This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/361B6D7E16A02B7316B6F91ED34B22A907EE866B.cer File: 361B6D7E16A02B7316B6F91ED34B22A907EE866B.cer (raw, json) Hash identifier: xxtj/UTcXPf7vY9CPRZUIKOD3ejEMqvVXDe4MwzbHMo= Subject key identifier: 36:1B:6D:7E:16:A0:2B:73:16:B6:F9:1E:D3:4B:22:A9:07:EE:86:6B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 703C8BFE34C1D72FAF3A72C2962733278BD3A2ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0/361B6D7E16A02B7316B6F91ED34B22A907EE866B.mft caRepository: rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 22 Nov 2025 17:29:42 +0000 Certificate not after: Sat 21 Nov 2026 17:34:42 +0000 Subordinate resources: IP: 103.13.234.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:3c:8b:fe:34:c1:d7:2f:af:3a:72:c2:96:27:33:27:8b:d3:a2:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 22 17:29:42 2025 GMT Not After : Nov 21 17:34:42 2026 GMT Subject: CN=361B6D7E16A02B7316B6F91ED34B22A907EE866B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9a:61:d4:d1:7a:e0:b2:ae:00:d7:43:b2:76: 00:69:1a:6d:72:4c:6d:7d:99:8f:b3:b1:2a:8b:ac: 57:bd:5c:8d:7b:dc:9c:cf:5e:b0:4f:5a:92:9d:12: 14:9e:a2:ea:66:dc:af:7a:e2:69:a2:cb:13:2b:2a: 37:eb:17:bc:cc:6d:2e:be:ab:0c:39:15:97:9b:e6: 9e:6b:7d:f9:2a:55:63:a0:ef:5f:23:9f:d6:31:9e: 17:a6:9e:bd:53:02:2a:56:be:49:db:63:fe:7c:a9: bc:9c:07:d6:36:38:f9:48:5f:1d:32:57:9b:7d:41: c3:54:9f:e5:42:50:b7:61:ce:0c:df:4e:e4:13:ce: 1a:ed:09:ad:d7:09:2d:1d:6a:c6:51:4a:df:15:af: 1d:62:eb:d3:50:83:4d:5a:ef:3e:f4:0e:71:7d:3d: a4:7d:8a:ff:af:ee:47:5c:61:61:bd:7f:d7:98:c5: 91:97:ec:8e:17:5a:83:6d:28:5b:5b:cc:bf:16:8f: 31:11:4a:b5:b5:2d:99:26:db:ab:50:a5:19:86:30: 07:92:46:91:3a:47:e4:7e:ea:94:12:ca:e3:09:3a: cd:b6:eb:fc:f0:f0:e8:00:91:4c:6d:79:8e:ce:c0: 1c:5e:94:6f:da:21:e0:3b:d1:af:ad:6d:da:55:55: d1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 36:1B:6D:7E:16:A0:2B:73:16:B6:F9:1E:D3:4B:22:A9:07:EE:86:6B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0/361B6D7E16A02B7316B6F91ED34B22A907EE866B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.234.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:b4:bd:86:ee:d7:9d:2b:2d:3e:e0:ed:39:f6:20:7e:b3:df: 1c:59:6f:e4:a1:fb:e2:c5:fd:7c:b3:e6:ed:72:3d:82:78:95: dd:26:ca:9c:64:4f:7d:2c:09:6c:fa:61:cb:42:43:8f:70:a2: 60:fe:f9:16:1f:95:b1:17:6c:b5:64:02:47:6d:37:04:27:c7: 50:8e:ce:29:36:4e:07:e3:08:86:99:c2:2b:33:72:90:d5:22: 40:b1:88:77:51:dd:de:c6:70:c2:90:d0:d8:6c:ef:91:d7:94: dc:27:78:8c:43:a7:cd:c9:04:9a:6b:b6:97:f6:3c:47:ad:26: 94:db:50:fe:c3:3c:83:5b:16:42:ce:ee:79:78:dd:06:63:d2: 85:05:ee:37:bf:72:23:45:14:20:05:7a:0e:11:3c:cf:18:41: 49:55:70:00:3d:86:38:fe:2e:c5:60:ac:b0:d5:69:bf:6d:19: 66:00:fb:39:cd:74:78:89:8f:76:c7:83:d5:3d:e9:5c:de:e4: fa:57:fa:6e:98:38:1b:d5:da:d2:ba:19:99:9f:51:a5:ef:cd: ae:2f:f9:b3:c1:da:c4:3a:c3:3a:07:65:59:39:03:b1:fa:67: 49:b7:15:ac:5c:a8:52:23:ed:2d:13:f4:49:30:53:f9:bc:a8: 32:50:3f:d5 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUcDyL/jTB1y+vOnLCliczJ4vTou0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyMjE3Mjk0MloX DTI2MTEyMTE3MzQ0MlowMzExMC8GA1UEAxMoMzYxQjZEN0UxNkEwMkI3MzE2QjZG OTFFRDM0QjIyQTkwN0VFODY2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALWaYdTReuCyrgDXQ7J2AGkabXJMbX2Zj7OxKousV71cjXvcnM9esE9akp0S FJ6i6mbcr3riaaLLEysqN+sXvMxtLr6rDDkVl5vmnmt9+SpVY6DvXyOf1jGeF6ae vVMCKla+Sdtj/nypvJwH1jY4+UhfHTJXm31Bw1Sf5UJQt2HODN9O5BPOGu0JrdcJ LR1qxlFK3xWvHWLr01CDTVrvPvQOcX09pH2K/6/uR1xhYb1/15jFkZfsjhdag20o W1vMvxaPMRFKtbUtmSbbq1ClGYYwB5JGkTpH5H7qlBLK4wk6zbbr/PDw6ACRTG15 js7AHF6Ub9oh4DvRr61t2lVV0a8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDYbbX4WoCtzFrb5HtNLIqkH7oZrMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YWM0ZDc1ZS0zZGE4LTQ5OTAtODA0Mi03ZTBlY2Y1OWYxM2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhYzRkNzVl LTNkYTgtNDk5MC04MDQyLTdlMGVjZjU5ZjEzYi8wLzM2MUI2RDdFMTZBMDJCNzMx NkI2RjkxRUQzNEIyMkE5MDdFRTg2NkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnDeowDQYJKoZIhvcNAQELBQADggEBAEq0vYbu150rLT7g7Tn2IH6z3xxZb+Sh ++LF/Xyz5u1yPYJ4ld0mypxkT30sCWz6YctCQ49womD++RYflbEXbLVkAkdtNwQn x1COzik2TgfjCIaZwiszcpDVIkCxiHdR3d7GcMKQ0Nhs75HXlNwneIxDp83JBJpr tpf2PEetJpTbUP7DPINbFkLO7nl43QZj0oUF7je/ciNFFCAFeg4RPM8YQUlVcAA9 hjj+LsVgrLDVab9tGWYA+znNdHiJj3bHg9U96Vze5PpX+m6YOBvV2tK6GZmfUaXv za4v+bPB2sQ6wzoHZVk5A7H6Z0m3FaxcqFIj7S0T9EkwU/m8qDJQP9U= -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:34 2025 by rpki-client