This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2F24A2044806301EB7FA6CE5C8521FE03941B7BA.cer File: 2F24A2044806301EB7FA6CE5C8521FE03941B7BA.cer (raw, json) Hash identifier: Y+CfKDX2r+Kz8RwnsXmtwiFxwdaJiRCYnYqyZrUG7L8= Subject key identifier: 2F:24:A2:04:48:06:30:1E:B7:FA:6C:E5:C8:52:1F:E0:39:41:B7:BA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1B0B8AB89E202FBD10C3F5C30C8E6151F0228104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0/2F24A2044806301EB7FA6CE5C8521FE03941B7BA.mft caRepository: rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 29 Nov 2025 16:54:15 +0000 Certificate not after: Sat 28 Nov 2026 16:59:15 +0000 Subordinate resources: IP: 103.184.57.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:0b:8a:b8:9e:20:2f:bd:10:c3:f5:c3:0c:8e:61:51:f0:22:81:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 29 16:54:15 2025 GMT Not After : Nov 28 16:59:15 2026 GMT Subject: CN=2F24A2044806301EB7FA6CE5C8521FE03941B7BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0d:e7:8a:c0:3e:8b:3c:2e:61:15:87:22:4b: ba:23:80:e0:bb:cd:17:4f:8c:25:53:fa:62:60:0c: 93:4b:63:2c:e2:71:95:51:dd:5a:3e:98:61:f4:2c: 7d:06:2a:bd:56:16:c4:f8:a5:78:03:b3:49:77:09: e3:7a:93:48:c8:3c:77:fd:8a:6c:70:ad:1d:3d:72: 23:50:d2:db:f0:d2:1e:30:1b:9d:68:a9:7d:ea:56: 5d:29:f0:82:96:01:1e:63:b5:52:9c:9c:8b:c9:df: 2c:37:15:cc:cb:81:5b:52:dd:f8:20:a6:28:89:e5: 1f:e1:0e:0a:6e:51:c5:1f:7e:3b:30:f7:ab:06:a6: 3d:97:9b:f7:be:78:0b:cf:17:23:0e:e6:83:af:ce: a1:aa:f3:e2:5a:0c:ec:21:62:f3:91:74:cc:e7:1c: ff:f9:8f:0c:b6:21:b5:c0:71:3a:d5:6c:83:fe:f8: 8d:bf:22:8a:1f:a6:23:2c:57:4d:be:71:30:ac:88: a0:2b:93:01:18:a6:b8:7f:dd:2a:d0:13:1d:eb:90: df:8f:fe:31:cf:63:a6:81:05:10:59:12:5d:72:97: ba:64:11:ea:46:0b:ce:f6:67:9b:4e:2b:7f:f1:39: 15:54:69:96:4b:97:f3:31:29:24:c5:cb:1b:6c:60: f7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2F:24:A2:04:48:06:30:1E:B7:FA:6C:E5:C8:52:1F:E0:39:41:B7:BA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0/2F24A2044806301EB7FA6CE5C8521FE03941B7BA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.57.0/24 Signature Algorithm: sha256WithRSAEncryption 19:df:ab:2b:bb:9d:f5:99:fe:28:f1:4f:1f:2a:9d:a2:07:64: 57:6d:bd:ce:6b:01:6f:a6:04:f3:eb:f3:6b:d0:bd:e8:cb:66: 7e:49:4a:4e:88:2c:ca:4c:76:f9:4a:4f:4a:d2:df:89:0b:20: 33:fc:2d:2b:d8:59:3c:d8:7c:2d:29:fb:d7:1d:5f:b7:2f:fa: 34:23:5d:f1:2c:4f:b3:e4:4c:01:29:53:5a:9b:86:61:66:85: 0d:d9:e6:c3:b0:81:c1:37:a0:3f:e4:a0:04:ad:47:aa:ca:6b: 66:52:31:87:ed:cd:db:8f:f4:2b:3d:ae:88:c4:96:cc:92:fe: 03:a5:21:fa:8f:6a:cd:9a:73:c5:02:00:37:d8:d7:a0:93:3d: 61:a7:35:ce:53:cd:61:62:1c:1c:fa:8b:82:c0:c9:14:9a:27: a2:b2:06:20:21:41:db:04:f5:68:51:fe:f9:0f:3d:29:a0:8f: 28:78:c8:d0:ac:35:3c:ed:58:59:8f:30:1b:5e:2d:40:56:51: c5:4f:c3:98:64:18:3f:06:b1:81:69:cc:c0:67:74:fd:07:e2: 21:de:70:49:5d:52:56:cc:57:34:b8:5d:da:39:20:53:b4:e6: 44:21:5e:d6:22:1c:40:ba:29:e8:a2:50:c1:2b:0d:a7:b1:8e: b0:ae:11:75 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGwuKuJ4gL70Qw/XDDI5hUfAigQQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyOTE2NTQxNVoX DTI2MTEyODE2NTkxNVowMzExMC8GA1UEAxMoMkYyNEEyMDQ0ODA2MzAxRUI3RkE2 Q0U1Qzg1MjFGRTAzOTQxQjdCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYN54rAPos8LmEVhyJLuiOA4LvNF0+MJVP6YmAMk0tjLOJxlVHdWj6YYfQs fQYqvVYWxPileAOzSXcJ43qTSMg8d/2KbHCtHT1yI1DS2/DSHjAbnWipfepWXSnw gpYBHmO1Upyci8nfLDcVzMuBW1Ld+CCmKInlH+EOCm5RxR9+OzD3qwamPZeb9754 C88XIw7mg6/Ooarz4loM7CFi85F0zOcc//mPDLYhtcBxOtVsg/74jb8iih+mIyxX Tb5xMKyIoCuTARimuH/dKtATHeuQ34/+Mc9jpoEFEFkSXXKXumQR6kYLzvZnm04r f/E5FVRplkuX8zEpJMXLG2xg93MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC8kogRIBjAet/ps5chSH+A5Qbe6MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MWEyOTI5Yy02MDg4LTRjYjUtODNjNi1mNGEzNTZiMjBmOWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTI5Mjlj LTYwODgtNGNiNS04M2M2LWY0YTM1NmIyMGY5ZC8wLzJGMjRBMjA0NDgwNjMwMUVC N0ZBNkNFNUM4NTIxRkUwMzk0MUI3QkEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnuDkwDQYJKoZIhvcNAQELBQADggEBABnfqyu7nfWZ/ijxTx8qnaIHZFdtvc5r AW+mBPPr82vQvejLZn5JSk6ILMpMdvlKT0rS34kLIDP8LSvYWTzYfC0p+9cdX7cv +jQjXfEsT7PkTAEpU1qbhmFmhQ3Z5sOwgcE3oD/koAStR6rKa2ZSMYftzduP9Cs9 rojElsyS/gOlIfqPas2ac8UCADfY16CTPWGnNc5TzWFiHBz6i4LAyRSaJ6KyBiAh QdsE9WhR/vkPPSmgjyh4yNCsNTztWFmPMBteLUBWUcVPw5hkGD8GsYFpzMBndP0H 4iHecEldUlbMVzS4Xdo5IFO05kQhXtYiHEC6KeiiUMErDaexjrCuEXU= -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:11 2025 by rpki-client