$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer File: C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.cer (raw, json) Hash identifier: gxWePDMK+8oJvjVLMUqCKrl1uItUilUa/fy0jTOU+xo= Subject key identifier: C4:FC:DC:42:4C:5B:4B:2A:56:3F:0D:07:25:73:A5:49:2A:CF:8E:36 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5376C0ECC5339B2FF2ADE2239DBEF255063C224D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.mft caRepository: rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 15 Apr 2025 21:28:19 +0000 Certificate not after: Tue 14 Apr 2026 21:33:19 +0000 Subordinate resources: IP: 157.66.38.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 17:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:76:c0:ec:c5:33:9b:2f:f2:ad:e2:23:9d:be:f2:55:06:3c:22:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 15 21:28:19 2025 GMT Not After : Apr 14 21:33:19 2026 GMT Subject: CN=C4FCDC424C5B4B2A563F0D072573A5492ACF8E36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2a:41:0c:b2:f0:8c:ee:4f:8d:c2:09:0d:76: 5f:9b:57:2e:f7:87:d1:99:ab:fb:08:ec:f0:17:19: 9c:42:f5:c6:e4:3c:cb:74:a1:ad:e7:bb:59:d8:4c: fa:d5:24:5f:bf:1b:5b:54:5a:8a:00:bf:f3:ca:1f: 51:6f:6f:d4:51:90:5b:b0:ae:d9:e4:9b:58:0f:bf: f0:35:de:b4:8a:e0:53:a3:88:ff:dc:ed:4c:80:f5: a3:36:69:f2:52:a2:7f:e9:e2:db:62:cf:00:7e:bf: 17:6d:1b:7d:fd:05:38:40:b1:1d:91:45:cb:3b:93: 9a:5b:68:ca:04:aa:11:9c:5f:5b:f7:df:7f:c3:fe: 67:a4:3e:d4:66:44:93:c7:8f:99:6a:1e:9a:22:2a: e0:89:b1:20:e3:02:0b:3a:cf:32:da:bf:a3:7e:d1: a8:39:9a:af:c5:d7:6a:a5:bc:ea:d8:dd:46:8e:11: 93:8b:74:8c:3f:ca:4c:99:15:a5:21:3a:0c:a0:e5: 49:35:1b:f9:cc:fb:69:7f:a5:43:00:55:61:7d:8a: 2a:fb:e1:74:8e:c1:fb:1d:95:a8:8f:d7:5f:3c:51: 33:ae:a7:1f:ed:9d:a8:39:89:78:a6:2a:03:99:0a: 64:ac:4b:bb:15:25:e5:06:c7:b0:b5:5c:80:a3:5e: 93:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C4:FC:DC:42:4C:5B:4B:2A:56:3F:0D:07:25:73:A5:49:2A:CF:8E:36 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f1b267a4-5030-4a4f-bb86-71fd230f53d1/0/C4FCDC424C5B4B2A563F0D072573A5492ACF8E36.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.38.0/23 Signature Algorithm: sha256WithRSAEncryption 47:a2:07:39:0b:59:ec:14:e0:5b:20:d8:7c:58:32:f7:e5:08: 47:d5:5a:ba:88:19:74:a4:3d:5d:2d:2c:c7:a2:c5:ed:f4:0a: 30:d5:14:e2:87:31:2e:78:63:bd:ed:17:de:50:6a:e8:90:31: a1:a7:09:0c:61:cf:d8:aa:c7:45:b1:a3:58:ec:2d:06:36:98: a9:6e:da:41:41:b8:ab:98:3d:bc:55:22:69:7c:ff:5e:37:f8: 26:3c:be:41:90:a2:f5:89:21:08:ff:18:c2:3f:45:ca:d8:2d: 79:99:69:9c:80:07:bb:58:ed:b7:04:bb:a7:51:08:a6:0d:00: fe:4e:93:23:58:50:f5:3f:7e:a5:ea:b8:f6:84:1c:6b:05:ee: af:59:13:0f:e7:47:4d:ab:8f:61:00:e9:3a:cc:57:d4:0c:e6: 44:7d:c2:28:69:7f:10:2a:4c:de:1a:60:56:69:74:3f:3f:3a: 29:df:01:8a:8d:11:15:bd:af:d7:cc:2c:58:4a:af:aa:26:48: 90:d5:6f:3b:3a:b1:1d:60:cc:c9:d9:fd:50:71:09:f7:dc:f2: a1:bb:df:80:73:64:28:8e:0f:4e:04:8e:88:93:33:6d:48:e6: 8f:ce:64:2d:ec:cc:f1:7e:95:d8:3e:ae:8d:50:86:b6:24:00: f2:3f:a0:f3 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUU3bA7MUzmy/yreIjnb7yVQY8Ik0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDQxNTIxMjgxOVoX DTI2MDQxNDIxMzMxOVowMzExMC8GA1UEAxMoQzRGQ0RDNDI0QzVCNEIyQTU2M0Yw RDA3MjU3M0E1NDkyQUNGOEUzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOUqQQyy8IzuT43CCQ12X5tXLveH0Zmr+wjs8BcZnEL1xuQ8y3Shree7WdhM +tUkX78bW1RaigC/88ofUW9v1FGQW7Cu2eSbWA+/8DXetIrgU6OI/9ztTID1ozZp 8lKif+ni22LPAH6/F20bff0FOECxHZFFyzuTmltoygSqEZxfW/fff8P+Z6Q+1GZE k8ePmWoemiIq4ImxIOMCCzrPMtq/o37RqDmar8XXaqW86tjdRo4Rk4t0jD/KTJkV pSE6DKDlSTUb+cz7aX+lQwBVYX2KKvvhdI7B+x2VqI/XXzxRM66nH+2dqDmJeKYq A5kKZKxLuxUl5QbHsLVcgKNekxkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMT83EJMW0sqVj8NByVzpUkqz442MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMWIyNjdhNC01MDMwLTRhNGYtYmI4Ni03MWZkMjMwZjUzZDEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYjI2N2E0 LTUwMzAtNGE0Zi1iYjg2LTcxZmQyMzBmNTNkMS8wL0M0RkNEQzQyNEM1QjRCMkE1 NjNGMEQwNzI1NzNBNTQ5MkFDRjhFMzYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQiYwDQYJKoZIhvcNAQELBQADggEBAEeiBzkLWewU4Fsg2HxYMvflCEfVWrqI GXSkPV0tLMeixe30CjDVFOKHMS54Y73tF95QauiQMaGnCQxhz9iqx0Wxo1jsLQY2 mKlu2kFBuKuYPbxVIml8/143+CY8vkGQovWJIQj/GMI/RcrYLXmZaZyAB7tY7bcE u6dRCKYNAP5OkyNYUPU/fqXquPaEHGsF7q9ZEw/nR02rj2EA6TrMV9QM5kR9wihp fxAqTN4aYFZpdD8/OinfAYqNERW9r9fMLFhKr6omSJDVbzs6sR1gzMnZ/VBxCffc 8qG734BzZCiOD04EjoiTM21I5o/OZC3szPF+ldg+ro1QhrYkAPI/oPM= -----END CERTIFICATE-----Generated at Sun Apr 27 14:50:34 2025 by rpki-client on console.sobornost.net