This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/47FF2FBD96536B4FD610282F11EC87790C683CEF.cer File: 47FF2FBD96536B4FD610282F11EC87790C683CEF.cer (raw, json) Hash identifier: lrlh61J5YZSiyGPDv7+QkQwXYUh25b0M8cm1sUNyDX8= Subject key identifier: 47:FF:2F:BD:96:53:6B:4F:D6:10:28:2F:11:EC:87:79:0C:68:3C:EF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1589AC202A0DECFF46562F179B4F769A3FDDE3CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/734f13e8-deef-48a8-a2e0-5a63ad159efa/0/47FF2FBD96536B4FD610282F11EC87790C683CEF.mft caRepository: rsync://repo-rpki.idnic.net/repo/734f13e8-deef-48a8-a2e0-5a63ad159efa/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 18 Nov 2025 00:28:16 +0000 Certificate not after: Tue 17 Nov 2026 00:33:16 +0000 Subordinate resources: IP: 103.254.197.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:89:ac:20:2a:0d:ec:ff:46:56:2f:17:9b:4f:76:9a:3f:dd:e3:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 18 00:28:16 2025 GMT Not After : Nov 17 00:33:16 2026 GMT Subject: CN=47FF2FBD96536B4FD610282F11EC87790C683CEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:0e:8a:8d:ea:af:db:77:bd:ff:fc:14:ca:3d: 29:87:52:4e:76:55:b4:4b:00:a4:1c:3b:c6:ac:dc: 00:70:d0:52:93:83:71:9e:19:50:f3:44:bf:41:91: cf:a5:83:a1:78:e4:9a:8f:e5:33:74:e0:dd:d8:04: 33:a4:08:0f:16:e5:fb:09:c8:e5:61:f6:8c:61:0d: 65:50:72:14:f6:2a:e4:bf:19:53:4c:58:e7:5c:21: aa:d3:02:4c:fc:f4:fb:45:ee:79:bd:ec:38:52:0c: c5:d3:03:ac:d5:1d:9e:93:85:d1:21:ba:c7:3d:4f: 89:38:a5:33:c1:3f:92:47:d5:be:a1:8e:47:31:42: 9a:f5:51:c6:b6:bd:50:a4:46:3b:69:ec:6c:ed:79: fa:2c:59:b5:cb:dd:2b:4b:2c:09:38:e9:e8:e7:af: 61:db:e4:24:83:22:3b:8c:70:22:cf:61:9f:11:f4: 3b:46:85:dd:2a:95:06:d2:7d:c6:bc:26:37:f1:aa: 4f:2c:ed:73:a2:6a:cb:44:43:11:22:0e:db:2b:ac: e0:7d:53:0e:53:f0:b7:16:4c:cc:bd:64:f8:d5:e5: c7:2b:25:97:27:1d:47:c3:1d:14:58:8a:5b:97:41: 96:55:e3:41:d1:94:84:11:57:7f:72:60:fc:4e:f2: 21:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 47:FF:2F:BD:96:53:6B:4F:D6:10:28:2F:11:EC:87:79:0C:68:3C:EF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/734f13e8-deef-48a8-a2e0-5a63ad159efa/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/734f13e8-deef-48a8-a2e0-5a63ad159efa/0/47FF2FBD96536B4FD610282F11EC87790C683CEF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.197.0/24 Signature Algorithm: sha256WithRSAEncryption 74:7c:fe:88:2e:04:94:2f:f2:a5:bf:11:9f:71:d5:af:ad:5c: 9d:5e:72:75:6d:f8:b4:fe:b8:9d:c9:c1:16:01:ac:8c:fb:81: 10:db:a8:3d:77:a7:6a:bd:ef:5f:c5:d2:6d:7f:a2:17:b0:26: 0b:4d:b6:f2:44:e8:fb:0a:77:7f:b1:59:f9:4d:d5:a7:1d:bf: 09:97:0d:be:c6:5a:80:31:ba:89:7c:e0:ce:04:a8:d1:7e:96: b7:15:04:9c:88:3e:39:d9:85:be:31:21:1f:ad:6c:ff:38:2f: 79:72:99:59:68:81:b5:34:f4:1a:a4:7b:25:32:b1:4c:b1:61: ac:57:ce:51:49:a2:cb:d4:ea:28:7d:87:07:27:af:c4:e3:cf: ab:47:c8:32:2a:17:6c:98:bd:de:ab:12:6c:f8:d0:dd:a2:33: 39:5c:75:8d:28:9d:b8:05:6e:05:25:0f:b5:45:9b:fa:e6:ba: cc:f1:cc:a8:e8:33:43:09:f8:8a:f3:87:6f:e1:bb:b0:8b:08: bb:bc:82:cd:89:46:b5:f2:d8:92:a0:14:3c:51:fe:f1:8d:b0: 66:7e:be:5f:dc:d2:fc:c5:d8:3b:bf:00:65:d4:65:3e:21:be: 3e:5a:35:60:c3:19:8a:07:20:87:44:ca:97:a5:ea:1b:da:47: 2b:da:36:00 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUFYmsICoN7P9GVi8Xm092mj/d488wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExODAwMjgxNloX DTI2MTExNzAwMzMxNlowMzExMC8GA1UEAxMoNDdGRjJGQkQ5NjUzNkI0RkQ2MTAy ODJGMTFFQzg3NzkwQzY4M0NFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ4Oio3qr9t3vf/8FMo9KYdSTnZVtEsApBw7xqzcAHDQUpODcZ4ZUPNEv0GR z6WDoXjkmo/lM3Tg3dgEM6QIDxbl+wnI5WH2jGENZVByFPYq5L8ZU0xY51whqtMC TPz0+0Xueb3sOFIMxdMDrNUdnpOF0SG6xz1PiTilM8E/kkfVvqGORzFCmvVRxra9 UKRGO2nsbO15+ixZtcvdK0ssCTjp6OevYdvkJIMiO4xwIs9hnxH0O0aF3SqVBtJ9 xrwmN/GqTyztc6Jqy0RDESIO2yus4H1TDlPwtxZMzL1k+NXlxysllycdR8MdFFiK W5dBllXjQdGUhBFXf3Jg/E7yIV8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEf/L72WU2tP1hAoLxHsh3kMaDzvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83MzRmMTNlOC1kZWVmLTQ4YTgtYTJlMC01YTYzYWQxNTllZmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczNGYxM2U4 LWRlZWYtNDhhOC1hMmUwLTVhNjNhZDE1OWVmYS8wLzQ3RkYyRkJEOTY1MzZCNEZE NjEwMjgyRjExRUM4Nzc5MEM2ODNDRUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn/sUwDQYJKoZIhvcNAQELBQADggEBAHR8/oguBJQv8qW/EZ9x1a+tXJ1ecnVt +LT+uJ3JwRYBrIz7gRDbqD13p2q971/F0m1/ohewJgtNtvJE6PsKd3+xWflN1acd vwmXDb7GWoAxuol84M4EqNF+lrcVBJyIPjnZhb4xIR+tbP84L3lymVlogbU09Bqk eyUysUyxYaxXzlFJosvU6ih9hwcnr8Tjz6tHyDIqF2yYvd6rEmz40N2iMzlcdY0o nbgFbgUlD7VFm/rmuszxzKjoM0MJ+Irzh2/hu7CLCLu8gs2JRrXy2JKgFDxR/vGN sGZ+vl/c0vzF2Du/AGXUZT4hvj5aNWDDGYoHIIdEypel6hvaRyvaNgA= -----END CERTIFICATE-----Generated at Wed Dec 3 13:17:38 2025 by rpki-client