This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer File: 3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer (raw, json) Hash identifier: zZ8cyjCF4BCezz41AxuFFUfSPrC/g/H+b43XdfAzWBA= Subject key identifier: 3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 74DCFBB61912AB0EC56D792F97DDCD70CA4AC31D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft caRepository: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 22 Nov 2025 03:03:39 +0000 Certificate not after: Sat 21 Nov 2026 03:08:39 +0000 Subordinate resources: IP: 103.132.230.0/23 IP: 2001:df7:8b00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:dc:fb:b6:19:12:ab:0e:c5:6d:79:2f:97:dd:cd:70:ca:4a:c3:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 22 03:03:39 2025 GMT Not After : Nov 21 03:08:39 2026 GMT Subject: CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f0:88:f2:4d:5b:e8:c9:59:49:8a:29:a3:f2: 32:2a:84:76:84:77:71:ff:31:d0:be:1a:67:bc:c3: 42:7e:b2:fa:cd:09:cc:d0:cf:c3:c1:76:cf:f5:aa: 1f:a9:45:48:02:db:fa:bf:fd:a1:72:7e:36:4f:52: c8:94:fb:86:59:c8:a3:d0:1b:16:47:d7:1f:58:89: 63:92:dd:73:cd:12:05:01:8d:b2:25:fb:0c:81:db: 00:ef:2a:31:a0:92:00:54:21:1e:5c:57:58:44:b1: 34:83:eb:43:b0:94:d4:06:22:68:3a:7d:95:38:5f: 3e:dc:53:c3:c2:6a:05:12:37:60:c4:2c:46:eb:87: 02:e2:6f:4c:5f:d8:85:21:31:e9:fd:26:5b:6a:2f: fc:88:a8:51:cb:d9:66:47:2e:cb:b1:a8:95:00:b1: ab:9f:ed:32:12:e9:41:51:83:b9:b6:99:a7:c6:ca: b8:2f:a5:14:32:81:6d:56:d9:9c:97:af:80:1a:46: 16:53:e6:8d:62:fe:42:25:5a:8a:2d:dc:52:0b:0f: 6c:ed:12:c0:62:a4:4d:83:4b:5e:79:95:5a:6b:06: 6c:d0:35:d8:76:c5:a7:5f:ab:0c:c6:23:b7:77:0a: 7f:f3:2a:45:af:03:69:ed:1f:49:b7:e6:2b:f9:7c: 17:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.230.0/23 IPv6: 2001:df7:8b00::/48 Signature Algorithm: sha256WithRSAEncryption 6d:d1:f4:98:3b:33:e4:93:c7:34:97:9a:b2:f4:89:d3:99:31: e9:22:e1:6f:a1:fa:51:95:4f:0f:3d:e9:bb:5c:be:0c:a2:c2: 55:f3:8b:3e:a6:5c:96:81:dc:fa:c5:f2:dd:a7:5f:74:18:73: 15:4c:6a:fb:36:6b:27:65:cf:35:66:af:5a:2b:9a:e4:40:c1: ee:e3:3d:66:01:e0:3a:4d:64:62:55:f3:53:cf:42:20:09:47: b3:c0:0f:0d:67:d4:7b:72:2e:da:02:c3:6f:0e:47:cd:08:be: bc:38:81:7b:e2:ca:ee:71:f0:9a:d4:af:61:79:a1:9b:6d:ee: 99:1a:91:e7:70:0f:18:63:fe:42:57:8f:d4:19:76:15:dd:1e: 88:a4:6c:1a:57:66:6a:e0:c1:c6:01:e2:64:41:d3:03:11:5b: 87:9b:b0:00:16:bc:04:8a:33:b9:90:13:4f:e2:ec:28:7b:71: aa:f1:28:dd:ce:f0:f2:de:2b:4c:e2:ff:9f:e0:c4:e0:56:6a: 49:13:2c:d3:b3:a7:3d:69:ec:17:d4:d6:78:dc:59:16:4f:49: f0:86:48:5a:c2:9d:6e:74:a8:3c:43:11:a3:9c:3d:76:fd:70: 8d:15:c5:e2:d4:6b:8c:a6:18:c1:34:eb:84:72:6c:de:23:ff: b0:b3:8e:0a -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUdNz7thkSqw7FbXkvl93NcMpKwx0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyMjAzMDMzOVoX DTI2MTEyMTAzMDgzOVowMzExMC8GA1UEAxMoM0UwQjk1N0I1ODJEOEFFRjk5QTQ5 QzY0NDhGOTk5M0M3MjM3OEJGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ3wiPJNW+jJWUmKKaPyMiqEdoR3cf8x0L4aZ7zDQn6y+s0JzNDPw8F2z/Wq H6lFSALb+r/9oXJ+Nk9SyJT7hlnIo9AbFkfXH1iJY5Ldc80SBQGNsiX7DIHbAO8q MaCSAFQhHlxXWESxNIPrQ7CU1AYiaDp9lThfPtxTw8JqBRI3YMQsRuuHAuJvTF/Y hSEx6f0mW2ov/IioUcvZZkcuy7GolQCxq5/tMhLpQVGDubaZp8bKuC+lFDKBbVbZ nJevgBpGFlPmjWL+QiVaii3cUgsPbO0SwGKkTYNLXnmVWmsGbNA12HbFp1+rDMYj t3cKf/MqRa8Dae0fSbfmK/l8F0ECAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD4LlXtYLYrvmaScZEj5mTxyN4vzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZWRjOWU0Zi04MTgwLTQxZDYtYjA4ZC04ZWU1YThhNzBhMDUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlZGM5ZTRm LTgxODAtNDFkNi1iMDhkLThlZTVhOGE3MGEwNS8wLzNFMEI5NTdCNTgyRDhBRUY5 OUE0OUM2NDQ4Rjk5OTNDNzIzNzhCRjMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnhOYwDwQCAAIwCQMHACABDfeLADANBgkqhkiG9w0BAQsFAAOCAQEAbdH0mDsz 5JPHNJeasvSJ05kx6SLhb6H6UZVPDz3pu1y+DKLCVfOLPqZcloHc+sXy3adfdBhz FUxq+zZrJ2XPNWavWiua5EDB7uM9ZgHgOk1kYlXzU89CIAlHs8APDWfUe3Iu2gLD bw5HzQi+vDiBe+LK7nHwmtSvYXmhm23umRqR53APGGP+QleP1Bl2Fd0eiKRsGldm auDBxgHiZEHTAxFbh5uwABa8BIozuZATT+LsKHtxqvEo3c7w8t4rTOL/n+DE4FZq SRMs07OnPWnsF9TWeNxZFk9J8IZIWsKdbnSoPEMRo5w9dv1wjRXF4tRrjKYYwTTr hHJs3iP/sLOOCg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:17:47 2025 by rpki-client