This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer File: C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer (raw, json) Hash identifier: dNC/T/1YTBLMx6LoK2yEaZo9g29zWfBWS/nyTvNVSow= Subject key identifier: C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 42C3D674FFD3DD6BCFBD8BDC3ECD2E3AE5CE39DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.mft caRepository: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 13 Nov 2025 15:22:21 +0000 Certificate not after: Thu 12 Nov 2026 15:27:21 +0000 Subordinate resources: IP: 157.10.88.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:c3:d6:74:ff:d3:dd:6b:cf:bd:8b:dc:3e:cd:2e:3a:e5:ce:39:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Nov 13 15:22:21 2025 GMT Not After : Nov 12 15:27:21 2026 GMT Subject: CN=C1732571810C9D4976CD1A47D5584726CF0CC7BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9f:4a:3c:4b:9b:b6:5d:bd:1f:f2:19:23:40: 4e:b8:62:b1:59:e5:22:62:53:3e:a1:b3:26:f6:f7: 41:0d:a6:9d:0d:ad:3e:5d:1b:f7:c1:8c:ae:3b:3b: 5d:b1:f9:b1:31:38:10:3e:02:56:99:5e:c4:e9:d3: ca:53:4f:8e:89:d8:91:c2:d0:82:fc:ec:f8:a2:c9: af:8e:b4:7b:9e:e2:7b:f2:b7:90:d9:0e:de:1e:63: b8:67:82:3a:46:74:92:a1:5c:a3:85:62:6d:36:b8: 84:3e:a1:51:7a:e8:2b:1e:3a:e1:cd:d7:30:e6:87: 4c:c2:04:7b:61:a9:11:b9:a5:ef:2d:b2:d4:47:a5: 6d:d3:b9:e1:f0:c2:1a:82:b2:30:65:90:c1:f2:2c: 47:39:05:88:9f:7d:67:ca:08:0d:44:97:01:45:a5: 32:b6:4f:78:17:68:48:1f:62:75:8e:37:f6:19:70: 51:96:54:2f:18:13:89:29:03:0c:d4:7f:81:1c:e7: 5a:32:4c:ea:ea:67:8b:af:60:24:68:89:9f:13:ac: 42:0f:73:77:20:46:c9:8c:3f:1a:c8:fb:be:26:80: 24:79:7f:95:47:13:2a:ff:77:57:bc:73:c0:24:15: bc:9c:eb:ef:58:aa:f5:48:70:1d:1e:ea:6a:9f:f3: 66:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:6c:7b:fc:0f:60:6e:6a:79:b1:90:65:96:96:d9:18:83:a9: c2:b8:03:bb:36:70:6d:ec:3c:b8:db:49:f3:28:ca:05:ae:27: 6f:76:d8:34:26:ce:6f:53:bc:f6:86:b8:be:cb:7e:ed:bb:32: da:c0:c1:3d:61:91:ec:62:bb:b9:73:9d:33:36:7d:43:a8:cb: 9f:63:fd:66:b8:08:df:3f:5f:04:0c:cc:04:81:ff:93:99:1c: 0f:25:91:44:3f:6f:b5:fb:9f:b6:6a:91:bd:49:f5:44:24:73: 2e:ea:7d:83:4a:af:83:7c:2f:d8:1f:3b:e6:e9:db:9e:10:91: 9f:7e:3f:ef:a7:fb:e1:c0:78:41:11:cd:d5:fd:43:cb:36:cf: 22:39:45:0d:21:4c:17:1b:80:d2:79:1a:be:25:7e:b3:62:3d: 65:47:c1:30:5c:a9:1b:4e:23:44:aa:49:11:c4:eb:19:38:ba: 2a:21:63:9b:dc:2b:b5:7d:37:5f:53:f5:bc:7c:fc:23:67:20: e9:36:47:77:dd:2a:89:3d:24:0a:a7:f0:87:bb:44:76:82:4a: 96:fe:67:0b:ec:9e:6e:f9:30:48:16:d6:db:bf:20:20:f6:07: 76:66:06:d3:d3:59:81:f0:d5:09:9e:cb:99:dc:13:6a:c5:38: e1:e7:5a:ea -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQsPWdP/T3WvPvYvcPs0uOuXOOdowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTExMzE1MjIyMVoX DTI2MTExMjE1MjcyMVowMzExMC8GA1UEAxMoQzE3MzI1NzE4MTBDOUQ0OTc2Q0Qx QTQ3RDU1ODQ3MjZDRjBDQzdCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKfSjxLm7ZdvR/yGSNATrhisVnlImJTPqGzJvb3QQ2mnQ2tPl0b98GMrjs7 XbH5sTE4ED4CVplexOnTylNPjonYkcLQgvzs+KLJr460e57ie/K3kNkO3h5juGeC OkZ0kqFco4VibTa4hD6hUXroKx464c3XMOaHTMIEe2GpEbml7y2y1EelbdO54fDC GoKyMGWQwfIsRzkFiJ99Z8oIDUSXAUWlMrZPeBdoSB9idY439hlwUZZULxgTiSkD DNR/gRznWjJM6upni69gJGiJnxOsQg9zdyBGyYw/Gsj7viaAJHl/lUcTKv93V7xz wCQVvJzr71iq9UhwHR7qap/zZrkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMFzJXGBDJ1Jds0aR9VYRybPDMe9MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNDdjZDVhMi1hNzQyLTQ1MGMtYjE5MC01MDBlNzU0NTIwZGUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEy LWE3NDItNDUwYy1iMTkwLTUwMGU3NTQ1MjBkZS8wL0MxNzMyNTcxODEwQzlENDk3 NkNEMUE0N0Q1NTg0NzI2Q0YwQ0M3QkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdClgwDQYJKoZIhvcNAQELBQADggEBAG9se/wPYG5qebGQZZaW2RiDqcK4A7s2 cG3sPLjbSfMoygWuJ2922DQmzm9TvPaGuL7Lfu27MtrAwT1hkexiu7lznTM2fUOo y59j/Wa4CN8/XwQMzASB/5OZHA8lkUQ/b7X7n7Zqkb1J9UQkcy7qfYNKr4N8L9gf O+bp254QkZ9+P++n++HAeEERzdX9Q8s2zyI5RQ0hTBcbgNJ5Gr4lfrNiPWVHwTBc qRtOI0SqSRHE6xk4uiohY5vcK7V9N19T9bx8/CNnIOk2R3fdKok9JAqn8Ie7RHaC Spb+Zwvsnm75MEgW1tu/ICD2B3ZmBtPTWYHw1Qmey5ncE2rFOOHnWuo= -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:54 2025 by rpki-client