This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer (raw, json) Hash identifier: WqnQL/8ZbvearqPXyVLXK12IR714akrUsVJXcs/009I= Subject key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6DC6F9903C6A097CF7D17FD6560C6324FB4D465D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft caRepository: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 14 Nov 2025 03:59:42 +0000 Certificate not after: Fri 13 Nov 2026 04:04:42 +0000 Subordinate resources: IP: 103.169.224.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c6:f9:90:3c:6a:09:7c:f7:d1:7f:d6:56:0c:63:24:fb:4d:46:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 03:59:42 2025 GMT Not After : Nov 13 04:04:42 2026 GMT Subject: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:0c:08:3a:8f:55:32:1a:f3:c5:b8:2a:df:19: e3:2b:d2:b2:d1:a5:62:f6:95:d7:b2:8d:1a:ca:68: 70:41:a7:94:44:9b:32:d6:c0:d3:12:ad:60:e4:84: e2:80:c0:5e:2c:d3:95:fa:91:d1:91:d4:36:ff:a0: 4c:e0:6e:f2:2b:56:34:9b:de:54:61:16:aa:a1:a1: 8b:60:25:3a:92:2d:90:ab:c5:d5:21:eb:14:44:63: ad:79:25:cb:af:89:86:92:1d:5e:88:28:ed:ee:3b: f2:1a:a7:00:75:5b:e9:48:1d:5a:a5:1a:7c:e4:ff: 54:63:b3:87:fc:3b:b2:0c:8f:22:5e:60:0c:c3:1d: 0b:27:69:a3:a8:02:b8:e3:f3:3f:d7:c6:17:ad:97: ab:68:e5:1d:d8:78:e6:46:f4:8f:c5:e7:90:40:2c: f0:91:d1:ba:21:7f:c5:6d:a7:3b:5d:6e:5f:4b:38: ec:8b:bc:a1:83:1b:94:ab:69:8f:f2:7f:9f:18:2b: 24:70:cb:f0:57:9f:95:32:03:83:3c:58:55:f6:ac: 7c:21:0d:56:89:93:40:72:b1:f5:50:28:8c:71:92: 11:b3:38:be:1e:71:6a:09:10:32:7b:b3:91:7a:10: d7:ae:cd:72:36:66:44:2b:de:29:85:85:64:22:0c: 27:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.224.0/23 Signature Algorithm: sha256WithRSAEncryption 99:99:eb:27:5e:19:eb:c3:0b:e1:63:96:2e:ec:32:4e:bc:f1: f9:e2:30:40:30:cd:c5:15:f0:fe:0b:65:b9:1f:87:89:54:d0: 1e:13:f2:63:6a:51:e5:f4:52:64:43:96:5c:4b:9e:47:3d:32: a0:be:20:3b:14:9a:50:b0:a3:0b:21:56:d0:86:30:4e:81:4c: 1d:c0:2a:ac:4e:16:1b:6b:d1:42:33:3d:3e:dd:08:9b:0e:05: c3:68:90:9e:92:e8:4f:ff:d2:32:cf:95:fb:38:58:2a:ce:0f: da:4f:54:1a:6e:81:4c:89:b4:10:21:b2:d0:99:17:b0:23:b3: 9b:18:e6:20:a6:69:f0:fc:67:fa:37:e5:dd:98:c0:b1:1a:be: fb:31:73:eb:e4:25:2e:69:7c:3e:7c:5e:12:5c:1f:5b:fa:23: cc:65:3a:18:ea:eb:24:8f:64:06:19:31:43:04:c7:97:34:38: 6b:3f:1b:e1:38:0d:c5:3d:5c:7f:3e:86:0e:27:08:1f:af:07: f0:f6:b1:5f:41:89:8b:bd:1f:1a:73:d8:01:07:b8:00:9e:f6: 5c:09:ff:ef:a4:5a:41:0f:c9:56:f8:e1:ca:ba:60:66:14:e6: 96:f9:73:bd:95:79:3e:f8:e6:cd:1d:0d:80:c7:71:77:7e:0f: 47:d1:de:6e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUbcb5kDxqCXz30X/WVgxjJPtNRl0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExNDAzNTk0MloX DTI2MTExMzA0MDQ0MlowMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThE NzJDOEU1NjIzRkI3NDg2N0Y1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPAMCDqPVTIa88W4Kt8Z4yvSstGlYvaV17KNGspocEGnlESbMtbA0xKtYOSE 4oDAXizTlfqR0ZHUNv+gTOBu8itWNJveVGEWqqGhi2AlOpItkKvF1SHrFERjrXkl y6+JhpIdXogo7e478hqnAHVb6UgdWqUafOT/VGOzh/w7sgyPIl5gDMMdCydpo6gC uOPzP9fGF62Xq2jlHdh45kb0j8XnkEAs8JHRuiF/xW2nO11uX0s47Iu8oYMblKtp j/J/nxgrJHDL8FeflTIDgzxYVfasfCENVomTQHKx9VAojHGSEbM4vh5xagkQMnuz kXoQ167NcjZmRCveKYWFZCIMJ3MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK0qD2swJL/xFFjXLI5WI/t0hn9TMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2YWY0ZGU1 LTUwMzctNDkxNy05YTkzLTAxOTJjNjk1OWJmYi8wL0FEMkEwRjZCMzAyNEJGRjEx NDU4RDcyQzhFNTYyM0ZCNzQ4NjdGNTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqeAwDQYJKoZIhvcNAQELBQADggEBAJmZ6ydeGevDC+Fjli7sMk688fniMEAw zcUV8P4LZbkfh4lU0B4T8mNqUeX0UmRDllxLnkc9MqC+IDsUmlCwowshVtCGME6B TB3AKqxOFhtr0UIzPT7dCJsOBcNokJ6S6E//0jLPlfs4WCrOD9pPVBpugUyJtBAh stCZF7Ajs5sY5iCmafD8Z/o35d2YwLEavvsxc+vkJS5pfD58XhJcH1v6I8xlOhjq 6ySPZAYZMUMEx5c0OGs/G+E4DcU9XH8+hg4nCB+vB/D2sV9BiYu9Hxpz2AEHuACe 9lwJ/++kWkEPyVb44cq6YGYU5pb5c72VeT745s0dDYDHcXd+D0fR3m4= -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:31 2025 by rpki-client