This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.cer File: A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.cer (raw, json) Hash identifier: PCz68SlyFsjJm69XY8S+3Tj6Lbt+jabK2hJ14MoQ9Eo= Subject key identifier: A4:AC:49:C4:F5:5B:F5:D4:AF:3D:42:10:4A:8A:5E:C1:F2:12:3E:6F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 19DA0B8DD7851420E21D0427BE3043E85E732197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.mft caRepository: rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 31 Dec 2025 00:56:32 +0000 Certificate not after: Wed 30 Dec 2026 01:01:32 +0000 Subordinate resources: IP: 103.81.64.0/22 IP: 2400:64c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:da:0b:8d:d7:85:14:20:e2:1d:04:27:be:30:43:e8:5e:73:21:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 31 00:56:32 2025 GMT Not After : Dec 30 01:01:32 2026 GMT Subject: CN=A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d1:3c:a2:82:90:09:0e:29:df:67:1e:65:d2: f3:e1:7d:ee:6d:54:a0:d3:6f:fe:80:a3:b8:79:96: ef:f2:02:2f:4c:60:21:f8:ec:4a:74:73:98:03:42: 54:10:3e:60:a7:32:6d:29:12:4a:d4:93:a4:63:d5: b6:5d:aa:a1:fc:38:a6:e5:15:c4:2e:3c:5d:c8:31: 36:ff:90:81:d4:09:bc:e3:b1:3e:12:a9:26:ab:72: 02:2a:de:34:49:2c:91:a9:b4:93:8b:6f:9b:71:7f: f1:d3:ba:7f:16:9f:c7:f3:65:83:71:71:f2:eb:0c: 3d:51:c7:ae:f2:ef:fd:c4:c8:a2:1a:fe:88:5b:7f: e0:d7:cc:a6:27:1e:ff:48:9d:c9:0b:37:83:d5:dc: d4:ca:1e:1a:ad:db:e5:8a:dc:47:e3:01:d6:d7:bc: f4:f3:8f:7c:cb:00:b4:76:15:9d:08:c5:3a:37:f7: 8e:87:97:33:57:d8:b0:bb:0c:b7:da:a0:99:7e:8a: 1c:ae:10:27:73:cd:10:5e:24:a6:51:af:ec:07:89: 92:34:0f:ec:7e:d7:b2:32:ed:49:6d:4c:56:fa:d1: a0:9b:e3:b7:1d:35:1f:22:d7:c6:12:e4:11:c1:33: 68:89:68:57:bd:d8:99:65:6b:76:72:6a:f5:48:02: 57:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A4:AC:49:C4:F5:5B:F5:D4:AF:3D:42:10:4A:8A:5E:C1:F2:12:3E:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.64.0/22 IPv6: 2400:64c0::/32 Signature Algorithm: sha256WithRSAEncryption 52:9d:5b:67:eb:e8:49:7d:cd:96:a2:81:28:bf:00:32:89:45: 4f:10:ce:dc:49:5b:b6:37:29:af:1f:51:9b:a3:c4:e0:ae:15: 85:b1:59:44:3f:b9:b8:e4:98:46:5f:4a:a3:bf:8c:81:70:f7: f0:86:cf:b0:ca:6e:42:d5:d3:c0:1b:28:9f:2f:e5:30:85:97: 09:0b:a3:58:8c:e0:a7:be:13:7f:9e:cd:7f:df:71:9c:d7:0d: 12:d8:dc:b4:2e:c1:d7:fa:d6:44:a1:72:98:a3:3e:be:fb:cf: 88:ed:bf:cc:a4:06:94:96:11:6f:94:4b:2c:32:f2:12:c9:66: c9:d3:6b:9f:83:1a:30:5d:28:ac:c6:d2:67:35:3e:c3:08:1a: 1d:5f:bf:c6:a3:b0:5d:41:ac:73:89:ea:b7:c5:55:19:cd:d2: 35:a5:30:2f:aa:b0:97:42:c6:6b:87:3c:57:9b:ad:00:e3:30: f4:ce:b2:c8:48:9b:85:d9:76:65:dc:df:e6:5b:55:84:b8:40: 29:6a:01:e1:bb:f3:f4:fc:44:10:09:a5:7c:df:69:fb:1e:7f: 78:7c:53:19:01:a7:94:c7:df:34:da:7a:23:91:bf:cc:0e:82: 3d:71:78:0e:18:2e:52:31:a0:9b:b5:c6:5f:e6:e1:bb:2a:ad: cc:e1:53:9f -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUGdoLjdeFFCDiHQQnvjBD6F5zIZcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIzMTAwNTYzMloX DTI2MTIzMDAxMDEzMlowMzExMC8GA1UEAxMoQTRBQzQ5QzRGNTVCRjVENEFGM0Q0 MjEwNEE4QTVFQzFGMjEyM0U2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTRPKKCkAkOKd9nHmXS8+F97m1UoNNv/oCjuHmW7/ICL0xgIfjsSnRzmANC VBA+YKcybSkSStSTpGPVtl2qofw4puUVxC48XcgxNv+QgdQJvOOxPhKpJqtyAire NEkskam0k4tvm3F/8dO6fxafx/Nlg3Fx8usMPVHHrvLv/cTIohr+iFt/4NfMpice /0idyQs3g9Xc1MoeGq3b5YrcR+MB1te89POPfMsAtHYVnQjFOjf3joeXM1fYsLsM t9qgmX6KHK4QJ3PNEF4kplGv7AeJkjQP7H7XsjLtSW1MVvrRoJvjtx01HyLXxhLk EcEzaIloV73YmWVrdnJq9UgCV7sCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKSsScT1W/XUrz1CEEqKXsHyEj5vMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81NzI4MDQwMC05NjU0LTRkNDUtODg4Yi05MDY3YmFkYTE5MGIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MjgwNDAw LTk2NTQtNGQ0NS04ODhiLTkwNjdiYWRhMTkwYi8wL0E0QUM0OUM0RjU1QkY1RDRB RjNENDIxMDRBOEE1RUMxRjIxMjNFNkYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnUUAwDQQCAAIwBwMFACQAZMAwDQYJKoZIhvcNAQELBQADggEBAFKdW2fr6El9 zZaigSi/ADKJRU8QztxJW7Y3Ka8fUZujxOCuFYWxWUQ/ubjkmEZfSqO/jIFw9/CG z7DKbkLV08AbKJ8v5TCFlwkLo1iM4Ke+E3+ezX/fcZzXDRLY3LQuwdf61kShcpij Pr77z4jtv8ykBpSWEW+USywy8hLJZsnTa5+DGjBdKKzG0mc1PsMIGh1fv8ajsF1B rHOJ6rfFVRnN0jWlMC+qsJdCxmuHPFebrQDjMPTOsshIm4XZdmXc3+ZbVYS4QClq AeG78/T8RBAJpXzfafsef3h8UxkBp5TH3zTaeiORv8wOgj1xeA4YLlIxoJu1xl/m 4bsqrczhU58= -----END CERTIFICATE-----Generated at Mon Feb 2 08:27:01 2026 by rpki-client