This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer File: 33D26363FA5B5B53C17981915CBADB375AE27253.cer (raw, json) Hash identifier: fgeEzxmv+OaUafwk48VupnjPRq/wP2aC+Z1LgQHWUY0= Subject key identifier: 33:D2:63:63:FA:5B:5B:53:C1:79:81:91:5C:BA:DB:37:5A:E2:72:53 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4256F4B48DAD07F7D2288F499E8C567A09802DBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft caRepository: rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 07 Nov 2025 03:28:25 +0000 Certificate not after: Fri 06 Nov 2026 03:33:25 +0000 Subordinate resources: IP: 2001:df4:5f40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:56:f4:b4:8d:ad:07:f7:d2:28:8f:49:9e:8c:56:7a:09:80:2d:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 03:28:25 2025 GMT Not After : Nov 6 03:33:25 2026 GMT Subject: CN=33D26363FA5B5B53C17981915CBADB375AE27253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:46:88:ad:44:73:0f:38:29:5d:01:ba:48:6f: 60:45:2c:94:ab:15:b2:fb:f6:3c:80:89:b7:7a:c0: 2e:19:8a:c7:05:97:7b:2b:ba:78:f5:8a:a4:94:41: 98:1d:69:95:8e:98:cc:15:b8:1a:23:24:92:08:8a: 6c:f5:81:e5:a3:30:9b:39:5b:1c:c9:f9:01:0d:a0: cc:90:bf:06:3e:f3:44:e1:53:26:4d:fc:19:9e:3e: 33:88:81:7e:79:e6:15:2f:53:f1:61:da:df:6d:6f: 81:25:db:a3:fb:b9:f0:e4:3c:bf:e8:36:ee:dc:1a: e9:b3:38:37:e4:c0:7c:a3:3f:9c:f4:3f:30:96:67: e0:9f:d6:87:e4:24:29:b1:c2:5f:a4:ec:38:c4:55: aa:c0:a6:aa:f4:d6:04:0a:cf:0a:d4:b3:2e:f1:75: 47:13:1e:ae:0c:4f:d3:ec:2a:60:0c:89:04:fb:78: 5c:3b:1d:2e:ac:8a:bb:fd:ac:15:7f:86:04:05:b7: f6:a9:b7:18:11:ac:69:50:a7:63:f7:30:b1:4f:91: 17:2b:f7:4b:2c:ec:38:e3:ee:58:00:ae:e6:48:5b: eb:87:2c:23:7f:19:54:ef:9a:50:e1:86:56:55:64: c3:4b:aa:01:94:5f:07:15:c3:6e:f1:e8:cd:d5:96: 2d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 33:D2:63:63:FA:5B:5B:53:C1:79:81:91:5C:BA:DB:37:5A:E2:72:53 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:5f40::/48 Signature Algorithm: sha256WithRSAEncryption 28:bc:46:a0:7a:da:7a:0d:76:87:39:2c:ce:c4:af:4c:e0:7e: 9b:ee:9a:e6:01:37:ea:50:d4:eb:f9:01:6c:47:9f:e2:8c:02: 58:94:3f:0d:d5:c4:57:94:1d:04:e1:d1:69:55:eb:22:51:cc: ab:40:24:2a:12:bc:fb:f2:be:9a:b8:2b:30:18:a5:6c:21:24: d6:3f:4f:8a:93:e6:0c:60:2d:7a:7f:ec:9c:e6:d6:3f:74:f6: 01:bc:c8:e2:9d:6c:cf:e9:eb:2b:7f:0e:d9:6b:60:f0:7f:9a: c3:59:99:27:8f:85:a4:fd:1b:34:85:07:66:1b:cc:22:04:ce: 93:89:b6:9d:e1:5b:c3:f6:46:0c:01:69:b2:3f:0c:ae:93:cf: 3e:f6:e7:34:5b:bd:f8:92:53:d2:46:38:1b:e3:df:b7:1c:81: 58:7c:50:ed:57:04:0e:e2:90:89:aa:a1:fe:fd:c9:21:bf:3a: 31:96:5b:4d:68:8a:3f:eb:bf:2a:3f:a4:35:8e:e9:b8:15:67: 0b:ea:f3:b1:38:be:aa:22:87:6f:29:87:c9:e7:3f:25:be:c8: ec:0d:e0:f5:34:8a:64:14:7a:71:30:ae:7c:11:eb:ae:68:ad: 65:d5:47:c4:4c:90:f2:cb:a3:f6:26:e3:23:a2:dd:b1:36:da: bc:b2:09:41 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUQlb0tI2tB/fSKI9JnoxWegmALbwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNzAzMjgyNVoX DTI2MTEwNjAzMzMyNVowMzExMC8GA1UEAxMoMzNEMjYzNjNGQTVCNUI1M0MxNzk4 MTkxNUNCQURCMzc1QUUyNzI1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1GiK1Ecw84KV0BukhvYEUslKsVsvv2PICJt3rALhmKxwWXeyu6ePWKpJRB mB1plY6YzBW4GiMkkgiKbPWB5aMwmzlbHMn5AQ2gzJC/Bj7zROFTJk38GZ4+M4iB fnnmFS9T8WHa321vgSXbo/u58OQ8v+g27twa6bM4N+TAfKM/nPQ/MJZn4J/Wh+Qk KbHCX6TsOMRVqsCmqvTWBArPCtSzLvF1RxMergxP0+wqYAyJBPt4XDsdLqyKu/2s FX+GBAW39qm3GBGsaVCnY/cwsU+RFyv3SyzsOOPuWACu5khb64csI38ZVO+aUOGG VlVkw0uqAZRfBxXDbvHozdWWLd8CAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDPSY2P6W1tTwXmBkVy62zda4nJTMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80YzU4ZmI3Yy02N2I4LTRiY2UtOTZkOS1iZTkxMmUzZjczZGQvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRjNThmYjdj LTY3YjgtNGJjZS05NmQ5LWJlOTEyZTNmNzNkZC8xLzMzRDI2MzYzRkE1QjVCNTND MTc5ODE5MTVDQkFEQjM3NUFFMjcyNTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ30X0AwDQYJKoZIhvcNAQELBQADggEBACi8RqB62noNdoc5LM7Er0zgfpvu muYBN+pQ1Ov5AWxHn+KMAliUPw3VxFeUHQTh0WlV6yJRzKtAJCoSvPvyvpq4KzAY pWwhJNY/T4qT5gxgLXp/7Jzm1j909gG8yOKdbM/p6yt/DtlrYPB/msNZmSePhaT9 GzSFB2YbzCIEzpOJtp3hW8P2RgwBabI/DK6Tzz725zRbvfiSU9JGOBvj37ccgVh8 UO1XBA7ikImqof79ySG/OjGWW01oij/rvyo/pDWO6bgVZwvq87E4vqoih28ph8nn PyW+yOwN4PU0imQUenEwrnwR665orWXVR8RMkPLLo/Ym4yOi3bE22ryyCUE= -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:52 2025 by rpki-client