This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer File: 87C7B4B7933266A0A09E2290B0934622DD072C9B.cer (raw, json) Hash identifier: MQasNtkgbjXYZRhOwSjeEK9IOaV0KJKc2/Li39+9RBg= Subject key identifier: 87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 61FF1F2256F1B5CB97E0FCF4733316955A68E204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.mft caRepository: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 06 Nov 2025 10:24:18 +0000 Certificate not after: Thu 05 Nov 2026 10:29:18 +0000 Subordinate resources: IP: 103.121.168.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ff:1f:22:56:f1:b5:cb:97:e0:fc:f4:73:33:16:95:5a:68:e2:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 6 10:24:18 2025 GMT Not After : Nov 5 10:29:18 2026 GMT Subject: CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d1:24:a3:d9:55:16:ef:77:cb:12:b8:7a:1a: 9c:53:31:ad:34:ba:b2:97:8f:ab:5f:35:72:46:e4: fe:55:1a:96:e3:4a:03:20:b2:a1:74:bd:fa:1c:4c: bb:c5:a1:51:85:57:70:f5:39:1c:07:f5:02:d1:f1: 45:78:05:e3:ac:3c:e4:22:d4:e8:28:40:4c:25:96: d0:13:90:2f:2e:fa:d7:d7:65:da:b7:9a:f8:56:9e: d0:ce:3c:b7:06:e6:82:23:9a:92:e5:7a:c8:91:b2: d1:3f:c4:e6:dd:ca:f4:93:ac:7c:57:cb:7a:40:f9: b2:a9:d0:e4:67:7d:2a:ad:64:08:c6:98:a1:3b:74: 2c:f2:a9:13:fc:81:e1:51:c6:c2:4e:24:2b:d6:1e: 50:4d:f7:13:c1:ef:a9:32:e5:f3:43:80:b0:44:7a: d1:7c:10:f7:a4:a0:74:87:92:86:7e:32:53:c4:84: 94:83:44:4f:7a:31:18:b8:cd:7c:21:e5:fb:c5:e2: a5:06:ac:b9:b6:cb:6d:65:bc:95:0b:13:f9:28:cb: 67:26:7e:17:59:0f:3d:29:ed:e3:9c:41:39:c8:95: 55:ad:f3:68:c9:e8:91:33:41:6a:15:77:06:b0:ce: 0d:fb:7b:87:f5:e8:23:dd:bc:a7:27:de:7c:91:ab: 64:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.168.0/22 Signature Algorithm: sha256WithRSAEncryption 55:56:73:a6:47:71:69:1b:c0:d2:82:a5:3b:95:ac:12:bd:a1: 28:47:b7:e9:40:01:63:77:f1:3e:93:09:75:aa:2b:5f:08:94: ce:13:e5:84:87:c7:5a:11:7e:22:5d:cf:9b:c4:41:f0:b9:5d: 3d:71:42:f4:c0:e5:82:77:e1:3b:3d:39:b2:95:e1:ea:c7:64: 33:78:ac:f8:c3:68:3e:88:a7:09:ba:62:92:24:84:cc:7d:16: f1:fe:92:8a:f9:9c:16:4a:61:47:4e:92:41:d0:5b:21:7f:ca: f4:70:8d:33:1a:93:5b:8a:d1:fd:2e:48:cc:08:7c:17:ec:99: 62:2c:30:84:2a:7a:29:8c:c8:4c:c5:8f:1e:6c:06:5f:19:82: 6a:b6:dc:76:70:cc:c1:ce:03:cd:d2:b2:f3:e2:5b:82:f4:3a: 6f:42:51:2f:a8:4c:ee:cc:26:be:9c:67:a3:25:40:a9:66:f3: 7d:0d:10:01:df:af:d2:49:88:54:1c:5a:aa:b9:4e:b2:f2:4b: 16:bf:36:29:57:7a:3e:a3:3b:cc:dc:39:f7:f0:ea:a0:d9:03: e3:e3:9b:33:0b:20:2e:74:a8:19:e0:27:d8:f8:2a:f9:c7:25: f9:4d:52:c6:63:92:2c:26:f3:4a:a0:f5:e5:bb:2f:90:0c:33: e5:fe:93:96 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYf8fIlbxtcuX4Pz0czMWlVpo4gQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNjEwMjQxOFoX DTI2MTEwNTEwMjkxOFowMzExMC8GA1UEAxMoODdDN0I0Qjc5MzMyNjZBMEEwOUUy MjkwQjA5MzQ2MjJERDA3MkM5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ3RJKPZVRbvd8sSuHoanFMxrTS6spePq181ckbk/lUaluNKAyCyoXS9+hxM u8WhUYVXcPU5HAf1AtHxRXgF46w85CLU6ChATCWW0BOQLy7619dl2rea+Fae0M48 twbmgiOakuV6yJGy0T/E5t3K9JOsfFfLekD5sqnQ5Gd9Kq1kCMaYoTt0LPKpE/yB 4VHGwk4kK9YeUE33E8HvqTLl80OAsER60XwQ96SgdIeShn4yU8SElINET3oxGLjN fCHl+8XipQasubbLbWW8lQsT+SjLZyZ+F1kPPSnt45xBOciVVa3zaMnokTNBahV3 BrDODft7h/XoI928pyfefJGrZN8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIfHtLeTMmagoJ4ikLCTRiLdByybMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xYTU4YWYyNC00NjNiLTQ0ZDgtYjZmMC0zOWI4MmI0NThmNzUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhNThhZjI0 LTQ2M2ItNDRkOC1iNmYwLTM5YjgyYjQ1OGY3NS8wLzg3QzdCNEI3OTMzMjY2QTBB MDlFMjI5MEIwOTM0NjIyREQwNzJDOUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJneagwDQYJKoZIhvcNAQELBQADggEBAFVWc6ZHcWkbwNKCpTuVrBK9oShHt+lA AWN38T6TCXWqK18IlM4T5YSHx1oRfiJdz5vEQfC5XT1xQvTA5YJ34Ts9ObKV4erH ZDN4rPjDaD6Ipwm6YpIkhMx9FvH+kor5nBZKYUdOkkHQWyF/yvRwjTMak1uK0f0u SMwIfBfsmWIsMIQqeimMyEzFjx5sBl8Zgmq23HZwzMHOA83SsvPiW4L0Om9CUS+o TO7MJr6cZ6MlQKlm830NEAHfr9JJiFQcWqq5TrLySxa/NilXej6jO8zcOffw6qDZ A+PjmzMLIC50qBngJ9j4KvnHJflNUsZjkiwm80qg9eW7L5AMM+X+k5Y= -----END CERTIFICATE-----Generated at Wed Dec 3 12:46:33 2025 by rpki-client