This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer File: 5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer (raw, json) Hash identifier: BUnWrX71ZLvrddgBUWghjviANCfWGQ89kva7/vdO+T4= Subject key identifier: 57:87:AD:66:59:EA:8A:5E:40:18:87:6F:5F:9D:BD:9A:AA:F9:CA:1D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 56F2EF78E5BCE95B1C1C988A5CFCF77147FB4DD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.mft caRepository: rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 28 Jun 2025 01:30:54 +0000 Certificate not after: Sat 27 Jun 2026 01:35:54 +0000 Subordinate resources: IP: 103.102.250.0/24 IP: 2001:df2:f100::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f2:ef:78:e5:bc:e9:5b:1c:1c:98:8a:5c:fc:f7:71:47:fb:4d:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 28 01:30:54 2025 GMT Not After : Jun 27 01:35:54 2026 GMT Subject: CN=5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:03:ae:84:f4:27:5b:76:5b:8a:0f:c8:0d:e8: 7f:60:07:8c:fd:a8:81:9b:54:66:c1:ae:25:57:5f: ef:d9:2b:3f:38:a0:a1:2f:b1:16:e8:18:f8:e6:d2: 02:65:7f:82:34:1c:0d:11:80:55:2c:f5:1c:59:1b: cb:4d:2c:7b:63:68:17:44:8b:19:6f:62:69:1e:84: 7c:27:f9:3b:6f:cb:b9:3d:b8:8a:8b:48:2b:7f:38: a0:a8:e1:4f:e9:33:06:ac:58:23:0f:98:fa:58:47: 4c:9f:af:64:74:cf:2d:5f:f8:a5:5a:48:36:53:2a: 4d:42:48:da:f1:77:a6:c2:f8:e1:52:7d:e5:89:01: bd:27:ca:a3:f6:99:a3:9a:ec:ca:86:4c:1b:62:4c: 37:60:61:66:e3:e5:82:c7:e4:0c:e7:58:72:3c:41: 64:d5:25:d0:7c:ca:47:b3:f2:b1:e7:e4:44:f0:20: 42:4c:33:35:6c:c9:2b:44:f8:90:60:74:ca:46:13: 0a:34:b2:c0:20:ce:c4:2d:88:80:df:55:aa:b5:89: 56:7c:94:20:cc:02:b3:c4:0f:26:81:dd:8a:7a:93: 35:47:27:e3:38:fb:10:31:ff:bf:53:1e:49:71:4e: e4:4e:dd:c2:56:dc:08:fe:34:b3:f8:d2:63:40:fb: da:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 57:87:AD:66:59:EA:8A:5E:40:18:87:6F:5F:9D:BD:9A:AA:F9:CA:1D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.250.0/24 IPv6: 2001:df2:f100::/48 Signature Algorithm: sha256WithRSAEncryption 66:02:a3:9d:90:31:14:5b:c2:72:63:36:a0:73:47:2a:61:23: d4:67:f5:ea:fc:34:b7:e4:98:9f:2d:75:de:20:7d:ea:b1:5d: e5:66:04:5f:09:40:d8:03:3a:36:2e:77:30:12:1f:f7:43:38: 81:9e:87:35:33:da:87:bc:86:21:be:f1:cf:71:d1:e1:d3:ca: 3b:09:03:42:b8:86:4a:c0:d1:04:ea:e6:01:68:4f:c9:36:d1: b4:e1:80:86:a6:7d:cd:0d:e3:25:2d:2a:07:a5:3d:11:b0:ca: 70:b1:2c:3c:1e:ea:e7:ed:48:58:d7:be:6e:d5:ad:e4:72:78: 34:d2:d6:5e:76:15:37:18:11:ac:37:42:f2:8b:f8:c1:a5:bf: 4a:49:c0:42:71:a0:99:ed:72:ec:69:9e:1f:84:38:75:99:fb: b0:89:55:89:8c:81:3f:a8:b3:81:bd:19:11:f2:b3:e6:df:b0: e0:c1:b1:8b:76:61:0e:8b:53:e9:4d:cb:1f:f0:72:26:dc:e3: 70:64:41:c3:8e:62:fd:d6:a9:7f:09:be:03:a5:95:c7:8a:f8: cd:0b:fa:4f:39:74:5a:a8:53:c8:6c:7e:a6:e5:54:39:a4:2d: 27:61:0b:e2:52:54:b6:14:95:d2:05:36:70:4d:d9:c8:49:2f: 91:07:44:0a -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUVvLveOW86VscHJiKXPz3cUf7TdEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyODAxMzA1NFoX DTI2MDYyNzAxMzU1NFowMzExMC8GA1UEAxMoNTc4N0FENjY1OUVBOEE1RTQwMTg4 NzZGNUY5REJEOUFBQUY5Q0ExRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOADroT0J1t2W4oPyA3of2AHjP2ogZtUZsGuJVdf79krPzigoS+xFugY+ObS AmV/gjQcDRGAVSz1HFkby00se2NoF0SLGW9iaR6EfCf5O2/LuT24iotIK384oKjh T+kzBqxYIw+Y+lhHTJ+vZHTPLV/4pVpINlMqTUJI2vF3psL44VJ95YkBvSfKo/aZ o5rsyoZMG2JMN2BhZuPlgsfkDOdYcjxBZNUl0HzKR7PysefkRPAgQkwzNWzJK0T4 kGB0ykYTCjSywCDOxC2IgN9VqrWJVnyUIMwCs8QPJoHdinqTNUcn4zj7EDH/v1Me SXFO5E7dwlbcCP40s/jSY0D72ksCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFeHrWZZ6opeQBiHb1+dvZqq+codMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNWI4ZTc3NC0xNjgzLTQ1NmQtYmJjMC0zNDMyMjVmMTdmNGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YjhlNzc0 LTE2ODMtNDU2ZC1iYmMwLTM0MzIyNWYxN2Y0Yy8wLzU3ODdBRDY2NTlFQThBNUU0 MDE4ODc2RjVGOURCRDlBQUFGOUNBMUQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnZvowDwQCAAIwCQMHACABDfLxADANBgkqhkiG9w0BAQsFAAOCAQEAZgKjnZAx FFvCcmM2oHNHKmEj1Gf16vw0t+SYny113iB96rFd5WYEXwlA2AM6Ni53MBIf90M4 gZ6HNTPah7yGIb7xz3HR4dPKOwkDQriGSsDRBOrmAWhPyTbRtOGAhqZ9zQ3jJS0q B6U9EbDKcLEsPB7q5+1IWNe+btWt5HJ4NNLWXnYVNxgRrDdC8ov4waW/SknAQnGg me1y7GmeH4Q4dZn7sIlViYyBP6izgb0ZEfKz5t+w4MGxi3ZhDotT6U3LH/ByJtzj cGRBw45i/dapfwm+A6WVx4r4zQv6Tzl0WqhTyGx+puVUOaQtJ2EL4lJUthSV0gU2 cE3ZyEkvkQdECg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:57:18 2025 by rpki-client