$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.cer File: 6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.cer (raw, json) Hash identifier: 7I72eUp5TZrAxgr5EfTvkw3mq762SWbKcjg7qayQWG4= Subject key identifier: 6F:29:B5:AE:A0:FD:7E:C5:68:AA:45:A1:72:1D:8E:5D:EA:92:6C:0F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 56A4B07170699EFAD734F1D871D8E7AA2F6E1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.mft caRepository: rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 26 Apr 2025 01:03:34 +0000 Certificate not after: Sat 25 Apr 2026 01:08:34 +0000 Subordinate resources: IP: 2001:df3:cf40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 09:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:a4:b0:71:70:69:9e:fa:d7:34:f1:d8:71:d8:e7:aa:2f:6e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 26 01:03:34 2025 GMT Not After : Apr 25 01:08:34 2026 GMT Subject: CN=6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7d:2c:51:23:0a:72:a1:09:95:f4:c4:f7:b7: 07:9d:d2:ef:7a:65:bb:63:9c:d8:7f:93:9b:fc:7a: 8a:cc:b9:6a:3d:d6:10:cd:b9:de:6d:f7:b3:6d:a5: 43:dc:94:76:74:69:48:82:9a:44:82:cb:e6:ec:bb: 85:7e:6d:7e:b3:4f:99:50:85:5b:27:52:45:53:e4: 47:fe:6d:3e:dd:1a:a5:a3:d4:b6:25:44:37:5c:39: ad:67:94:02:68:d6:82:5f:14:98:ce:c1:8b:8c:df: b6:95:e7:6a:9c:49:84:e8:6f:b2:18:d6:a4:f7:5a: 4b:58:7e:df:30:71:e7:9a:79:5e:84:45:42:05:d8: 54:91:c8:62:a7:e7:a4:11:3c:35:ee:78:cc:dc:94: 5e:0a:40:7a:33:5a:bb:d2:39:b3:0b:7b:f1:98:73: b8:fc:a8:4f:60:55:be:93:0f:dc:db:28:2d:4b:0f: 6a:0c:7c:99:bd:50:f9:0b:06:58:86:c8:e8:bb:f5: f3:39:57:f6:da:c2:61:f4:77:ba:0f:0d:18:17:bf: 7e:d1:9a:6e:53:db:d9:18:15:21:74:96:9b:2a:97: 8f:f7:46:09:0c:52:12:1c:4e:d1:d3:26:d1:17:02: e1:58:0c:2b:3f:28:eb:5f:f1:31:2a:4b:df:75:eb: 40:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 6F:29:B5:AE:A0:FD:7E:C5:68:AA:45:A1:72:1D:8E:5D:EA:92:6C:0F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aab4e14d-021d-40dc-923a-c12d1af443b5/1/6F29B5AEA0FD7EC568AA45A1721D8E5DEA926C0F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:cf40::/48 Signature Algorithm: sha256WithRSAEncryption 1b:34:cf:a8:8c:cb:37:25:10:07:0d:db:7f:3c:bd:b9:71:fc: 56:65:22:35:35:c4:14:09:80:22:01:a4:6a:78:1a:90:b5:8b: 48:c6:66:6b:04:e8:f5:e1:f0:5b:cb:f0:34:c1:3a:87:89:d2: 67:07:85:d4:41:ec:3a:c7:e8:d5:3f:09:8d:94:7e:06:c1:3a: ca:d4:87:c7:ae:e0:07:88:7f:d5:85:f1:ad:ee:1d:79:87:ad: af:34:d2:03:e7:18:92:cd:48:8b:ed:b2:f0:a4:9b:49:71:ac: 12:c5:f6:c0:67:e9:60:c5:ea:17:04:b8:4f:88:c7:ec:30:50: 31:2a:fc:4b:a5:66:7f:a2:a5:e5:ad:d1:72:a2:92:1d:85:13: 