This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A5959C75F8AC190DC22C7C3276CF95834D5CA687.cer File: A5959C75F8AC190DC22C7C3276CF95834D5CA687.cer (raw, json) Hash identifier: xp+FXxqGaD+xYoYo6HGeZmB2F4hAvAv3FML1/Yvw1Z0= Subject key identifier: A5:95:9C:75:F8:AC:19:0D:C2:2C:7C:32:76:CF:95:83:4D:5C:A6:87 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 06D30977C7E05936D917CE1090FF3C2DFA5CDD88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/A5959C75F8AC190DC22C7C3276CF95834D5CA687.mft caRepository: rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 08 Oct 2025 01:06:27 +0000 Certificate not after: Wed 07 Oct 2026 01:11:27 +0000 Subordinate resources: IP: 103.76.31.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:d3:09:77:c7:e0:59:36:d9:17:ce:10:90:ff:3c:2d:fa:5c:dd:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 8 01:06:27 2025 GMT Not After : Oct 7 01:11:27 2026 GMT Subject: CN=A5959C75F8AC190DC22C7C3276CF95834D5CA687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ae:53:63:a1:3f:47:63:b5:f8:f1:01:a9:5d: ab:ba:1f:96:e5:ed:f7:21:33:a9:52:6a:b8:0b:30: 12:0b:0f:57:be:88:5a:6d:61:46:db:f4:97:5b:0a: 3d:7d:6c:40:72:b6:05:4c:77:fc:f0:62:bb:fe:65: 0a:90:72:17:fb:4c:f0:f2:13:81:af:6e:5e:c0:36: 55:65:c2:12:f8:fe:2f:56:c1:ae:50:8e:ab:73:4c: 32:3f:b9:82:cb:a4:18:90:4f:2e:1f:57:f1:df:d5: fe:ee:14:29:0e:46:4e:37:89:aa:ef:9f:d0:82:f1: 35:df:c1:98:4a:63:a2:f4:12:85:8c:0f:a7:2e:b9: cf:2e:56:9e:e9:c2:1b:8c:d3:6b:d4:43:fd:a9:91: 71:32:e4:c9:64:9d:ff:81:76:38:93:33:af:c5:54: 06:30:c4:5c:d2:51:6d:10:da:c0:ff:f0:1a:be:7b: f8:58:ea:77:c5:77:5f:82:19:7c:0e:db:23:c0:e5: 34:fe:e3:6e:00:df:06:1c:81:74:8d:50:6f:4b:e4: a6:8a:71:a0:ab:89:c1:85:b9:26:36:fe:38:07:cf: 00:9c:73:49:23:ef:4d:71:0b:ad:f4:92:ad:82:66: e0:ac:6c:88:46:a0:bb:59:77:1d:e7:04:28:68:7f: 13:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A5:95:9C:75:F8:AC:19:0D:C2:2C:7C:32:76:CF:95:83:4D:5C:A6:87 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/A5959C75F8AC190DC22C7C3276CF95834D5CA687.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.31.0/24 Signature Algorithm: sha256WithRSAEncryption 52:7c:41:1d:9d:b6:73:cf:63:13:d5:60:26:64:c8:1d:8b:0f: 9b:99:2c:be:4e:80:19:d8:51:8f:52:89:b4:79:99:e8:f4:c3: 53:71:b9:b6:03:0f:6a:1a:d5:e4:b6:d2:2b:9a:96:8e:e4:d6: 52:73:ce:12:8b:af:b1:2e:b7:60:74:06:1f:91:52:09:34:73: 02:e4:b2:37:a1:77:b3:ff:fd:0f:42:2a:1a:dc:c1:08:5a:59: 23:bd:22:5b:02:91:fc:95:74:df:b7:5a:85:63:9b:02:a1:20: 56:c6:ec:74:d5:ec:3b:d6:09:c6:01:a7:f9:0d:ad:a3:9e:23: de:cd:83:af:a5:9d:1b:c0:a3:2b:fe:2c:c9:6d:05:98:97:f0: 18:cb:59:ad:49:ed:98:0a:7f:81:c5:f6:0a:f6:0a:f5:85:2e: d7:e6:13:52:f0:23:3c:0e:32:1a:0f:c1:2f:41:5d:1f:da:7d: 99:8d:77:b3:fa:22:11:b1:1d:df:28:68:d1:35:a5:95:96:c8: 17:18:9d:27:72:63:a7:30:e5:19:3c:dc:4b:cd:c9:16:47:39: b7:1a:2d:8a:3c:0e:c5:69:25:30:2a:a6:71:c7:0f:4d:9a:83: 34:32:21:36:40:6d:d0:fa:06:39:ad:bd:0f:3c:96:dc:f4:0c: 4b:3d:9a:59 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUBtMJd8fgWTbZF84QkP88Lfpc3YgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAwODAxMDYyN1oX DTI2MTAwNzAxMTEyN1owMzExMC8GA1UEAxMoQTU5NTlDNzVGOEFDMTkwREMyMkM3 QzMyNzZDRjk1ODM0RDVDQTY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJeuU2OhP0djtfjxAaldq7ofluXt9yEzqVJquAswEgsPV76IWm1hRtv0l1sK PX1sQHK2BUx3/PBiu/5lCpByF/tM8PITga9uXsA2VWXCEvj+L1bBrlCOq3NMMj+5 gsukGJBPLh9X8d/V/u4UKQ5GTjeJqu+f0ILxNd/BmEpjovQShYwPpy65zy5WnunC G4zTa9RD/amRcTLkyWSd/4F2OJMzr8VUBjDEXNJRbRDawP/wGr57+Fjqd8V3X4IZ fA7bI8DlNP7jbgDfBhyBdI1Qb0vkpopxoKuJwYW5Jjb+OAfPAJxzSSPvTXELrfSS rYJm4KxsiEagu1l3HecEKGh/E8ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKWVnHX4rBkNwix8MnbPlYNNXKaHMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZDYxYzc1MC04ODBmLTQ5OGItYTY5OC0xZjQ3ODBmYTY5ZmYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNjFjNzUw LTg4MGYtNDk4Yi1hNjk4LTFmNDc4MGZhNjlmZi8wL0E1OTU5Qzc1RjhBQzE5MERD MjJDN0MzMjc2Q0Y5NTgzNEQ1Q0E2ODcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnTB8wDQYJKoZIhvcNAQELBQADggEBAFJ8QR2dtnPPYxPVYCZkyB2LD5uZLL5O gBnYUY9SibR5mej0w1NxubYDD2oa1eS20iualo7k1lJzzhKLr7Eut2B0Bh+RUgk0 cwLksjehd7P//Q9CKhrcwQhaWSO9IlsCkfyVdN+3WoVjmwKhIFbG7HTV7DvWCcYB p/kNraOeI97Ng6+lnRvAoyv+LMltBZiX8BjLWa1J7ZgKf4HF9gr2CvWFLtfmE1Lw IzwOMhoPwS9BXR/afZmNd7P6IhGxHd8oaNE1pZWWyBcYnSdyY6cw5Rk83EvNyRZH ObcaLYo8DsVpJTAqpnHHD02agzQyITZAbdD6BjmtvQ88ltz0DEs9mlk= -----END CERTIFICATE-----Generated at Wed Dec 3 13:17:16 2025 by rpki-client