This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer File: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer (raw, json) Hash identifier: PftUJHoouQOtEO2JI5eRrG8ZvxqQIZ1MXgazj17QuWs= Subject key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07F59EE07000EED06EC6884FDBE5E5CA32E56C66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft caRepository: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 02 Jun 2025 23:36:15 +0000 Certificate not after: Mon 01 Jun 2026 23:41:15 +0000 Subordinate resources: IP: 103.195.18.0/23 IP: 2001:df6:cc00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:f5:9e:e0:70:00:ee:d0:6e:c6:88:4f:db:e5:e5:ca:32:e5:6c:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 2 23:36:15 2025 GMT Not After : Jun 1 23:41:15 2026 GMT Subject: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8e:c8:6c:00:81:81:4f:3a:65:0e:58:09:61: cb:b6:7b:bc:7b:50:c9:fe:42:10:ec:45:7c:72:33: 65:e5:7a:05:9a:e1:f7:66:cd:70:f1:c5:5a:87:a2: 6b:55:66:06:1b:c0:ae:49:f4:dc:86:06:df:67:b1: b8:27:90:c4:34:95:8f:66:10:a9:91:67:3f:ad:3f: e7:13:2d:9c:86:84:79:26:50:2b:2f:fa:1d:26:da: f3:db:e8:54:27:64:b0:b9:14:2e:13:38:82:a9:57: c9:aa:5c:e8:fb:8e:cf:d8:ea:0a:6a:0d:a8:7a:2e: 0c:57:89:59:fa:de:17:05:64:78:aa:d5:cc:27:6d: 58:9a:fe:9a:a6:14:52:50:5d:7d:0c:f7:22:d0:56: 79:dc:2f:6e:da:b9:eb:b8:1a:79:6a:f0:09:f7:04: 8f:c8:28:af:ef:50:f7:68:8d:01:c0:91:95:dc:ba: 84:a6:d1:6c:38:c7:3d:1f:95:b7:7a:1b:11:2d:90: 1e:f3:8e:2f:73:5f:4b:e8:bf:01:ab:6a:f6:18:22: 08:74:4d:86:a2:d4:36:9e:a3:88:2f:ba:ea:99:35: 4f:12:cd:bd:80:03:ef:35:81:c0:3e:f3:0b:5b:62: 76:69:12:6d:98:9c:4b:c0:02:e0:e6:a6:cc:07:41: 7c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.18.0/23 IPv6: 2001:df6:cc00::/48 Signature Algorithm: sha256WithRSAEncryption 35:8b:96:1d:3d:8f:51:2b:3f:8e:ec:72:c4:16:77:f8:2a:98: c3:dd:19:e4:dc:af:cb:af:7e:aa:c8:7e:a7:03:89:92:29:57: 71:8d:7b:fc:00:bf:2f:30:e6:71:fe:81:e4:f4:7b:21:1d:4a: b1:93:8f:50:35:81:95:f6:fd:e1:a1:0a:c7:4c:42:f4:d9:fd: 12:cf:13:6e:bf:88:bd:ea:2f:9e:ac:fe:4e:a5:90:ca:fb:0e: 3b:ea:90:de:c8:a2:99:c5:35:c7:0d:93:c4:42:b4:da:ce:f0: c2:f5:04:b8:32:11:40:2b:77:d3:be:11:df:c7:4e:2f:41:88: 4e:97:8d:fe:22:ff:c9:62:4d:c2:e4:a7:f9:cf:b8:a4:ef:c6: 91:a8:17:09:18:c1:a8:86:b9:90:5a:ef:22:73:ae:ba:aa:3c: 36:4a:16:a3:43:2c:83:10:76:a5:89:1c:39:0e:63:71:60:f6: 7f:67:9c:a4:91:ee:cc:c0:b5:b4:df:09:2e:53:9b:68:24:1f: aa:d9:f4:bd:b4:95:ea:e0:4d:d4:6c:f8:39:fa:75:9b:ed:e5: eb:d1:c4:f6:2d:99:9b:55:97:b3:44:d6:a6:e4:fa:37:d5:9f: c0:b4:2c:eb:29:f0:2f:9f:fd:fb:f2:60:9c:94:1d:67:5e:bd: 03:30:cb:c9 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUB/We4HAA7tBuxohP2+XlyjLlbGYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMjIzMzYxNVoX DTI2MDYwMTIzNDExNVowMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhC NTI2QzU2QUVCRENCNUFEQkQyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOyOyGwAgYFPOmUOWAlhy7Z7vHtQyf5CEOxFfHIzZeV6BZrh92bNcPHFWoei a1VmBhvArkn03IYG32exuCeQxDSVj2YQqZFnP60/5xMtnIaEeSZQKy/6HSba89vo VCdksLkULhM4gqlXyapc6PuOz9jqCmoNqHouDFeJWfreFwVkeKrVzCdtWJr+mqYU UlBdfQz3ItBWedwvbtq567gaeWrwCfcEj8gor+9Q92iNAcCRldy6hKbRbDjHPR+V t3obES2QHvOOL3NfS+i/Aatq9hgiCHRNhqLUNp6jiC+66pk1TxLNvYAD7zWBwD7z C1tidmkSbZicS8AC4OamzAdBfOkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDVmts8A17C2c/i1JsVq69y1rb0oMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kM2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzYjhhZTk3 LTY4MTgtNDhhOS1hYmU0LWVkYjk2MDQ5ZjNjOC8wLzM1NjZCNkNGMDBEN0IwQjY3 M0Y4QjUyNkM1NkFFQkRDQjVBREJEMjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnwxIwDwQCAAIwCQMHACABDfbMADANBgkqhkiG9w0BAQsFAAOCAQEANYuWHT2P USs/juxyxBZ3+CqYw90Z5Nyvy69+qsh+pwOJkilXcY17/AC/LzDmcf6B5PR7IR1K sZOPUDWBlfb94aEKx0xC9Nn9Es8Tbr+Iveovnqz+TqWQyvsOO+qQ3siimcU1xw2T xEK02s7wwvUEuDIRQCt3074R38dOL0GITpeN/iL/yWJNwuSn+c+4pO/GkagXCRjB qIa5kFrvInOuuqo8NkoWo0MsgxB2pYkcOQ5jcWD2f2ecpJHuzMC1tN8JLlObaCQf qtn0vbSV6uBN1Gz4Ofp1m+3l69HE9i2Zm1WXs0TWpuT6N9WfwLQs6ynwL5/9+/Jg nJQdZ169AzDLyQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:27 2025 by rpki-client