This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/4E1C7D0BF891C183458C47AB1134215E797C4165.cer File: 4E1C7D0BF891C183458C47AB1134215E797C4165.cer (raw, json) Hash identifier: 4DuxyrJjgWQ3SdekGQlvvAndrcIzLcvLtn6BAmrH0rg= Subject key identifier: 4E:1C:7D:0B:F8:91:C1:83:45:8C:47:AB:11:34:21:5E:79:7C:41:65 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5535C04603C2C0732E7B046C23F65D911D05695E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6bac619b-21e6-41d6-8e94-5804538c543e/0/4E1C7D0BF891C183458C47AB1134215E797C4165.mft caRepository: rsync://repo-rpki.idnic.net/repo/6bac619b-21e6-41d6-8e94-5804538c543e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 27 Jun 2025 01:52:32 +0000 Certificate not after: Fri 26 Jun 2026 01:57:32 +0000 Subordinate resources: IP: 103.191.128.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:35:c0:46:03:c2:c0:73:2e:7b:04:6c:23:f6:5d:91:1d:05:69:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 27 01:52:32 2025 GMT Not After : Jun 26 01:57:32 2026 GMT Subject: CN=4E1C7D0BF891C183458C47AB1134215E797C4165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d3:1a:04:77:25:f7:03:64:70:fb:35:7d:92: ea:9e:a1:18:44:5c:5b:05:aa:5d:4e:9f:a3:99:78: 60:6d:b1:21:bd:0e:c1:bf:05:90:a8:e2:47:05:5e: 5d:9c:94:00:e6:c1:9a:16:9c:75:e4:d9:6e:d7:aa: 4b:53:5b:b9:c1:da:4a:a3:30:eb:13:0d:5a:03:4e: 3f:a8:27:3a:2c:61:7d:16:c0:de:07:e3:70:55:47: 8e:88:2d:67:7f:bb:e6:98:7e:41:a3:3a:ea:34:96: 26:72:4e:5b:4a:20:88:53:e7:ad:49:b9:fb:e7:1e: 80:8b:f6:5a:af:01:0e:1c:ad:f1:75:c1:b2:eb:0a: 22:49:10:d5:d1:84:ca:cd:cc:35:2d:7b:51:b9:3a: 64:73:4b:79:40:f1:bb:cb:2e:cc:7e:8d:a6:9b:9b: 12:41:71:63:55:d0:7a:cb:99:1e:2a:54:22:94:87: ae:e8:e5:75:8d:94:22:51:6e:86:bc:79:00:00:c2: 4b:e8:60:31:41:60:73:0c:ee:14:b0:19:fc:4b:55: 18:9c:c7:e7:d1:b0:fb:d2:38:63:f0:bb:1f:ce:d7: 92:2f:2e:45:e2:d9:c1:00:88:63:bc:80:24:d2:3f: 99:79:66:1f:b9:fa:c4:1e:0b:57:16:ef:c2:a8:28: f9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4E:1C:7D:0B:F8:91:C1:83:45:8C:47:AB:11:34:21:5E:79:7C:41:65 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6bac619b-21e6-41d6-8e94-5804538c543e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6bac619b-21e6-41d6-8e94-5804538c543e/0/4E1C7D0BF891C183458C47AB1134215E797C4165.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.128.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:43:44:b4:b8:2a:7e:67:dd:42:09:48:d7:9f:06:a4:32:79: c1:ce:1b:22:67:3f:c6:73:77:1f:3e:59:13:75:6f:01:02:dc: c5:65:87:d3:d2:93:10:ca:46:38:13:4e:62:ef:32:dd:a9:c7: c8:fb:4e:f0:24:72:7c:33:37:ba:8a:8d:29:07:e4:36:ed:aa: dc:f2:56:fb:0b:e9:11:8a:3d:ea:c2:50:48:43:75:c9:f2:d8: e0:5a:44:f3:1c:87:d9:19:b0:49:0d:a3:58:b5:91:5b:59:bd: 43:ec:5a:91:6a:45:81:66:ff:ea:31:1a:62:f1:6b:af:76:34: 58:f9:3a:be:50:a9:a9:1d:02:1c:01:0e:2b:4e:54:91:14:f1: 9f:d5:60:c8:d6:eb:92:5a:1e:6d:b8:29:c4:d8:da:ca:8c:aa: e4:40:0b:92:b9:10:16:84:6e:7f:80:f9:8e:38:28:5b:29:89: 5f:70:7c:ac:02:ce:bc:05:23:89:5d:27:8d:32:b2:43:84:d4: 39:9a:68:c9:75:eb:89:f9:93:24:28:16:b2:01:9e:d4:47:57: 48:e3:30:de:a8:0d:71:3e:4b:e3:32:6b:fa:7e:3c:48:6a:4d: bd:c3:0e:c5:d5:58:c1:ed:de:a2:c0:4c:87:b6:fb:2d:0f:a1: 78:9c:8f:c4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVTXARgPCwHMuewRsI/ZdkR0FaV4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyNzAxNTIzMloX DTI2MDYyNjAxNTczMlowMzExMC8GA1UEAxMoNEUxQzdEMEJGODkxQzE4MzQ1OEM0 N0FCMTEzNDIxNUU3OTdDNDE2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANnTGgR3JfcDZHD7NX2S6p6hGERcWwWqXU6fo5l4YG2xIb0Owb8FkKjiRwVe XZyUAObBmhacdeTZbteqS1NbucHaSqMw6xMNWgNOP6gnOixhfRbA3gfjcFVHjogt Z3+75ph+QaM66jSWJnJOW0ogiFPnrUm5++cegIv2Wq8BDhyt8XXBsusKIkkQ1dGE ys3MNS17Ubk6ZHNLeUDxu8suzH6NppubEkFxY1XQesuZHipUIpSHrujldY2UIlFu hrx5AADCS+hgMUFgcwzuFLAZ/EtVGJzH59Gw+9I4Y/C7H87Xki8uReLZwQCIY7yA JNI/mXlmH7n6xB4LVxbvwqgo+UECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE4cfQv4kcGDRYxHqxE0IV55fEFlMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82YmFjNjE5Yi0yMWU2LTQxZDYtOGU5NC01ODA0NTM4YzU0M2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiYWM2MTli LTIxZTYtNDFkNi04ZTk0LTU4MDQ1MzhjNTQzZS8wLzRFMUM3RDBCRjg5MUMxODM0 NThDNDdBQjExMzQyMTVFNzk3QzQxNjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnv4AwDQYJKoZIhvcNAQELBQADggEBAC5DRLS4Kn5n3UIJSNefBqQyecHOGyJn P8Zzdx8+WRN1bwEC3MVlh9PSkxDKRjgTTmLvMt2px8j7TvAkcnwzN7qKjSkH5Dbt qtzyVvsL6RGKPerCUEhDdcny2OBaRPMch9kZsEkNo1i1kVtZvUPsWpFqRYFm/+ox GmLxa692NFj5Or5QqakdAhwBDitOVJEU8Z/VYMjW65JaHm24KcTY2sqMquRAC5K5 EBaEbn+A+Y44KFspiV9wfKwCzrwFI4ldJ40yskOE1DmaaMl164n5kyQoFrIBntRH V0jjMN6oDXE+S+Mya/p+PEhqTb3DDsXVWMHt3qLATIe2+y0PoXicj8Q= -----END CERTIFICATE-----Generated at Wed Dec 3 13:59:42 2025 by rpki-client