This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer File: 8DAFDBD814B60F568505D65130E4661FCD7D665F.cer (raw, json) Hash identifier: +6ccajW1TOi4dTdtsQnNi6gu+GS14sEY3vT4fsj89Ko= Subject key identifier: 8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 567D021B8C76056B603419C486973F5387D70104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.mft caRepository: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 25 Nov 2025 22:58:02 +0000 Certificate not after: Tue 24 Nov 2026 23:03:02 +0000 Subordinate resources: IP: 103.168.190.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:7d:02:1b:8c:76:05:6b:60:34:19:c4:86:97:3f:53:87:d7:01:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 25 22:58:02 2025 GMT Not After : Nov 24 23:03:02 2026 GMT Subject: CN=8DAFDBD814B60F568505D65130E4661FCD7D665F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b6:c3:8b:f2:70:ff:df:10:7a:44:c6:a8:1f: 43:7b:11:2c:71:d3:d3:44:08:3b:93:a9:3a:a9:93: c7:37:10:ea:f1:12:f3:7f:dc:63:1a:80:d6:d3:90: 01:8a:e7:ea:8b:a5:0f:e3:80:84:ac:d8:bb:d9:6e: 59:08:e0:ae:18:60:a6:53:36:92:01:c6:f1:7a:91: 97:b3:79:6f:d5:71:c9:15:8e:5c:bc:bd:88:1c:cf: 6f:e5:96:77:e4:1a:0f:f1:b3:a9:d5:fc:80:c8:2d: d1:ee:4c:c1:0f:e1:64:ac:3a:d3:49:f5:c4:72:bb: 70:e5:64:1a:77:a4:f5:66:20:b9:9e:b7:4c:73:4f: 95:aa:a9:b2:0a:b9:82:57:07:c6:79:67:42:2a:c4: 43:f3:0c:83:fb:ea:36:72:ed:3a:7b:59:6a:0d:28: 82:14:52:00:d0:dd:e8:6f:b8:13:b6:20:d0:b2:8d: 32:9c:73:5c:ca:fe:97:58:fa:69:ea:54:32:a0:c1: 04:51:e7:ad:59:ab:23:0e:1d:a9:40:e7:15:7e:3a: b1:d6:79:fc:aa:8b:51:3e:86:a8:ae:87:77:b8:be: aa:83:6a:85:a3:88:06:d0:cd:4d:27:47:ff:93:59: ea:f8:9b:2a:32:05:5d:1a:09:bf:fa:f5:1d:5f:64: 7e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.190.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:90:be:8d:1b:7a:c5:36:47:b7:a4:66:0b:89:c2:32:18:1d: 50:aa:97:a8:87:39:b3:88:48:b6:f5:f8:50:83:25:a8:11:a3: cf:8e:8e:35:20:1c:b9:57:e1:21:a9:6f:e8:e2:ad:e1:ec:87: 44:77:ba:1c:d1:d7:06:8e:f2:ab:8f:9e:78:9c:04:41:f0:f0: e5:84:04:92:15:73:71:44:1a:ee:80:1b:d4:6c:51:8e:82:ed: f9:35:ab:38:a4:56:43:11:52:88:8d:64:d3:2e:c0:08:c1:2d: 22:b6:16:b5:b3:81:2d:e4:47:9c:08:08:b4:4a:90:8e:9e:e6: b3:11:cf:7e:1f:55:70:33:31:81:1b:3b:64:0e:8f:05:43:8a: 97:be:b2:aa:93:29:82:64:aa:91:68:13:3e:56:64:e5:9b:b5: b6:7d:c8:41:4b:eb:ed:5b:80:fa:e6:60:a1:35:41:d4:b0:50: 29:f1:df:a0:1d:50:ba:e1:d0:4d:47:24:af:64:fc:65:3c:f9: 92:9c:72:bc:cc:3d:bf:a7:39:a7:af:6c:94:5a:26:6e:99:36: 6e:35:ea:28:05:5c:a3:72:1a:8f:b1:b9:45:73:d3:c0:54:c8: 70:1c:f1:11:d5:ee:2a:9d:f3:4c:f4:dd:67:36:26:53:49:cb: cc:e5:2f:8f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVn0CG4x2BWtgNBnEhpc/U4fXAQQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNTIyNTgwMloX DTI2MTEyNDIzMDMwMlowMzExMC8GA1UEAxMoOERBRkRCRDgxNEI2MEY1Njg1MDVE NjUxMzBFNDY2MUZDRDdENjY1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKq2w4vycP/fEHpExqgfQ3sRLHHT00QIO5OpOqmTxzcQ6vES83/cYxqA1tOQ AYrn6oulD+OAhKzYu9luWQjgrhhgplM2kgHG8XqRl7N5b9VxyRWOXLy9iBzPb+WW d+QaD/GzqdX8gMgt0e5MwQ/hZKw600n1xHK7cOVkGnek9WYguZ63THNPlaqpsgq5 glcHxnlnQirEQ/MMg/vqNnLtOntZag0oghRSANDd6G+4E7Yg0LKNMpxzXMr+l1j6 aepUMqDBBFHnrVmrIw4dqUDnFX46sdZ5/KqLUT6GqK6Hd7i+qoNqhaOIBtDNTSdH /5NZ6vibKjIFXRoJv/r1HV9kfn0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI2v29gUtg9WhQXWUTDkZh/NfWZfMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82ZTliMGJhZC02NmI5LTRmMjgtYTdjNS1lOWE5ZmUxMjBhZDcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlOWIwYmFk LTY2YjktNGYyOC1hN2M1LWU5YTlmZTEyMGFkNy8wLzhEQUZEQkQ4MTRCNjBGNTY4 NTA1RDY1MTMwRTQ2NjFGQ0Q3RDY2NUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnqL4wDQYJKoZIhvcNAQELBQADggEBAH6Qvo0besU2R7ekZguJwjIYHVCql6iH ObOISLb1+FCDJagRo8+OjjUgHLlX4SGpb+jireHsh0R3uhzR1waO8quPnnicBEHw 8OWEBJIVc3FEGu6AG9RsUY6C7fk1qzikVkMRUoiNZNMuwAjBLSK2FrWzgS3kR5wI CLRKkI6e5rMRz34fVXAzMYEbO2QOjwVDipe+sqqTKYJkqpFoEz5WZOWbtbZ9yEFL 6+1bgPrmYKE1QdSwUCnx36AdULrh0E1HJK9k/GU8+ZKccrzMPb+nOaevbJRaJm6Z Nm416igFXKNyGo+xuUVz08BUyHAc8RHV7iqd80z03Wc2JlNJy8zlL48= -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:27 2025 by rpki-client