15:44:cb:37:9c:20:4f:20:70:8d:e7:bb:47:4f:56:8f:89:29: ce:75:3f:34:76:f9:01:00:c9:73:14:ba:9c:df:7c:c2:d2:14: cd:7b:ed:f1:23:3f:2f:73:7c:9f:96:cf:23:6b:72:fb:98:83: 3a:bd:c3:4e:97:a5:ab:f5:b8:e1:be:7e:f4:7e:be:e8:6b:cd: f9:ef:62:cd:f9:e5:a4:5f:cc:29:8c:15:1e:7a:b9:44:bd:a6: 3a:a0:70:41:1a:65:ef:63:78:8b:55:f2:7f:22:e3:cc:dd:98: c0:fd:ac:a4 -----BEGIN CERTIFICATE----- MIIFxzCCBK+gAwIBAgITVqSwcXBpnvrXNPHYcdjnqi9uHjANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTE4NjIxNDAwMDAxMTAvBgNVBAUTKEJBOEY3N0QyMUU1 OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIwHhcNMjUwNDI2MDEwMzM0WhcN MjYwNDI1MDEwODM0WjAzMTEwLwYDVQQDEyg2RjI5QjVBRUEwRkQ3RUM1NjhBQTQ1 QTE3MjFEOEU1REVBOTI2QzBGMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwX0sUSMKcqEJlfTE97cHndLvemW7Y5zYf5Ob/HqKzLlqPdYQzbnebfezbaVD 3JR2dGlIgppEgsvm7LuFfm1+s0+ZUIVbJ1JFU+RH/m0+3Rqlo9S2JUQ3XDmtZ5QC aNaCXxSYzsGLjN+2ledqnEmE6G+yGNak91pLWH7fMHHnmnlehEVCBdhUkchip+ek ETw17njM3JReCkB6M1q70jmzC3vxmHO4/KhPYFW+kw/c2ygtSw9qDHyZvVD5CwZY hsjou/XzOVf22sJh9He6Dw0YF79+0ZpuU9vZGBUhdJabKpeP90YJDFISHE7R0ybR FwLhWAwrPyjrX/ExKkvfdetAgQIDAQABo4ICuzCCArcwDwYDVR0TAQH/BAUwAwEB /zAdBgNVHQ4EFgQUbym1rqD9fsVoqkWhch2OXeqSbA8wHwYDVR0jBBgwFoAUuo93 0h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgEGMGkGA1UdHwRiMGAwXqBc oFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzIv QkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgzMzc2Qi5jcmwwfgYI KwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0 L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvdW85 MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCCASkGCCsGAQUFBwELBIIBGzCC ARcwUwYIKwYBBQUHMAWGR3JzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L2FhYjRlMTRkLTAyMWQtNDBkYy05MjNhLWMxMmQxYWY0NDNiNS8xMIGABggrBgEF BQcwCoZ0cnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWFiNGUxNGQt MDIxZC00MGRjLTkyM2EtYzEyZDFhZjQ0M2I1LzEvNkYyOUI1QUVBMEZEN0VDNTY4 QUE0NUExNzIxRDhFNURFQTkyNkMwRi5tZnQwPQYIKwYBBQUHMA2GMWh0dHBzOi8v cmVwby1ycGtpLmlkbmljLm5ldC9ycmRwL25vdGlmaWNhdGlvbi54bWwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMH ACABDfPPQDANBgkqhkiG9w0BAQsFAAOCAQEAGzTPqIzLNyUQBw3bfzy9uXH8VmUi NTXEFAmAIgGkangakLWLSMZmawTo9eHwW8vwNME6h4nSZweF1EHsOsfo1T8JjZR+ BsE6ytSHx67gB4h/1YXxre4deYetrzTSA+cYks1Ii+2y8KSbSXGsEsX2wGfpYMXq FwS4T4jH7DBQMSr8S6Vmf6Kl5a3RcqKSHYUTFUTLN5wgTyBwjee7R09Wj4kpznU/ NHb5AQDJcxS6nN98wtIUzXvt8SM/L3N8n5bPI2ty+5iDOr3DTpelq/W44b5+9H6+ 6GvN+e9izfnlpF/MKYwVHnq5RL2mOqBwQRpl72N4i1XyfyLjzN2YwP2spA== -----END CERTIFICATE-----Generated at Sat Apr 26 06:13:36 2025 by rpki-client on console.sobornost.net