8:07:c5:c5:35:84:3e:9f:33:c5: 80:4a:9f:eb:2b:ee:90:61:e2:e7:7c:bc:55:cd:93: d3:1b:0d:f2:9c:4a:6b:7e:2a:94:2f:8b:c9:5c:65: e8:84:1f:d1:b9:53:7e:a7:d0:d2:93:4a:57:45:03: 1e:ff:6e:cd:4f:3b:02:70:d3:07:58:33:bc:62:33: e2:96:fb:00:97:a7:0e:0c:02:6d:86:bc:cc:69:4f: 7d:b9:a1:af:d9:4e:9d:10:5e:ab:19:34:1d:1c:8d: ee:40:2f:5e:98:e1:80:99:55:1b:5d:d6:c6:ef:70: 10:99:cd:5f:25:9b:59:63:4c:e5:f0:75:37:91:bb: b0:4f:30:9f:2a:ec:ec:9a:7f:5d:ee:25:35:0b:24: 08:78:5b:79:ca:ff:68:0f:4b:74:19:4f:8d:cc:5d: c3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 96:7E:94:B3:DE:77:1E:4C:59:77:FF:1E:0C:2A:61:A1:DF:44:49:39 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d50c867b-2cb9-457b-856b-a2afa38f57cc/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d50c867b-2cb9-457b-856b-a2afa38f57cc/0/967E94B3DE771E4C5977FF1E0C2A61A1DF444939.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.74.72.0/22 IPv6: 2400:7dc0::/32 Signature Algorithm: sha256WithRSAEncryption 93:b9:8a:20:9f:27:de:04:20:62:83:e1:49:34:29:4d:19:20: 1b:40:49:b0:8f:c2:de:1d:e8:95:4c:d0:d0:11:89:db:6f:d9: f8:d2:de:31:4b:ba:ba:6a:c8:a4:4b:7f:7a:32:ca:59:f0:3f: 68:d8:7d:f9:45:04:1c:94:27:f0:da:5b:3a:04:0e:f8:9f:f7: 65:ff:51:6f:00:54:3f:70:fc:5e:83:fa:b8:4b:19:f4:e3:02: 3d:0a:2b:51:f0:b2:6e:79:ec:ea:13:c8:75:00:ee:b2:0c:71: be:a2:d3:bb:74:c4:58:ca:a7:c7:65:f7:58:88:a1:12:63:17: 6a:93:6f:be:f0:74:f0:33:e8:3b:b3:9d:13:b2:4f:ed:af:9f: a4:67:22:8b:30:f5:97:ca:b8:d0:96:68:2a:8f:70:a3:55:bc: 54:9a:db:87:4a:1e:1a:19:b8:ca:19:66:15:7e:b0:cc:9d:b2: 0b:ee:ab:72:75:e4:96:97:52:87:bf:4b:2b:91:6f:78:da:45: d4:18:6a:be:c0:21:83:5e:fa:7c:20:52:e8:ef:d1:3b:c6:9b: 2c:a8:0b:a9:9b:c0:33:d3:8b:50:ea:2f:2f:28:f7:29:0b:16: 8d:15:84:dd:e5:38:1f:20:b0:4b:33:08:0d:27:c7:3e:b4:3c: 8d:18:18:5b -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUYjT1MyOdogtaXEyYC5wwFjUHT88wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcyOTE4MjM0MFoX DTI2MDcyODE4Mjg0MFowMzExMC8GA1UEAxMoOTY3RTk0QjNERTc3MUU0QzU5NzdG RjFFMEMyQTYxQTFERjQ0NDkzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJxhFUiDZvidrviXDfWj+1icTlgugborftxlgnK8mN7UAaoHucIOIoEgf4Wd 686ULVGyzWlBixY/l5URW6udD+yO1xePko6NMQNvwl4m/opy69F54yEaXvcvTp31 qUX4B8XFNYQ+nzPFgEqf6yvukGHi53y8Vc2T0xsN8pxKa34qlC+LyVxl6IQf0blT fqfQ0pNKV0UDHv9uzU87AnDTB1gzvGIz4pb7AJenDgwCbYa8zGlPfbmhr9lOnRBe qxk0HRyN7kAvXpjhgJlVG13Wxu9wEJnNXyWbWWNM5fB1N5G7sE8wnyrs7Jp/Xe4l NQskCHhbecr/aA9LdBlPjcxdwwkCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJZ+lLPedx5MWXf/HgwqYaHfREk5MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kNTBjODY3Yi0yY2I5LTQ1N2ItODU2Yi1hMmFmYTM4ZjU3Y2MvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1MGM4Njdi LTJjYjktNDU3Yi04NTZiLWEyYWZhMzhmNTdjYy8wLzk2N0U5NEIzREU3NzFFNEM1 OTc3RkYxRTBDMkE2MUExREY0NDQ5MzkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BALKSkgwDQQCAAIwBwMFACQAfcAwDQYJKoZIhvcNAQELBQADggEBAJO5iiCfJ94E IGKD4Uk0KU0ZIBtASbCPwt4d6JVM0NARidtv2fjS3jFLurpqyKRLf3oyylnwP2jY fflFBByUJ/DaWzoEDvif92X/UW8AVD9w/F6D+rhLGfTjAj0KK1Hwsm557OoTyHUA 7rIMcb6i07t0xFjKp8dl91iIoRJjF2qTb77wdPAz6DuznROyT+2vn6RnIosw9ZfK uNCWaCqPcKNVvFSa24dKHhoZuMoZZhV+sMydsgvuq3J15JaXUoe/SyuRb3jaRdQY ar7AIYNe+nwgUujv0TvGmyyoC6mbwDPTi1DqLy8o9ykLFo0VhN3lOB8gsEszCA0n xz60PI0YGFs= -----END CERTIFICATE-----Generated at Sun Aug 10 04:20:55 2025 by rpki-client