This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.cer File: B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.cer (raw, json) Hash identifier: r9R8Rtbu56mbUOfVma2P1NfkfMAZ9eJt4uU4GX4Ei/4= Subject key identifier: B1:0F:CC:E0:27:20:E9:64:D2:93:42:E0:F3:BD:FC:67:9A:4D:7B:D6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6E8837C016C20EFA70EE30C7549584CD4BD64049 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0/B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.mft caRepository: rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Dec 2025 17:10:03 +0000 Certificate not after: Tue 01 Dec 2026 17:15:03 +0000 Subordinate resources: IP: 103.147.245.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:88:37:c0:16:c2:0e:fa:70:ee:30:c7:54:95:84:cd:4b:d6:40:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 2 17:10:03 2025 GMT Not After : Dec 1 17:15:03 2026 GMT Subject: CN=B10FCCE02720E964D29342E0F3BDFC679A4D7BD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6f:1c:67:82:f3:42:87:96:3d:65:f7:6c:04: 7f:31:1a:75:2c:d0:34:81:7d:bb:3c:98:7c:6f:6c: 8a:61:f0:c2:7a:b9:2b:d1:c2:11:35:23:ac:ae:52: bc:9e:26:ce:c6:92:2c:11:85:0d:20:a4:9b:8b:c4: 9b:b8:65:0c:01:94:2a:d2:22:2b:47:4e:fa:67:38: b4:41:89:8d:97:66:42:11:82:b7:b1:30:fe:a4:9d: 77:8c:98:d6:0e:1e:76:09:0a:4f:12:e5:96:2d:d3: 9b:13:db:d8:87:b4:33:c5:1e:c4:4b:fc:8a:a9:9e: 41:dd:f1:30:3b:7a:d1:8f:81:f5:73:fa:05:03:31: 7b:1a:d4:bf:ed:26:67:e7:f9:f8:46:58:ee:ac:b8: c7:c4:f7:03:10:78:aa:ce:49:23:91:8d:0e:a4:4d: 31:2f:df:7e:b2:13:6b:9d:0e:3e:84:80:6e:65:6b: 35:1e:68:df:a2:d0:6e:46:5a:a2:2c:88:9e:33:69: b5:3e:3b:ae:10:3c:15:3b:ab:1f:55:3d:aa:9d:4c: 4d:68:64:d6:51:b4:f3:7a:5f:dc:b0:7f:8a:73:59: 71:69:33:5f:dd:83:8e:88:b0:a4:94:04:6a:d8:d9: 56:40:7a:5f:e7:67:a1:33:e7:32:df:14:6a:48:17: 9e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:0F:CC:E0:27:20:E9:64:D2:93:42:E0:F3:BD:FC:67:9A:4D:7B:D6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0/B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.245.0/24 Signature Algorithm: sha256WithRSAEncryption 74:96:e3:4d:01:58:e6:ac:b1:da:71:02:53:8c:bb:f1:d5:3f: b0:e8:4f:37:e5:b5:fa:78:e9:5f:cf:ff:3f:c7:38:89:88:41: 86:02:16:e9:cd:5b:b0:4a:66:53:39:b9:0a:23:3a:a4:95:fc: 18:aa:6c:83:ce:13:75:f0:e6:11:4f:a6:6d:e5:ae:50:db:ca: 5e:c8:ae:af:7a:8d:d5:0e:90:62:3d:6f:86:8e:5e:2a:8e:36: f3:de:bc:12:a7:d6:9a:78:39:41:10:3c:d1:90:45:ab:06:b0: 46:33:6a:b4:b3:ea:66:9b:da:c0:69:71:a4:eb:86:b7:6f:59: d1:9c:b7:b9:ba:63:32:0c:8d:04:8f:50:8e:5f:e8:7c:c2:d3: d6:d9:a6:71:7b:91:87:05:99:8a:24:a9:53:3e:61:a1:86:69: 2a:5b:12:48:1f:99:e2:b3:ef:9a:da:cd:a8:c7:63:8b:79:a4: f6:db:d3:ad:d6:0b:58:e5:aa:0e:d6:ac:72:25:c0:b6:71:0c: 06:bf:5b:5c:fe:f3:04:56:13:20:e7:de:a9:71:11:9d:de:08: 99:b1:e3:d7:c0:41:5b:9a:ed:53:11:f8:3c:08:21:55:a8:d9: 3a:64:b3:4a:f5:3c:69:91:84:ac:9d:53:5c:2e:f2:fb:de:0f: ec:a9:0c:d3 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUbog3wBbCDvpw7jDHVJWEzUvWQEkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIwMjE3MTAwM1oX DTI2MTIwMTE3MTUwM1owMzExMC8GA1UEAxMoQjEwRkNDRTAyNzIwRTk2NEQyOTM0 MkUwRjNCREZDNjc5QTREN0JENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOdvHGeC80KHlj1l92wEfzEadSzQNIF9uzyYfG9simHwwnq5K9HCETUjrK5S vJ4mzsaSLBGFDSCkm4vEm7hlDAGUKtIiK0dO+mc4tEGJjZdmQhGCt7Ew/qSdd4yY 1g4edgkKTxLlli3TmxPb2Ie0M8UexEv8iqmeQd3xMDt60Y+B9XP6BQMxexrUv+0m Z+f5+EZY7qy4x8T3AxB4qs5JI5GNDqRNMS/ffrITa50OPoSAbmVrNR5o36LQbkZa oiyInjNptT47rhA8FTurH1U9qp1MTWhk1lG083pf3LB/inNZcWkzX92DjoiwpJQE atjZVkB6X+dnoTPnMt8UakgXnoUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLEPzOAnIOlk0pNC4PO9/GeaTXvWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNTU5MzQ0NS1hMjVkLTQ4ZTAtYWJjMi1hYjA1ZTA2NTA2NTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1NTkzNDQ1 LWEyNWQtNDhlMC1hYmMyLWFiMDVlMDY1MDY1NS8wL0IxMEZDQ0UwMjcyMEU5NjRE MjkzNDJFMEYzQkRGQzY3OUE0RDdCRDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnk/UwDQYJKoZIhvcNAQELBQADggEBAHSW400BWOassdpxAlOMu/HVP7DoTzfl tfp46V/P/z/HOImIQYYCFunNW7BKZlM5uQojOqSV/BiqbIPOE3Xw5hFPpm3lrlDb yl7Irq96jdUOkGI9b4aOXiqONvPevBKn1pp4OUEQPNGQRasGsEYzarSz6mab2sBp caTrhrdvWdGct7m6YzIMjQSPUI5f6HzC09bZpnF7kYcFmYokqVM+YaGGaSpbEkgf meKz75razajHY4t5pPbb063WC1jlqg7WrHIlwLZxDAa/W1z+8wRWEyDn3qlxEZ3e CJmx49fAQVua7VMR+DwIIVWo2Tpks0r1PGmRhKydU1wu8vveD+ypDNM= -----END CERTIFICATE-----Generated at Wed Dec 3 13:18:28 2025 by rpki-client