This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2566F4DF5C09FFA8E4F4D6999941B9ABA2B7228B.cer File: 2566F4DF5C09FFA8E4F4D6999941B9ABA2B7228B.cer (raw, json) Hash identifier: p/Qg2+lqySjXII5+VIZYhFEOumzKTvqQ2OxeuUAom0Q= Subject key identifier: 25:66:F4:DF:5C:09:FF:A8:E4:F4:D6:99:99:41:B9:AB:A2:B7:22:8B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1F569279DD8F2FD409A8B06E06AA9784BBC85AED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d916411f-78ca-4916-8919-37c1d99efbd8/0/2566F4DF5C09FFA8E4F4D6999941B9ABA2B7228B.mft caRepository: rsync://repo-rpki.idnic.net/repo/d916411f-78ca-4916-8919-37c1d99efbd8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 22 Nov 2025 01:48:10 +0000 Certificate not after: Sat 21 Nov 2026 01:53:10 +0000 Subordinate resources: IP: 103.172.20.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:56:92:79:dd:8f:2f:d4:09:a8:b0:6e:06:aa:97:84:bb:c8:5a:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 22 01:48:10 2025 GMT Not After : Nov 21 01:53:10 2026 GMT Subject: CN=2566F4DF5C09FFA8E4F4D6999941B9ABA2B7228B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:07:8b:fc:83:91:5f:80:c1:f3:d6:3e:98:4a: cc:41:89:08:23:bc:bd:3f:94:cc:93:12:00:14:ad: ec:d7:7b:35:f0:d3:7b:7e:2e:2e:09:32:ec:6e:f9: 9b:83:e5:47:e1:80:73:ac:6f:f5:a2:38:ac:8b:5a: c7:cf:a1:0d:60:7d:84:45:2b:82:9b:d4:48:73:f3: cd:26:2b:7a:7b:b9:eb:db:52:6e:0e:83:c9:4b:8a: 61:7a:7a:aa:85:40:48:2c:09:fb:82:6e:78:47:9b: 40:d0:11:46:cf:52:8b:18:4f:1c:7b:0c:8f:08:0e: c9:20:49:1d:02:e4:4b:ab:fa:cb:f0:38:f2:89:a3: 63:42:bf:c4:8b:a0:bd:b4:af:fc:1d:37:4b:1e:2f: cb:7b:86:0a:07:91:85:dc:29:ad:d2:5e:64:94:25: 34:44:e1:19:e3:d4:e1:ba:84:95:20:91:94:5e:0b: 8e:6d:a7:ee:38:15:8b:ff:10:f8:57:d6:75:ef:1e: dc:32:f9:23:7b:9d:53:40:49:aa:13:d9:ab:06:03: 92:15:3f:79:e1:9c:b6:05:68:9f:ec:be:e9:6f:f9: 5e:d4:91:bf:70:ad:93:94:0f:95:87:8d:1b:e3:98: 08:5b:5e:66:d4:85:59:08:7c:9b:94:c1:1d:d4:2b: 8d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 25:66:F4:DF:5C:09:FF:A8:E4:F4:D6:99:99:41:B9:AB:A2:B7:22:8B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d916411f-78ca-4916-8919-37c1d99efbd8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d916411f-78ca-4916-8919-37c1d99efbd8/0/2566F4DF5C09FFA8E4F4D6999941B9ABA2B7228B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.20.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:5d:51:f1:b8:9e:51:21:e4:01:7c:5e:c6:a2:91:58:e0:5d: a0:b1:0f:ab:d3:06:fb:9d:5a:d0:da:ca:da:e4:98:a4:d6:ca: 24:fc:d0:2e:70:27:3c:ec:ce:60:34:4e:82:49:4c:2c:f2:01: f2:43:be:1c:f9:21:1f:d4:ba:2c:c5:4b:c3:68:b0:61:86:22: d2:29:ce:e1:40:ba:83:f2:f7:26:7a:4d:0b:2b:13:b7:41:a4: 76:07:28:ad:ee:c3:9f:45:12:b3:5d:ca:f7:84:45:35:ef:e2: 4f:00:26:9a:09:80:b4:b0:96:8b:57:ac:06:c7:f6:01:b6:cb: 5e:93:3e:d6:08:4c:da:8d:bd:7c:7f:80:ee:f7:03:eb:8b:01: 86:b6:34:9a:9f:ea:71:a6:62:91:83:1d:a5:73:c7:94:91:b3: 2d:7d:29:a0:df:6b:8c:28:49:58:00:7c:4b:0a:6e:c1:e0:9f: 54:73:0a:1c:42:c7:9b:b5:19:15:d4:e5:6b:79:41:42:19:fd: a1:67:d3:3f:ca:4f:9d:4c:81:21:12:ee:9a:92:9e:96:11:71: f7:84:7d:85:24:c3:c6:52:43:da:e5:53:fa:e5:29:33:69:7a: c9:f2:8f:f8:51:e3:d7:3e:c3:c1:46:1b:65:b0:66:32:43:f3: 3f:f9:49:51 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUH1aSed2PL9QJqLBuBqqXhLvIWu0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyMjAxNDgxMFoX DTI2MTEyMTAxNTMxMFowMzExMC8GA1UEAxMoMjU2NkY0REY1QzA5RkZBOEU0RjRE Njk5OTk0MUI5QUJBMkI3MjI4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0Hi/yDkV+AwfPWPphKzEGJCCO8vT+UzJMSABSt7Nd7NfDTe34uLgky7G75 m4PlR+GAc6xv9aI4rItax8+hDWB9hEUrgpvUSHPzzSYrenu569tSbg6DyUuKYXp6 qoVASCwJ+4JueEebQNARRs9SixhPHHsMjwgOySBJHQLkS6v6y/A48omjY0K/xIug vbSv/B03Sx4vy3uGCgeRhdwprdJeZJQlNEThGePU4bqElSCRlF4Ljm2n7jgVi/8Q +FfWde8e3DL5I3udU0BJqhPZqwYDkhU/eeGctgVon+y+6W/5XtSRv3Ctk5QPlYeN G+OYCFteZtSFWQh8m5TBHdQrjYECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCVm9N9cCf+o5PTWmZlBuauityKLMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kOTE2NDExZi03OGNhLTQ5MTYtODkxOS0zN2MxZDk5ZWZiZDgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MTY0MTFm LTc4Y2EtNDkxNi04OTE5LTM3YzFkOTllZmJkOC8wLzI1NjZGNERGNUMwOUZGQThF NEY0RDY5OTk5NDFCOUFCQTJCNzIyOEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrBQwDQYJKoZIhvcNAQELBQADggEBACtdUfG4nlEh5AF8XsaikVjgXaCxD6vT BvudWtDaytrkmKTWyiT80C5wJzzszmA0ToJJTCzyAfJDvhz5IR/UuizFS8NosGGG ItIpzuFAuoPy9yZ6TQsrE7dBpHYHKK3uw59FErNdyveERTXv4k8AJpoJgLSwlotX rAbH9gG2y16TPtYITNqNvXx/gO73A+uLAYa2NJqf6nGmYpGDHaVzx5SRsy19KaDf a4woSVgAfEsKbsHgn1RzChxCx5u1GRXU5Wt5QUIZ/aFn0z/KT51MgSES7pqSnpYR cfeEfYUkw8ZSQ9rlU/rlKTNpesnyj/hR49c+w8FGG2WwZjJD8z/5SVE= -----END CERTIFICATE-----Generated at Wed Dec 3 13:56:26 2025 by rpki-client