This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3D93688202931D72322A7EE0053964A2DD8EB457.cer File: 3D93688202931D72322A7EE0053964A2DD8EB457.cer (raw, json) Hash identifier: MSTcQo71t0QEut5z2MhNrqc+DkgaVWoIf97akL9kX0U= Subject key identifier: 3D:93:68:82:02:93:1D:72:32:2A:7E:E0:05:39:64:A2:DD:8E:B4:57 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5BD0E3DE9AABA1870D1969401221A255ED84D491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3D93688202931D72322A7EE0053964A2DD8EB457.mft caRepository: rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Dec 2025 11:20:59 +0000 Certificate not after: Tue 01 Dec 2026 11:25:59 +0000 Subordinate resources: IP: 103.184.64.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d0:e3:de:9a:ab:a1:87:0d:19:69:40:12:21:a2:55:ed:84:d4:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 2 11:20:59 2025 GMT Not After : Dec 1 11:25:59 2026 GMT Subject: CN=3D93688202931D72322A7EE0053964A2DD8EB457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c5:2d:11:78:3a:84:0b:dd:a6:3e:67:94:b0: bf:7c:79:7a:7f:25:bd:b1:f2:b7:f5:7b:f2:c1:3a: aa:97:b7:64:b7:3c:fc:c1:97:92:34:81:41:26:3d: e4:76:66:35:cc:8d:e1:e8:e4:97:55:0d:db:fa:95: b9:00:77:00:61:98:be:2f:9b:44:5e:5f:90:f0:5f: c3:9e:19:e8:a8:b4:93:f6:21:80:5f:c7:5d:b3:04: f8:fa:95:6c:67:0b:4f:e1:17:58:19:e6:d9:0e:be: 68:b4:d9:af:30:c8:75:7a:91:f6:97:49:e5:c9:04: 07:4b:99:2b:66:e6:51:2d:80:b3:90:fb:2e:eb:91: ed:33:bc:47:a1:68:94:70:24:f7:e4:43:04:bc:f7: b5:fa:ba:b3:97:d3:0d:6d:da:07:57:e1:ea:74:38: 62:75:bc:43:06:2d:cd:46:c0:8f:b1:8d:e7:62:36: 11:4c:51:f9:cc:ba:88:ff:a5:f8:07:da:27:fb:55: 9e:50:55:52:4d:16:d7:c9:f5:5a:86:13:d7:c7:75: 3d:97:4c:f6:f9:d5:32:3b:4c:01:a7:60:2a:a0:64: b3:6c:af:15:93:fa:3c:0a:27:40:74:70:d0:77:df: 96:94:37:ff:a2:44:c5:30:ab:a2:46:db:ff:47:c5: 65:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3D:93:68:82:02:93:1D:72:32:2A:7E:E0:05:39:64:A2:DD:8E:B4:57 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3D93688202931D72322A7EE0053964A2DD8EB457.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.64.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:7f:80:37:bc:02:a0:aa:13:cb:5b:f6:21:e3:8c:6e:10:69: 86:36:01:4f:ca:bd:5d:af:32:45:c2:87:9b:22:ed:89:e0:1f: 84:e5:69:60:8f:84:bf:56:89:c9:b4:0c:25:e4:2b:a1:02:61: c9:c3:e4:42:f9:3e:c8:d4:a8:e9:c9:01:8a:70:06:a5:fa:fc: 5d:3b:82:df:c0:b1:56:73:23:6c:d7:83:b4:c2:4f:04:16:cb: 6d:66:92:17:ea:01:3e:9a:79:8e:47:d5:be:b3:76:ac:4a:33: 65:f6:ed:f4:34:13:0d:4d:2e:77:3d:6c:b8:66:25:f9:ee:36: fe:8c:04:79:a6:45:37:3a:a4:f7:99:94:04:5b:12:75:15:40: fc:e9:36:fb:3a:fe:91:b8:33:55:ae:c8:6b:e7:49:1a:a0:39: f4:ef:d5:c1:84:49:49:f9:db:bc:53:12:65:c4:36:a7:59:2c: 7c:fc:26:31:e3:ea:50:41:e1:88:d0:70:25:69:5b:46:c8:41: 7e:0b:96:4e:52:bd:ab:78:c4:63:1f:be:8a:ee:39:71:58:79: 13:fb:98:85:6d:10:4d:2a:78:6a:33:95:d8:bf:95:5a:db:1a: 45:c5:e3:cb:64:87:93:e7:90:e7:c4:d3:d2:fe:97:bd:a0:ef: 0e:69:f7:e8 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUW9Dj3pqroYcNGWlAEiGiVe2E1JEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIwMjExMjA1OVoX DTI2MTIwMTExMjU1OVowMzExMC8GA1UEAxMoM0Q5MzY4ODIwMjkzMUQ3MjMyMkE3 RUUwMDUzOTY0QTJERDhFQjQ1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7FLRF4OoQL3aY+Z5Swv3x5en8lvbHyt/V78sE6qpe3ZLc8/MGXkjSBQSY9 5HZmNcyN4ejkl1UN2/qVuQB3AGGYvi+bRF5fkPBfw54Z6Ki0k/YhgF/HXbME+PqV bGcLT+EXWBnm2Q6+aLTZrzDIdXqR9pdJ5ckEB0uZK2bmUS2As5D7LuuR7TO8R6Fo lHAk9+RDBLz3tfq6s5fTDW3aB1fh6nQ4YnW8QwYtzUbAj7GN52I2EUxR+cy6iP+l +AfaJ/tVnlBVUk0W18n1WoYT18d1PZdM9vnVMjtMAadgKqBks2yvFZP6PAonQHRw 0HfflpQ3/6JExTCrokbb/0fFZRcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD2TaIICkx1yMip+4AU5ZKLdjrRXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iNmQ4ODQ5Ni1iMmJhLTRkMTMtOTgyNS1hZTM4YWZmMWRhMTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2ZDg4NDk2 LWIyYmEtNGQxMy05ODI1LWFlMzhhZmYxZGExNS8wLzNEOTM2ODgyMDI5MzFENzIz MjJBN0VFMDA1Mzk2NEEyREQ4RUI0NTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnuEAwDQYJKoZIhvcNAQELBQADggEBADt/gDe8AqCqE8tb9iHjjG4QaYY2AU/K vV2vMkXCh5si7YngH4TlaWCPhL9Wicm0DCXkK6ECYcnD5EL5PsjUqOnJAYpwBqX6 /F07gt/AsVZzI2zXg7TCTwQWy21mkhfqAT6aeY5H1b6zdqxKM2X27fQ0Ew1NLnc9 bLhmJfnuNv6MBHmmRTc6pPeZlARbEnUVQPzpNvs6/pG4M1WuyGvnSRqgOfTv1cGE SUn527xTEmXENqdZLHz8JjHj6lBB4YjQcCVpW0bIQX4Llk5Svat4xGMfvoruOXFY eRP7mIVtEE0qeGozldi/lVrbGkXF48tkh5PnkOfE09L+l72g7w5p9+g= -----END CERTIFICATE-----Generated at Wed Dec 3 13:17:14 2025 by rpki-client