This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer File: 007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer (raw, json) Hash identifier: kn3aAH8pIm55rkgckno73JUBK7JtVS8CBINPAoXUPgg= Subject key identifier: 00:7C:91:B0:49:F7:35:F7:1F:2B:E8:CF:92:AE:AA:53:8D:6B:1F:0B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 29AEC0E45D1C98CE44EABCA93CBD07F44AF1FAC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.mft caRepository: rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 09 Sep 2025 10:51:59 +0000 Certificate not after: Tue 08 Sep 2026 10:56:59 +0000 Subordinate resources: IP: 103.58.104.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ae:c0:e4:5d:1c:98:ce:44:ea:bc:a9:3c:bd:07:f4:4a:f1:fa:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 9 10:51:59 2025 GMT Not After : Sep 8 10:56:59 2026 GMT Subject: CN=007C91B049F735F71F2BE8CF92AEAA538D6B1F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b8:86:6b:a2:42:39:83:c2:bc:30:20:8e:ab: 65:67:fb:51:bb:1a:cd:a3:05:19:e4:30:7c:fc:6c: 34:5b:e2:95:39:f5:1e:4e:30:6c:d7:e0:fc:0a:97: 46:3a:50:e2:4e:e0:3f:5c:ca:be:a2:91:fa:47:e9: ad:60:e8:98:fb:94:57:04:86:0e:4f:71:9b:4c:fd: 77:a2:30:1d:56:4b:3e:03:98:e1:86:ab:f7:4a:2b: 32:45:4f:77:b4:70:8a:a4:79:2d:67:5c:91:e6:da: 22:87:03:73:e1:97:f4:96:7f:b7:3e:10:7a:e8:9d: 72:b4:57:30:95:53:3e:d0:46:87:98:cf:15:11:af: da:78:c2:dc:5a:8d:17:15:8f:dd:8f:50:6c:fe:6a: 98:ec:b5:75:fa:d2:d7:74:a1:e4:0b:02:ac:10:94: 0d:7d:9a:f1:25:9d:bb:40:66:ab:ff:7c:70:89:2b: f4:5e:32:d6:9f:f0:1a:72:15:6b:4f:21:e4:cf:fb: b2:5a:4e:f6:99:7a:eb:9e:7c:76:40:85:14:a4:08: db:cb:cd:91:89:8b:e6:c7:2d:fb:f5:b8:1b:56:44: ac:dd:b5:09:3a:e2:1e:39:60:3e:ba:4d:39:9a:7e: e7:d3:6f:ec:75:d1:a2:72:f9:be:ac:6f:4a:12:4e: 1c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 00:7C:91:B0:49:F7:35:F7:1F:2B:E8:CF:92:AE:AA:53:8D:6B:1F:0B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.104.0/22 Signature Algorithm: sha256WithRSAEncryption 66:5f:6b:1f:0d:93:db:9b:98:99:01:88:6b:d2:bf:38:a3:a5: f8:fb:76:95:0a:0b:cd:e4:01:4b:cf:60:9c:d1:74:69:d5:fc: b3:17:41:29:48:4b:15:22:2b:17:a4:e3:d0:b7:a4:df:ed:7f: fb:b3:96:b1:e6:23:a4:c1:64:fd:7a:a1:ee:4f:e4:14:1a:a6: 8f:97:57:d0:8f:40:81:77:5b:5a:bd:b9:1e:b5:6e:fa:06:15: 31:bf:bc:b5:4e:de:59:cf:34:a4:d8:66:01:73:3a:d1:6b:02: 2c:36:4d:2c:57:b8:0d:1d:65:ca:52:ad:d6:fa:69:c8:77:de: c6:98:3d:4b:74:aa:65:cc:f6:10:1a:27:f4:31:40:ef:b9:e8: ea:8c:81:90:d0:1d:9e:07:12:83:90:a1:21:e7:6e:18:1f:7b: a2:4b:ad:09:76:98:03:43:0a:6b:79:d5:32:82:be:1c:76:22: 18:c2:d6:d6:b0:d8:05:76:65:a2:23:67:09:1a:7f:ef:70:f1: 17:c5:4c:94:b9:db:9c:e8:ae:e9:a1:10:32:9e:3e:52:32:c0: 5a:5f:32:f3:16:d6:0c:3b:51:a6:ac:8a:95:e1:2a:71:28:e7: 22:55:f5:73:2a:0b:95:bb:94:20:c7:94:ca:25:61:c1:06:ed: df:e2:04:97 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUKa7A5F0cmM5E6rypPL0H9Erx+sUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwOTEwNTE1OVoX DTI2MDkwODEwNTY1OVowMzExMC8GA1UEAxMoMDA3QzkxQjA0OUY3MzVGNzFGMkJF OENGOTJBRUFBNTM4RDZCMUYwQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALu4hmuiQjmDwrwwII6rZWf7UbsazaMFGeQwfPxsNFvilTn1Hk4wbNfg/AqX RjpQ4k7gP1zKvqKR+kfprWDomPuUVwSGDk9xm0z9d6IwHVZLPgOY4Yar90orMkVP d7RwiqR5LWdckebaIocDc+GX9JZ/tz4QeuidcrRXMJVTPtBGh5jPFRGv2njC3FqN FxWP3Y9QbP5qmOy1dfrS13Sh5AsCrBCUDX2a8SWdu0Bmq/98cIkr9F4y1p/wGnIV a08h5M/7slpO9pl66558dkCFFKQI28vNkYmL5sct+/W4G1ZErN21CTriHjlgPrpN OZp+59Nv7HXRonL5vqxvShJOHCcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAB8kbBJ9zX3Hyvoz5KuqlONax8LMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84NzFhZGE5ZS1lMmE5LTQwMGUtOGRmZi05YmU0ODFhYmE1ODMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3MWFkYTll LWUyYTktNDAwZS04ZGZmLTliZTQ4MWFiYTU4My8wLzAwN0M5MUIwNDlGNzM1Rjcx RjJCRThDRjkyQUVBQTUzOEQ2QjFGMEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnOmgwDQYJKoZIhvcNAQELBQADggEBAGZfax8Nk9ubmJkBiGvSvzijpfj7dpUK C83kAUvPYJzRdGnV/LMXQSlISxUiKxek49C3pN/tf/uzlrHmI6TBZP16oe5P5BQa po+XV9CPQIF3W1q9uR61bvoGFTG/vLVO3lnPNKTYZgFzOtFrAiw2TSxXuA0dZcpS rdb6ach33saYPUt0qmXM9hAaJ/QxQO+56OqMgZDQHZ4HEoOQoSHnbhgfe6JLrQl2 mANDCmt51TKCvhx2IhjC1taw2AV2ZaIjZwkaf+9w8RfFTJS525zorumhEDKePlIy wFpfMvMW1gw7UaasipXhKnEo5yJV9XMqC5W7lCDHlMolYcEG7d/iBJc= -----END CERTIFICATE-----Generated at Wed Dec 3 13:17:10 2025 by rpki-client