This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/245A17CADB2BB2FDC5786C27E5BE959636E7F409.cer File: 245A17CADB2BB2FDC5786C27E5BE959636E7F409.cer (raw, json) Hash identifier: C/XC/RUk5q4LTnjt1vS5PJBBDvfz2D/8nOYevjmBrNs= Subject key identifier: 24:5A:17:CA:DB:2B:B2:FD:C5:78:6C:27:E5:BE:95:96:36:E7:F4:09 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 297D8D89CDE55647D4967E3F0343D3298CEC2554 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0/245A17CADB2BB2FDC5786C27E5BE959636E7F409.mft caRepository: rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 08 Nov 2025 05:28:21 +0000 Certificate not after: Sat 07 Nov 2026 05:33:21 +0000 Subordinate resources: IP: 103.51.98.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:7d:8d:89:cd:e5:56:47:d4:96:7e:3f:03:43:d3:29:8c:ec:25:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 8 05:28:21 2025 GMT Not After : Nov 7 05:33:21 2026 GMT Subject: CN=245A17CADB2BB2FDC5786C27E5BE959636E7F409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:20:42:7f:3d:30:f0:11:af:ca:2c:01:28:46: 57:d0:e4:95:0a:a1:ae:6a:37:b5:61:14:7b:d1:6a: d6:3c:55:b4:7d:83:1d:57:2a:d3:0b:c7:1e:10:b3: 83:61:11:85:9b:eb:91:1f:1e:c7:ab:84:05:b0:f1: ce:d4:94:20:b1:62:72:21:52:7f:96:c6:81:b8:52: 33:4e:fd:59:ea:9d:c8:68:e9:b1:d4:7f:a6:c1:1c: f0:02:fd:fc:1f:10:97:bd:61:5e:1f:16:e7:e6:b8: 1b:42:74:12:15:d2:70:b1:b5:31:ca:00:9b:ac:67: 51:ed:f9:e6:f6:05:29:88:18:18:22:53:42:78:2a: 0d:9b:ec:48:5e:e2:b4:cd:8d:07:3a:bf:f8:3a:28: a1:64:5d:6a:42:61:3c:e1:bc:5e:f1:3d:06:24:e5: 51:0f:61:59:40:40:10:5a:c7:39:a1:18:6a:39:bc: 64:6a:b8:96:92:16:f3:89:c5:ee:d0:c6:a5:c8:0a: c6:3e:57:43:c1:94:c4:ff:20:c4:e1:eb:c6:e9:3a: 0e:65:63:83:1b:cd:4f:b5:d1:73:83:30:ec:42:2e: 80:80:21:97:0f:e0:22:0d:9f:04:56:dc:1d:e1:8d: 8a:4b:0f:3e:78:88:6d:3d:3e:3a:0e:26:87:18:b5: 30:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 24:5A:17:CA:DB:2B:B2:FD:C5:78:6C:27:E5:BE:95:96:36:E7:F4:09 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0/245A17CADB2BB2FDC5786C27E5BE959636E7F409.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.51.98.0/23 Signature Algorithm: sha256WithRSAEncryption 89:8d:e1:d3:47:29:47:c5:f2:63:6d:36:9e:33:88:cc:94:0b: a0:04:91:3d:73:93:da:bb:74:52:f0:ca:2b:43:20:1e:4d:04: d5:6d:58:e8:d2:37:f6:28:29:41:e2:e6:3d:d4:df:7c:dd:9d: 1b:47:ae:d1:5c:4b:af:fa:4a:06:9c:0c:93:1f:53:95:39:bf: ef:42:89:5b:cf:63:2f:5d:bb:7f:ce:4f:04:47:64:77:1a:38: 3c:f1:87:81:49:75:09:06:ab:b3:ec:22:bd:a0:92:42:e5:87: 6d:42:f4:0f:56:7a:e7:71:a0:01:fe:43:f5:c1:b4:53:da:52: 93:8b:de:32:2d:97:20:a8:71:86:73:0e:43:45:e8:81:26:30: 88:6f:24:91:ba:ac:d3:4c:b3:d3:b4:e9:23:a6:89:6c:ae:bf: 67:bf:5f:84:aa:70:98:7f:7c:1e:2b:d1:04:4e:b2:50:6d:e4: 3b:81:d6:b9:65:ab:1d:e8:6c:5e:83:8b:01:12:ca:3b:92:da: aa:a3:fc:2e:a6:ee:f0:90:f6:d9:9f:50:a0:3f:cd:c6:83:5b: a7:11:f6:40:d3:d9:85:09:8d:2f:05:71:e8:16:92:b8:ae:c8: 5d:cf:4b:dc:f8:01:14:9b:aa:87:29:62:9d:c6:1f:da:41:29: b3:1d:d9:8f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUKX2Nic3lVkfUln4/A0PTKYzsJVQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwODA1MjgyMVoX DTI2MTEwNzA1MzMyMVowMzExMC8GA1UEAxMoMjQ1QTE3Q0FEQjJCQjJGREM1Nzg2 QzI3RTVCRTk1OTYzNkU3RjQwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYgQn89MPARr8osAShGV9DklQqhrmo3tWEUe9Fq1jxVtH2DHVcq0wvHHhCz g2ERhZvrkR8ex6uEBbDxztSUILFiciFSf5bGgbhSM079WeqdyGjpsdR/psEc8AL9 /B8Ql71hXh8W5+a4G0J0EhXScLG1McoAm6xnUe355vYFKYgYGCJTQngqDZvsSF7i tM2NBzq/+DoooWRdakJhPOG8XvE9BiTlUQ9hWUBAEFrHOaEYajm8ZGq4lpIW84nF 7tDGpcgKxj5XQ8GUxP8gxOHrxuk6DmVjgxvNT7XRc4Mw7EIugIAhlw/gIg2fBFbc HeGNiksPPniIbT0+Og4mhxi1MI8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCRaF8rbK7L9xXhsJ+W+lZY25/QJMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZjEzYTZlZi0zNDM0LTQ0MDEtYjNlMS02NTE1MzA2NmZiM2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmMTNhNmVm LTM0MzQtNDQwMS1iM2UxLTY1MTUzMDY2ZmIzZS8wLzI0NUExN0NBREIyQkIyRkRD NTc4NkMyN0U1QkU5NTk2MzZFN0Y0MDkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnM2IwDQYJKoZIhvcNAQELBQADggEBAImN4dNHKUfF8mNtNp4ziMyUC6AEkT1z k9q7dFLwyitDIB5NBNVtWOjSN/YoKUHi5j3U33zdnRtHrtFcS6/6SgacDJMfU5U5 v+9CiVvPYy9du3/OTwRHZHcaODzxh4FJdQkGq7PsIr2gkkLlh21C9A9WeudxoAH+ Q/XBtFPaUpOL3jItlyCocYZzDkNF6IEmMIhvJJG6rNNMs9O06SOmiWyuv2e/X4Sq cJh/fB4r0QROslBt5DuB1rllqx3obF6DiwESyjuS2qqj/C6m7vCQ9tmfUKA/zcaD W6cR9kDT2YUJjS8FcegWkriuyF3PS9z4ARSbqocpYp3GH9pBKbMd2Y8= -----END CERTIFICATE-----Generated at Wed Dec 3 13:17:46 2025 by rpki-client