$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer File: D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer (raw, json) Hash identifier: iYs66rNB6UHnLbKk3GyqgfoPhgY6yiuO5rNdXUTvfx8= Subject key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C330378DD17134F49F7DACCC570F17AF5E3F7B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft caRepository: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Jun 2025 00:34:10 +0000 Certificate not after: Tue 02 Jun 2026 00:39:10 +0000 Subordinate resources: IP: 103.87.228.0/22 IP: 2400:d940::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 09:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:33:03:78:dd:17:13:4f:49:f7:da:cc:c5:70:f1:7a:f5:e3:f7:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 00:34:10 2025 GMT Not After : Jun 2 00:39:10 2026 GMT Subject: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:92:43:1a:f7:44:7a:0f:bc:36:9e:01:ca:69: bb:47:1e:f2:84:34:73:14:54:8c:08:5f:66:3d:4b: d4:b5:c4:ed:7c:a1:fb:ff:f5:b9:fb:7e:7b:f9:25: fc:48:65:f8:18:c6:3b:c4:5d:87:74:6e:3d:40:cb: 8e:0d:38:8d:0d:2e:06:82:54:88:81:66:b2:87:4e: 37:c1:36:3e:95:cb:b0:07:be:01:f9:6e:ca:8e:95: 96:8c:e6:e0:59:0d:cf:e1:3a:f7:da:cb:e4:73:31: db:f1:26:87:cb:05:b8:be:ed:6d:8f:8e:40:81:70: 48:51:62:ff:0b:75:be:41:fa:97:7e:d1:a8:95:9b: 55:78:ea:3b:05:e0:da:9d:57:5d:82:79:55:05:cc: d7:f7:73:09:b3:e8:76:ca:78:75:57:ac:b2:55:74: f1:3f:02:58:e1:83:90:e6:ad:be:cb:b4:ea:f2:e2: ed:33:e6:2d:d4:63:73:62:71:08:93:8e:3e:d9:6c: 7b:aa:23:b3:d4:56:30:fa:15:30:33:be:45:69:ca: 71:db:11:f1:30:02:7f:8c:f2:d7:35:3a:23:8c:34: d7:bd:78:59:de:57:f8:4a:22:2d:05:96:ab:dc:f6: e3:1f:7c:aa:5a:8c:2d:0a:0a:27:2a:25:80:c8:f3: dd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.228.0/22 IPv6: 2400:d940::/32 Signature Algorithm: sha256WithRSAEncryption 09:a5:bc:b0:68:7b:6c:82:da:20:26:17:26:c6:03:62:b1:b2: ef:01:1a:68:da:82:bd:30:47:40:0c:64:35:d5:3d:36:a7:1c: 62:09:23:d1:69:1f:5a:d1:ae:2f:5f:08:3c:b1:f9:3d:81:ad: 81:db:8b:01:32:bb:5a:26:e1:5a:51:55:30:c7:33:6b:1c:77: 57:69:b0:71:50:1e:60:57:62:ce:c8:82:ed:ae:14:57:78:54: 46:db:7b:a3:6b:a1:ab:89:80:e7:8f:06:c7:f9:e0:40:1e:a5: b1:2a:6e:5b:78:78:64:5d:f9:b6:e5:ec:ce:cc:76:cd:5f:e3: e6:a3:43:ab:17:f8:78:0c:5f:64:ef:96:4e:b0:88:69:e5:c9: 51:1e:6b:a8:35:62:c4:17:61:14:e0:cf:3e:95:18:3e:52:f9: 2e:94:30:2b:3e:77:ea:e9:ce:9b:79:99:ce:1d:40:e8:2e:e6: 45:43:7c:5b:8f:46:c0:77:0c:c5:08:9b:aa:86:1d:f5:fd:9b: 99:6a:06:02:9a:6e:19:ef:cb:63:6d:16:01:09:39:31:31:cc: e0:47:f4:8a:09:43:4b:58:90:29:77:ee:8e:db:6d:8a:4b:20: 18:9b:00:97:38:4f:ad:82:d4:bb:48:65:94:1b:43:53:51:d7: 3d:0e:6e:93 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUPDMDeN0XE09J99rMxXDxevXj97YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzAwMzQxMFoX DTI2MDYwMjAwMzkxMFowMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4 RDZFOUZEMUZCRDhEMEJFOTIzRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM2SQxr3RHoPvDaeAcppu0ce8oQ0cxRUjAhfZj1L1LXE7Xyh+//1uft+e/kl /Ehl+BjGO8Rdh3RuPUDLjg04jQ0uBoJUiIFmsodON8E2PpXLsAe+Afluyo6Vlozm 4FkNz+E699rL5HMx2/Emh8sFuL7tbY+OQIFwSFFi/wt1vkH6l37RqJWbVXjqOwXg 2p1XXYJ5VQXM1/dzCbPodsp4dVesslV08T8CWOGDkOatvsu06vLi7TPmLdRjc2Jx CJOOPtlse6ojs9RWMPoVMDO+RWnKcdsR8TACf4zy1zU6I4w01714Wd5X+EoiLQWW q9z24x98qlqMLQoKJyolgMjz3VMCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNP7YddGpEdn1FGNbp/R+9jQvpI/MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFj LTk1MzUtNGNiZi05YzdhLWZkMzJjODMwZWRiYS8wL0QzRkI2MUQ3NDZBNDQ3NjdE NDUxOEQ2RTlGRDFGQkQ4RDBCRTkyM0YubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnV+QwDQQCAAIwBwMFACQA2UAwDQYJKoZIhvcNAQELBQADggEBAAmlvLBoe2yC 2iAmFybGA2Kxsu8BGmjagr0wR0AMZDXVPTanHGIJI9FpH1rRri9fCDyx+T2BrYHb iwEyu1om4VpRVTDHM2scd1dpsHFQHmBXYs7Igu2uFFd4VEbbe6NroauJgOePBsf5 4EAepbEqblt4eGRd+bbl7M7Mds1f4+ajQ6sX+HgMX2Tvlk6wiGnlyVEea6g1YsQX YRTgzz6VGD5S+S6UMCs+d+rpzpt5mc4dQOgu5kVDfFuPRsB3DMUIm6qGHfX9m5lq BgKabhnvy2NtFgEJOTExzOBH9IoJQ0tYkCl37o7bbYpLIBibAJc4T62C1LtIZZQb Q1NR1z0ObpM= -----END CERTIFICATE-----Generated at Sun Jun 15 06:39:59 2025 by rpki-client