This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B152586AE46FCAB640629D941147319E05FCF34B.cer File: B152586AE46FCAB640629D941147319E05FCF34B.cer (raw, json) Hash identifier: JLP/BIRjiUxUnIjkuvCVsW9mki0ktJL0gTBG9WI8UAI= Subject key identifier: B1:52:58:6A:E4:6F:CA:B6:40:62:9D:94:11:47:31:9E:05:FC:F3:4B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 02B39F2F6B83E8B577D5290AB0D4245DE9E634B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0/B152586AE46FCAB640629D941147319E05FCF34B.mft caRepository: rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 21 Nov 2025 10:31:07 +0000 Certificate not after: Fri 20 Nov 2026 10:36:07 +0000 Subordinate resources: IP: 103.176.227.0/24 IP: 2001:df0:7c40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 18:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:b3:9f:2f:6b:83:e8:b5:77:d5:29:0a:b0:d4:24:5d:e9:e6:34:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 21 10:31:07 2025 GMT Not After : Nov 20 10:36:07 2026 GMT Subject: CN=B152586AE46FCAB640629D941147319E05FCF34B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e2:de:c6:cb:5d:e9:2e:4e:22:bb:ac:f6:eb: 32:10:f7:cf:3f:eb:e2:58:04:02:86:fe:77:00:5c: 93:eb:2c:bd:6c:74:41:23:2a:4f:5a:4d:cc:bf:1d: 9a:5e:0c:2d:83:15:e2:7c:91:07:ec:40:25:e7:82: 31:79:0b:7c:47:03:9b:09:1e:9d:03:4c:ab:6e:39: 8d:a6:20:01:70:30:d8:8b:1c:2c:7a:44:b1:4b:93: 8a:72:ec:5a:e0:28:cb:41:e2:f8:e2:96:40:6f:80: 77:99:60:72:79:c1:57:9d:96:3c:e9:e8:43:a5:e9: c3:41:9d:ea:4c:ad:4b:a9:26:a6:16:a7:27:f1:5b: 93:a1:0c:72:5a:ba:fc:eb:96:b5:72:23:56:81:4e: 5a:b5:68:c1:a3:be:f7:dc:7b:86:d1:31:92:93:d1: 54:5c:e7:27:71:8b:a1:77:d3:63:fd:82:72:d2:a3: 50:f1:29:2d:61:93:94:37:01:a7:de:c9:f8:2e:d0: b1:30:3a:ca:6a:2a:c1:27:52:d4:76:d6:71:d4:c3: 65:a9:91:c4:99:f8:0e:a8:1c:31:3e:55:ee:3a:be: f6:5b:7d:fe:26:6b:76:b3:8f:ad:45:24:22:f1:c8: 7c:e8:e2:f7:c8:71:23:c7:9f:4b:4e:bc:bc:0b:06: 44:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:52:58:6A:E4:6F:CA:B6:40:62:9D:94:11:47:31:9E:05:FC:F3:4B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0/B152586AE46FCAB640629D941147319E05FCF34B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.227.0/24 IPv6: 2001:df0:7c40::/48 Signature Algorithm: sha256WithRSAEncryption 06:36:f9:58:2b:43:0a:e3:23:b6:05:aa:cd:c7:35:c1:4e:b1: 8a:94:a4:e7:bb:4f:93:a4:9b:d3:bd:c2:3f:ec:4b:c8:48:2f: 73:6f:2b:f4:45:18:41:d5:87:6a:9f:7c:13:10:ff:13:51:97: 30:91:af:26:f2:34:77:9a:a2:78:12:d0:f6:e7:0e:7a:16:95: 72:f7:c8:b9:47:c5:6d:f8:1b:30:85:f2:c1:14:3c:0c:1f:71: 12:6e:ae:24:a9:64:ec:22:5e:a1:98:48:64:5d:a8:03:0a:57: 73:ad:1f:c0:de:06:76:98:e0:54:ed:00:bf:4f:5f:0e:c9:c7: f6:dc:45:d0:31:a1:4c:9b:3a:70:a6:04:12:31:91:9c:03:77: 64:e7:3f:ae:7b:c2:eb:ff:c6:8c:ce:6b:eb:f4:df:44:1d:c0: 88:89:eb:f6:24:46:cc:39:e4:d1:d7:5c:79:8e:f3:01:c2:c3: cf:b3:cd:f5:13:8e:c4:11:40:9b:50:9a:d5:ce:ce:ab:b0:2d: db:6f:0b:c9:76:28:5f:8b:95:d0:8b:e3:b4:19:96:3a:7a:a5: 58:87:78:5a:fa:d2:af:43:7a:dc:f3:fd:ab:5b:2e:d5:79:84: e2:b2:a8:09:04:5d:92:55:0f:43:a4:79:cc:f7:20:82:35:ab: 05:35:d8:b3 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUArOfL2uD6LV31SkKsNQkXenmNLQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyMTEwMzEwN1oX DTI2MTEyMDEwMzYwN1owMzExMC8GA1UEAxMoQjE1MjU4NkFFNDZGQ0FCNjQwNjI5 RDk0MTE0NzMxOUUwNUZDRjM0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKri3sbLXekuTiK7rPbrMhD3zz/r4lgEAob+dwBck+ssvWx0QSMqT1pNzL8d ml4MLYMV4nyRB+xAJeeCMXkLfEcDmwkenQNMq245jaYgAXAw2IscLHpEsUuTinLs WuAoy0Hi+OKWQG+Ad5lgcnnBV52WPOnoQ6Xpw0Gd6kytS6kmphanJ/Fbk6EMclq6 /OuWtXIjVoFOWrVowaO+99x7htExkpPRVFznJ3GLoXfTY/2CctKjUPEpLWGTlDcB p97J+C7QsTA6ymoqwSdS1HbWcdTDZamRxJn4DqgcMT5V7jq+9lt9/iZrdrOPrUUk IvHIfOji98hxI8efS068vAsGRJ0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLFSWGrkb8q2QGKdlBFHMZ4F/PNLMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82YTllMjg5OC0wMjNiLTQ3NDEtODczNS1hMDcxOGNjNmNmMmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhOWUyODk4 LTAyM2ItNDc0MS04NzM1LWEwNzE4Y2M2Y2YyYi8wL0IxNTI1ODZBRTQ2RkNBQjY0 MDYyOUQ5NDExNDczMTlFMDVGQ0YzNEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnsOMwDwQCAAIwCQMHACABDfB8QDANBgkqhkiG9w0BAQsFAAOCAQEABjb5WCtD CuMjtgWqzcc1wU6xipSk57tPk6Sb073CP+xLyEgvc28r9EUYQdWHap98ExD/E1GX MJGvJvI0d5qieBLQ9ucOehaVcvfIuUfFbfgbMIXywRQ8DB9xEm6uJKlk7CJeoZhI ZF2oAwpXc60fwN4GdpjgVO0Av09fDsnH9txF0DGhTJs6cKYEEjGRnAN3ZOc/rnvC 6//GjM5r6/TfRB3AiInr9iRGzDnk0ddceY7zAcLDz7PN9ROOxBFAm1Ca1c7Oq7At 228LyXYoX4uV0IvjtBmWOnqlWId4WvrSr0N63PP9q1su1XmE4rKoCQRdklUPQ6R5 zPcggjWrBTXYsw== -----END CERTIFICATE-----Generated at Wed Dec 3 15:31:59 2025 by rpki-client