This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer File: 5EC928AFD73AFC70F10C468E21482031920DF521.cer (raw, json) Hash identifier: rhpRpQw/4+ktVo/nC7v3LZMIJpLnmmhvnf63K7OBQws= Subject key identifier: 5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 087206DCFAC6086A7A73174FECA5334017169020 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.mft caRepository: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 21 Nov 2025 14:13:12 +0000 Certificate not after: Fri 20 Nov 2026 14:18:12 +0000 Subordinate resources: IP: 157.10.90.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:72:06:dc:fa:c6:08:6a:7a:73:17:4f:ec:a5:33:40:17:16:90:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Nov 21 14:13:12 2025 GMT Not After : Nov 20 14:18:12 2026 GMT Subject: CN=5EC928AFD73AFC70F10C468E21482031920DF521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3e:da:ca:4a:1f:39:e4:1e:85:e8:60:22:49: 07:05:6d:1c:87:14:3c:dc:b6:e3:59:d0:6c:0a:66: 40:f5:e4:3e:45:30:ab:18:55:e8:80:9f:c6:e4:8c: 79:50:6d:2b:1c:6a:3e:3d:cb:4b:49:ed:99:60:18: 9e:79:6e:f8:5c:90:dd:13:c6:fc:49:e2:16:2a:62: 9b:66:dd:30:6b:f8:9d:21:c0:23:92:98:cd:8a:8c: c6:bf:32:64:c5:ab:d8:da:3d:46:c4:4c:6e:e1:13: 48:53:00:e4:6c:46:81:52:ed:34:80:0f:ad:cc:1c: c8:46:8b:56:2e:8f:1e:0c:9d:e3:dc:ce:b8:4d:60: e4:f4:10:5f:4b:0f:6b:c8:57:0b:a4:a4:04:5b:bd: 52:cd:44:d7:6a:70:86:30:28:d6:95:dc:fd:55:7a: 88:ad:d4:e2:fd:24:c1:d0:ff:87:93:e1:f0:27:90: 65:76:b2:22:15:75:09:1d:ec:01:c2:e2:ce:29:f2: fc:b9:6e:90:2a:5f:01:ee:cd:65:9a:e0:f2:d9:be: 4a:56:7b:3f:67:40:d4:30:a0:a9:c8:98:d6:42:da: eb:c0:af:56:4b:ad:32:d8:0b:41:f8:13:81:bf:ec: dc:54:b9:f2:d4:cf:a3:0f:3b:65:a3:e1:44:b5:00: 0d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.90.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:ae:b6:09:6a:76:74:3a:1b:b8:9d:7d:7f:11:31:47:fa:cc: b9:52:72:7b:50:e7:01:10:3e:e7:ad:96:a6:52:27:a8:46:e9: 98:bf:35:72:97:8a:66:11:d9:f9:e0:d2:63:a3:c4:ad:82:09: c8:67:3b:0e:dd:1f:dc:f8:fe:d5:07:e6:95:f4:b0:91:4f:85: e1:cf:e0:43:4d:a2:7c:21:90:f8:2e:8b:77:ff:c6:33:00:5f: 0c:18:6e:4a:9a:90:ee:11:90:51:01:d6:59:f6:9c:57:31:f7: 46:9d:4a:3f:17:fb:5b:b7:bb:e3:fd:f9:ee:d4:80:93:f3:0b: 77:80:e4:e0:d5:e1:35:be:ed:22:21:24:d4:e4:8e:b5:da:6c: ea:12:01:0b:34:b5:75:8d:a6:f7:00:04:30:4e:a7:fc:3b:e4: 70:3e:8a:44:bc:b2:3e:d0:28:99:b8:b4:61:6a:86:e6:95:eb: 1b:c5:e0:ce:bc:cb:73:56:9f:36:6e:a8:d0:5a:57:a3:be:88: 96:2a:99:6e:e2:2b:01:58:75:c4:74:d6:85:43:ae:81:37:21: 09:46:c6:59:36:53:e9:fe:c7:1a:b2:d6:be:9b:f9:ac:2d:45: 10:f7:d6:19:85:96:c0:95:d4:d3:e3:9b:35:0f:fb:8a:0c:17: bb:f4:2e:78 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCHIG3PrGCGp6cxdP7KUzQBcWkCAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTEyMTE0MTMxMloX DTI2MTEyMDE0MTgxMlowMzExMC8GA1UEAxMoNUVDOTI4QUZENzNBRkM3MEYxMEM0 NjhFMjE0ODIwMzE5MjBERjUyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALw+2spKHznkHoXoYCJJBwVtHIcUPNy241nQbApmQPXkPkUwqxhV6ICfxuSM eVBtKxxqPj3LS0ntmWAYnnlu+FyQ3RPG/EniFipim2bdMGv4nSHAI5KYzYqMxr8y ZMWr2No9RsRMbuETSFMA5GxGgVLtNIAPrcwcyEaLVi6PHgyd49zOuE1g5PQQX0sP a8hXC6SkBFu9Us1E12pwhjAo1pXc/VV6iK3U4v0kwdD/h5Ph8CeQZXayIhV1CR3s AcLiziny/LlukCpfAe7NZZrg8tm+SlZ7P2dA1DCgqciY1kLa68CvVkutMtgLQfgT gb/s3FS58tTPow87ZaPhRLUADccCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFF7JKK/XOvxw8QxGjiFIIDGSDfUhMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lY2YzZjhjOC0wNDA2LTRiMzgtYTdhOC1kY2IxNWU0MWYyYjcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjZjNmOGM4 LTA0MDYtNGIzOC1hN2E4LWRjYjE1ZTQxZjJiNy8wLzVFQzkyOEFGRDczQUZDNzBG MTBDNDY4RTIxNDgyMDMxOTIwREY1MjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdClowDQYJKoZIhvcNAQELBQADggEBAIqutglqdnQ6G7idfX8RMUf6zLlScntQ 5wEQPuetlqZSJ6hG6Zi/NXKXimYR2fng0mOjxK2CCchnOw7dH9z4/tUH5pX0sJFP heHP4ENNonwhkPgui3f/xjMAXwwYbkqakO4RkFEB1ln2nFcx90adSj8X+1u3u+P9 +e7UgJPzC3eA5ODV4TW+7SIhJNTkjrXabOoSAQs0tXWNpvcABDBOp/w75HA+ikS8 sj7QKJm4tGFqhuaV6xvF4M68y3NWnzZuqNBaV6O+iJYqmW7iKwFYdcR01oVDroE3 IQlGxlk2U+n+xxqy1r6b+awtRRD31hmFlsCV1NPjmzUP+4oMF7v0Lng= -----END CERTIFICATE-----Generated at Wed Dec 3 16:07:03 2025 by rpki-client