This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer File: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer (raw, json) Hash identifier: gxdj+sm7ctDp3IV2X+KplgYUy8zkMB/ePhKuZ4r0fgU= Subject key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 11133AC4B377A8972F87EFE690FBB46CD45EBAC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft caRepository: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 06 Jan 2026 17:03:18 +0000 Certificate not after: Tue 05 Jan 2027 17:08:18 +0000 Subordinate resources: IP: 103.177.218.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:13:3a:c4:b3:77:a8:97:2f:87:ef:e6:90:fb:b4:6c:d4:5e:ba:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 6 17:03:18 2026 GMT Not After : Jan 5 17:08:18 2027 GMT Subject: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4c:39:c0:a1:a8:e0:77:23:1f:3f:b5:f4:e4: 50:10:01:52:08:d1:19:4f:02:9f:63:30:21:21:f0: 50:4f:34:8b:a9:2c:95:aa:d6:d1:f1:33:b6:1d:20: 5f:7d:97:df:90:56:53:74:10:b6:6e:83:d9:d5:66: 19:d3:b6:fa:2f:3b:ba:c2:1d:aa:bb:42:75:c3:13: 77:83:34:12:fa:3e:7f:a9:39:31:37:01:46:37:aa: ca:18:9a:c7:5b:14:e4:b7:93:23:be:a7:f5:ff:9b: d9:6d:79:b7:02:ab:4a:15:2f:64:7f:5e:9a:a4:f4: a5:d8:4c:39:f0:71:33:f4:39:91:fa:53:f0:84:b3: 3b:6a:6c:40:58:2c:19:7d:70:05:17:14:56:19:54: 36:31:67:d9:3b:81:5e:39:20:bc:83:37:f7:28:ce: c3:e6:7e:d6:92:8b:48:ec:71:85:3b:cd:6c:4d:b3: 33:46:52:c1:ee:fd:1f:71:0e:88:9a:2f:9c:ab:b4: 4b:8a:58:3e:78:29:ed:3b:17:d3:31:c3:17:70:d9: 81:d4:7a:3d:d1:25:01:dc:07:f5:3e:bf:4d:8f:fa: 43:86:b7:c4:0e:a8:5e:20:14:94:61:ef:b2:35:22: 88:a5:a2:9f:02:71:18:25:dd:aa:38:e3:d1:c2:da: f5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.218.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:a1:fa:af:c6:04:4e:76:83:b3:2a:79:1d:45:dd:d1:26:7c: 82:85:dc:45:6d:f8:c9:fd:8a:dc:68:da:e9:52:92:24:1d:52: da:34:5d:bc:f3:25:28:37:6d:a7:4b:cd:ea:f0:fe:df:ec:a5: 2c:ce:2e:a1:0e:b6:d3:11:8b:c2:7f:78:6f:c7:c1:66:e4:95: 22:a6:74:f0:6a:19:9f:47:5e:44:ee:9c:d3:92:99:95:d4:63: fa:53:dd:8d:b5:5e:df:f5:85:39:d4:f5:d5:14:ef:95:27:d4: 88:db:6f:72:f5:e4:4a:b7:ab:58:2d:0a:48:41:05:2b:1d:37: e8:c3:da:09:ac:63:c8:89:8a:31:ec:6d:1c:a2:5e:3e:d8:ad: 5e:4e:21:99:46:4f:79:1d:c1:72:35:ae:40:03:ec:89:d1:39: ec:22:48:25:3d:92:43:97:41:fd:fa:c7:27:76:01:0e:48:95: 82:f8:70:dc:85:b0:d8:39:90:ac:03:9f:b4:8c:d6:f6:51:3f: 57:ee:a8:81:3b:62:e6:98:b7:40:67:a2:09:03:85:28:0f:24: c0:ff:be:ac:e4:40:66:49:36:47:22:67:68:97:0b:fa:43:6c: f9:bd:40:a4:b2:24:48:1d:dd:99:0c:83:af:49:45:b0:18:0a: 4b:58:82:01 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUERM6xLN3qJcvh+/mkPu0bNReusUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEwNjE3MDMxOFoX DTI3MDEwNTE3MDgxOFowMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1 RjIyNDBGRTA2NzczRjNFNkYxNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhMOcChqOB3Ix8/tfTkUBABUgjRGU8Cn2MwISHwUE80i6kslarW0fEzth0g X32X35BWU3QQtm6D2dVmGdO2+i87usIdqrtCdcMTd4M0Evo+f6k5MTcBRjeqyhia x1sU5LeTI76n9f+b2W15twKrShUvZH9emqT0pdhMOfBxM/Q5kfpT8ISzO2psQFgs GX1wBRcUVhlUNjFn2TuBXjkgvIM39yjOw+Z+1pKLSOxxhTvNbE2zM0ZSwe79H3EO iJovnKu0S4pYPngp7TsX0zHDF3DZgdR6PdElAdwH9T6/TY/6Q4a3xA6oXiAUlGHv sjUiiKWinwJxGCXdqjjj0cLa9W8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCqvqBQU7csQMiNfIkD+Bnc/Pm8WMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhYjhlNjBm LWY5OTMtNDUzNC05ZGEwLWYyODVhODYwM2Y2OS8wLzJBQUZBODE0MTRFRENCMTAz MjIzNUYyMjQwRkUwNjc3M0YzRTZGMTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsdowDQYJKoZIhvcNAQELBQADggEBAAqh+q/GBE52g7MqeR1F3dEmfIKF3EVt +Mn9itxo2ulSkiQdUto0XbzzJSg3badLzerw/t/spSzOLqEOttMRi8J/eG/HwWbk lSKmdPBqGZ9HXkTunNOSmZXUY/pT3Y21Xt/1hTnU9dUU75Un1Ijbb3L15Eq3q1gt CkhBBSsdN+jD2gmsY8iJijHsbRyiXj7YrV5OIZlGT3kdwXI1rkAD7InROewiSCU9 kkOXQf36xyd2AQ5IlYL4cNyFsNg5kKwDn7SM1vZRP1fuqIE7YuaYt0BnogkDhSgP JMD/vqzkQGZJNkciZ2iXC/pDbPm9QKSyJEgd3ZkMg69JRbAYCktYggE= -----END CERTIFICATE-----Generated at Wed Jan 21 14:44:14 2026 by rpki-client