This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer File: B70932ED6C688D58897E32E1D5C990B20910FF02.cer (raw, json) Hash identifier: LyShIJUQHFJwgykoyyUzyULNMrSJ1+Pimk0LqbwcErI= Subject key identifier: B7:09:32:ED:6C:68:8D:58:89:7E:32:E1:D5:C9:90:B2:09:10:FF:02 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 73E646C0CF6F401B943924E83DC7885DDCF1AB34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.mft caRepository: rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 06 Nov 2025 12:42:08 +0000 Certificate not after: Thu 05 Nov 2026 12:47:08 +0000 Subordinate resources: IP: 103.129.40.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:e6:46:c0:cf:6f:40:1b:94:39:24:e8:3d:c7:88:5d:dc:f1:ab:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 6 12:42:08 2025 GMT Not After : Nov 5 12:47:08 2026 GMT Subject: CN=B70932ED6C688D58897E32E1D5C990B20910FF02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c6:2d:5b:93:5a:41:ac:0d:72:16:20:33:2a: e7:e9:ac:71:ad:fa:3a:f7:46:7a:9a:0a:4b:6c:8a: 4c:45:34:50:ab:b0:42:0e:97:04:4a:b4:f9:c5:20: ba:c3:b7:86:b1:a8:80:4a:c7:24:dc:88:af:a3:6d: 90:52:e6:8c:9a:9a:69:cc:39:fb:17:8c:aa:1c:aa: 97:1b:94:bc:76:a7:b0:7d:a2:8d:73:18:f8:89:3c: 10:cb:77:3f:a2:ef:02:7e:07:ac:a6:7f:22:3e:96: a5:69:c1:59:c7:3c:44:76:32:97:97:f9:6f:de:09: eb:c7:58:39:0f:20:27:6e:fe:f6:e6:df:33:14:e2: 37:30:d9:f5:34:3a:97:21:21:02:0d:0b:8e:b5:f7: 67:97:c1:e5:54:d5:a4:84:72:23:38:77:8d:50:bb: 07:ee:9a:26:0a:71:71:90:d8:a9:54:a1:bb:b5:28: a0:5e:3a:d1:9e:23:29:84:73:60:75:4f:26:20:90: 87:53:e2:df:ec:e0:73:d1:5d:34:ef:0c:20:62:34: a3:89:2e:d8:8a:e0:a7:8b:ee:01:12:0d:6b:6e:91: fc:6b:18:3d:0d:77:cc:be:e9:05:d2:7f:06:5b:ef: 1b:44:08:7b:40:f5:a8:bf:36:e6:52:b8:91:1b:00: 53:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B7:09:32:ED:6C:68:8D:58:89:7E:32:E1:D5:C9:90:B2:09:10:FF:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.40.0/22 Signature Algorithm: sha256WithRSAEncryption 91:17:9c:9b:82:d4:f6:30:f7:3b:7b:77:ba:52:52:f2:ff:c5: 4f:0e:10:4f:f8:a7:37:3c:18:73:d8:1c:4a:02:d6:04:74:5c: 92:57:e1:89:a2:bc:b7:3f:f1:53:65:19:43:1b:de:0b:4e:6b: 9d:b1:2b:6f:0c:ae:6c:fd:95:61:22:6f:8a:0f:72:90:7d:99: 4c:bd:8b:98:0f:e8:e8:25:63:a6:3a:11:54:94:14:e4:17:ed: d5:b3:45:7f:dd:5b:c8:ab:e4:e5:e6:2d:a6:4c:55:9c:95:03: 8a:57:98:f6:9b:5a:ce:70:1a:2c:ae:01:17:d2:8a:3b:a3:03: 77:09:47:a5:8c:dd:00:9e:f6:8c:18:0d:52:1b:37:36:ad:b7: 41:55:94:04:c1:9c:85:81:7c:6c:e9:71:f5:81:87:6a:40:bd: 4e:79:85:9e:e5:61:31:cd:2e:dc:74:ea:fa:f1:03:3d:00:63: a1:25:76:ec:ad:1f:08:8d:66:0a:39:99:b5:84:e5:91:2e:e1: d6:7f:5b:9f:b3:9c:22:a9:4b:43:4d:fc:ed:27:93:0a:0c:78: d0:79:c5:ed:0f:2e:4e:ad:6d:5a:ea:bf:6a:58:19:d5:77:9e: b8:59:db:4d:ad:1b:14:aa:49:c8:b8:de:0a:71:87:96:3b:41: c7:4c:49:29 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUc+ZGwM9vQBuUOSToPceIXdzxqzQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNjEyNDIwOFoX DTI2MTEwNTEyNDcwOFowMzExMC8GA1UEAxMoQjcwOTMyRUQ2QzY4OEQ1ODg5N0Uz MkUxRDVDOTkwQjIwOTEwRkYwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMXGLVuTWkGsDXIWIDMq5+msca36OvdGepoKS2yKTEU0UKuwQg6XBEq0+cUg usO3hrGogErHJNyIr6NtkFLmjJqaacw5+xeMqhyqlxuUvHansH2ijXMY+Ik8EMt3 P6LvAn4HrKZ/Ij6WpWnBWcc8RHYyl5f5b94J68dYOQ8gJ27+9ubfMxTiNzDZ9TQ6 lyEhAg0LjrX3Z5fB5VTVpIRyIzh3jVC7B+6aJgpxcZDYqVShu7UooF460Z4jKYRz YHVPJiCQh1Pi3+zgc9FdNO8MIGI0o4ku2Irgp4vuARINa26R/GsYPQ13zL7pBdJ/ BlvvG0QIe0D1qL825lK4kRsAU8kCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLcJMu1saI1YiX4y4dXJkLIJEP8CMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hOTkwZGE0OS05ODYyLTQxZGUtODMzZS1iMzA0ZjBjMWFlNTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5OTBkYTQ5 LTk4NjItNDFkZS04MzNlLWIzMDRmMGMxYWU1Ny8wL0I3MDkzMkVENkM2ODhENTg4 OTdFMzJFMUQ1Qzk5MEIyMDkxMEZGMDIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJngSgwDQYJKoZIhvcNAQELBQADggEBAJEXnJuC1PYw9zt7d7pSUvL/xU8OEE/4 pzc8GHPYHEoC1gR0XJJX4YmivLc/8VNlGUMb3gtOa52xK28Mrmz9lWEib4oPcpB9 mUy9i5gP6OglY6Y6EVSUFOQX7dWzRX/dW8ir5OXmLaZMVZyVA4pXmPabWs5wGiyu ARfSijujA3cJR6WM3QCe9owYDVIbNzatt0FVlATBnIWBfGzpcfWBh2pAvU55hZ7l YTHNLtx06vrxAz0AY6ElduytHwiNZgo5mbWE5ZEu4dZ/W5+znCKpS0NN/O0nkwoM eNB5xe0PLk6tbVrqv2pYGdV3nrhZ202tGxSqSci43gpxh5Y7QcdMSSk= -----END CERTIFICATE-----Generated at Wed Dec 3 12:42:14 2025 by rpki-client