This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.cer File: F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.cer (raw, json) Hash identifier: knOpiYAHKevEXZ2NIIAR7q0orHe5O2Jrl/LIhrPToc8= Subject key identifier: F8:C9:E7:9A:DD:DE:29:28:BC:5F:A2:7C:3D:62:1C:1D:93:25:21:69 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4E8165FF4BCC3C24285176FFA2CB4B17BF88B62F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.mft caRepository: rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 04 Dec 2025 01:41:51 +0000 Certificate not after: Thu 03 Dec 2026 01:46:51 +0000 Subordinate resources: IP: 157.10.178.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:81:65:ff:4b:cc:3c:24:28:51:76:ff:a2:cb:4b:17:bf:88:b6:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 4 01:41:51 2025 GMT Not After : Dec 3 01:46:51 2026 GMT Subject: CN=F8C9E79ADDDE2928BC5FA27C3D621C1D93252169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:8f:33:39:dc:34:94:21:fc:fd:96:f5:93: 11:a1:b3:7c:30:36:4c:9f:fe:8f:3d:66:56:7d:87: 1a:a1:3c:fd:d8:aa:c0:3d:79:40:99:a0:ec:16:d0: f3:1d:f0:0d:f2:fb:09:1a:51:58:73:b4:a8:a6:7a: 09:b9:2b:b9:e5:71:70:fe:d4:d4:ee:52:c1:8e:d8: 9b:f2:09:09:42:7d:61:a1:e5:48:2a:37:5d:fa:9d: 5e:40:73:98:17:8e:45:4e:d7:7f:6c:43:43:74:27: 86:2c:b0:c9:38:a5:86:9c:54:85:ac:5a:99:61:39: 61:0b:fa:f6:08:e2:57:0c:af:d3:32:bf:1f:c0:b0: 35:43:d4:94:45:58:db:16:0d:f5:c6:4e:32:5e:ae: 04:5e:b4:b2:35:53:47:fb:77:83:e7:9e:35:0a:ad: 3b:b0:96:14:f7:3a:f7:ed:4e:79:a3:a9:42:9d:3d: 3c:24:fa:51:1c:6e:24:7b:17:82:30:77:b8:38:0b: c2:ab:64:7c:c8:b6:91:f4:d3:d1:ad:99:00:75:80: dc:88:6d:67:b0:c1:0f:28:66:8a:8f:ae:0a:01:f3: 33:31:4f:00:65:5b:fa:d5:ad:64:af:4c:b6:a8:8e: ff:b4:a7:7f:d5:7e:06:dd:6d:68:52:0a:92:90:2f: 22:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F8:C9:E7:9A:DD:DE:29:28:BC:5F:A2:7C:3D:62:1C:1D:93:25:21:69 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.178.0/24 Signature Algorithm: sha256WithRSAEncryption 70:31:3d:dd:d0:29:62:b4:61:41:38:1f:d4:8b:36:23:e9:25: 64:f3:43:f9:7e:e9:96:2b:9e:9e:98:0d:54:cd:b1:92:39:f1: 12:29:1b:f5:8f:47:5d:11:e7:2c:2f:2d:34:39:a5:b7:23:c1: 87:95:ec:59:ee:27:a0:b5:ec:c8:05:1c:30:80:e0:fe:fa:68: ef:43:41:4a:92:33:47:5a:f5:cb:ef:75:1d:b1:c9:d3:c5:aa: c9:92:9f:1a:22:2e:37:bb:9f:12:0a:15:17:75:4f:8e:e8:dc: 25:40:a7:ba:38:37:d3:4c:fb:c7:8c:07:f9:db:d9:c2:a4:e6: 00:b4:13:4f:98:2c:16:d3:59:a8:23:05:99:60:c1:89:a8:34: 8b:ab:32:7a:49:c5:67:33:11:1e:e1:47:37:c2:3f:fe:45:6c: f4:ea:d4:a5:2a:70:f8:25:21:a7:ed:18:1f:88:57:3b:55:11: 0e:6b:7e:f2:30:c0:d9:b1:e5:79:9a:20:6c:19:c6:03:87:f5: a0:75:39:28:48:7f:27:ec:25:43:14:5d:cb:bd:48:00:61:51: 3e:e0:11:6d:8f:95:f8:a7:44:28:e5:13:90:0e:80:d0:40:17: 8d:00:68:4f:65:e1:e9:d8:e6:e0:86:3d:f4:7f:9a:9d:f9:f9: 73:2b:9a:0c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUToFl/0vMPCQoUXb/ostLF7+Iti8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIwNDAxNDE1MVoX DTI2MTIwMzAxNDY1MVowMzExMC8GA1UEAxMoRjhDOUU3OUFERERFMjkyOEJDNUZB MjdDM0Q2MjFDMUQ5MzI1MjE2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3OjzM53DSUIfz9lvWTEaGzfDA2TJ/+jz1mVn2HGqE8/diqwD15QJmg7BbQ 8x3wDfL7CRpRWHO0qKZ6CbkrueVxcP7U1O5SwY7Ym/IJCUJ9YaHlSCo3XfqdXkBz mBeORU7Xf2xDQ3QnhiywyTilhpxUhaxamWE5YQv69gjiVwyv0zK/H8CwNUPUlEVY 2xYN9cZOMl6uBF60sjVTR/t3g+eeNQqtO7CWFPc69+1OeaOpQp09PCT6URxuJHsX gjB3uDgLwqtkfMi2kfTT0a2ZAHWA3IhtZ7DBDyhmio+uCgHzMzFPAGVb+tWtZK9M tqiO/7Snf9V+Bt1taFIKkpAvIpUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPjJ55rd3ikovF+ifD1iHB2TJSFpMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84M2M4OTFkNy00ZmNjLTQ3NzAtODJkNC0zNjdiODdiYjU1MWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzYzg5MWQ3 LTRmY2MtNDc3MC04MmQ0LTM2N2I4N2JiNTUxZS8wL0Y4QzlFNzlBRERERTI5MjhC QzVGQTI3QzNENjIxQzFEOTMyNTIxNjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdCrIwDQYJKoZIhvcNAQELBQADggEBAHAxPd3QKWK0YUE4H9SLNiPpJWTzQ/l+ 6ZYrnp6YDVTNsZI58RIpG/WPR10R5ywvLTQ5pbcjwYeV7FnuJ6C17MgFHDCA4P76 aO9DQUqSM0da9cvvdR2xydPFqsmSnxoiLje7nxIKFRd1T47o3CVAp7o4N9NM+8eM B/nb2cKk5gC0E0+YLBbTWagjBZlgwYmoNIurMnpJxWczER7hRzfCP/5FbPTq1KUq cPglIaftGB+IVztVEQ5rfvIwwNmx5XmaIGwZxgOH9aB1OShIfyfsJUMUXcu9SABh UT7gEW2PlfinRCjlE5AOgNBAF40AaE9l4enY5uCGPfR/mp35+XMrmgw= -----END CERTIFICATE-----Generated at Sun Dec 7 10:44:13 2025 by rpki-client