This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B7A3DE017FB3D740B29322D818D5C6A8FE6D4C30.cer File: B7A3DE017FB3D740B29322D818D5C6A8FE6D4C30.cer (raw, json) Hash identifier: wFaUgAKPl30UvxvvXkcLecgVByabJOMP4oCZYLobYxk= Subject key identifier: B7:A3:DE:01:7F:B3:D7:40:B2:93:22:D8:18:D5:C6:A8:FE:6D:4C:30 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 15F5A844189A4CB24659D981C3F3334EA48D554C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0616c04d-d9e0-4c1f-8a14-e23bf2744592/0/B7A3DE017FB3D740B29322D818D5C6A8FE6D4C30.mft caRepository: rsync://repo-rpki.idnic.net/repo/0616c04d-d9e0-4c1f-8a14-e23bf2744592/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 14 Nov 2025 09:41:06 +0000 Certificate not after: Fri 13 Nov 2026 09:46:06 +0000 Subordinate resources: IP: 103.215.60.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:f5:a8:44:18:9a:4c:b2:46:59:d9:81:c3:f3:33:4e:a4:8d:55:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 09:41:06 2025 GMT Not After : Nov 13 09:46:06 2026 GMT Subject: CN=B7A3DE017FB3D740B29322D818D5C6A8FE6D4C30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fd:d1:ce:66:bb:45:25:a8:6a:8c:3b:d3:0c: 8a:7f:43:9e:5a:7a:b9:ec:e0:9a:8e:1f:c4:39:91: 7a:8a:bb:96:36:f5:14:18:82:38:99:8e:49:3a:99: d0:39:c6:b9:ec:4a:64:17:88:3b:a2:d9:85:6f:a2: 2e:a2:ae:b4:9e:34:5e:9a:73:f5:d5:ab:7b:62:d5: f1:62:e1:50:d2:65:31:6c:b3:55:5e:04:e5:7e:61: 5f:bd:2b:1a:48:7d:cf:cc:c3:df:7e:f4:6d:43:a4: ff:5e:2e:b1:58:b9:c9:62:1e:e5:bd:4f:62:54:b7: a2:49:a1:94:4d:ff:9a:25:0e:3f:52:08:84:ba:0d: 8a:85:47:a5:3e:fc:f2:4f:e9:60:7a:77:21:ee:63: 7a:c0:92:06:7c:8d:2b:fd:5f:bc:e6:94:7f:f8:aa: 28:13:78:56:de:fc:80:da:60:85:b2:27:c1:a4:0a: 05:d6:b0:80:54:a8:b4:8a:9a:9b:59:e0:70:4a:c1: df:06:3d:05:fa:cc:61:0e:7f:39:b5:47:fb:0b:99: 22:8f:b1:65:e9:23:21:1a:da:a2:40:96:84:dd:68: 9a:1e:0f:ed:b2:25:ac:d1:03:96:7f:5a:5c:5d:40: 5f:54:74:4c:6b:9c:04:30:cf:6e:64:88:bb:23:a3: 16:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B7:A3:DE:01:7F:B3:D7:40:B2:93:22:D8:18:D5:C6:A8:FE:6D:4C:30 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0616c04d-d9e0-4c1f-8a14-e23bf2744592/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0616c04d-d9e0-4c1f-8a14-e23bf2744592/0/B7A3DE017FB3D740B29322D818D5C6A8FE6D4C30.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.215.60.0/23 Signature Algorithm: sha256WithRSAEncryption 23:ab:8d:d3:e8:5f:62:9b:58:ef:62:78:e8:80:aa:a6:50:7d: 2d:f2:49:09:dc:ba:a4:18:b7:e4:59:de:73:96:a0:93:58:cd: 4a:e8:a9:71:bb:6c:c8:3b:08:f4:b4:5f:6f:07:f6:e6:21:db: 7f:3e:59:f8:e5:4a:97:a4:c9:4e:ba:48:d4:09:65:f6:a5:06: bb:40:81:7c:cf:2b:44:a1:51:c9:5e:fa:44:0e:c9:bc:7d:9e: e7:2c:1b:d0:1d:7f:6e:6f:40:83:3e:b5:03:3d:f7:f7:cb:78: 9c:0b:ee:de:73:17:be:f5:ea:11:38:30:c5:4c:30:7c:59:98: a1:a2:83:cf:3f:15:ce:7a:f5:4b:86:1f:2e:34:fd:a4:40:db: 92:18:14:5e:4a:e0:ee:9e:1b:3e:24:80:1b:e3:38:1f:f3:8e: c1:51:3f:93:84:ae:91:cb:71:83:0e:29:e1:ec:8c:df:e1:34: 7c:a0:c9:40:2e:72:1d:20:13:d5:c6:a1:a7:12:3a:d8:e1:da: 25:b1:c6:54:9f:2b:5e:c3:40:c7:39:46:c9:fd:f5:f6:2c:66: 58:8d:96:c7:c7:d4:23:e8:65:2f:ff:ab:23:e6:c1:31:b8:e5: c9:73:fa:c9:cd:35:1a:32:d7:6a:90:93:ed:05:09:12:9e:b3: b7:2f:8e:32 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUFfWoRBiaTLJGWdmBw/MzTqSNVUwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExNDA5NDEwNloX DTI2MTExMzA5NDYwNlowMzExMC8GA1UEAxMoQjdBM0RFMDE3RkIzRDc0MEIyOTMy MkQ4MThENUM2QThGRTZENEMzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANb90c5mu0UlqGqMO9MMin9Dnlp6uezgmo4fxDmReoq7ljb1FBiCOJmOSTqZ 0DnGuexKZBeIO6LZhW+iLqKutJ40Xppz9dWre2LV8WLhUNJlMWyzVV4E5X5hX70r Gkh9z8zD3370bUOk/14usVi5yWIe5b1PYlS3okmhlE3/miUOP1IIhLoNioVHpT78 8k/pYHp3Ie5jesCSBnyNK/1fvOaUf/iqKBN4Vt78gNpghbInwaQKBdawgFSotIqa m1ngcErB3wY9BfrMYQ5/ObVH+wuZIo+xZekjIRraokCWhN1omh4P7bIlrNEDln9a XF1AX1R0TGucBDDPbmSIuyOjFtsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLej3gF/s9dAspMi2BjVxqj+bUwwMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNjE2YzA0ZC1kOWUwLTRjMWYtOGExNC1lMjNiZjI3NDQ1OTIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MTZjMDRk LWQ5ZTAtNGMxZi04YTE0LWUyM2JmMjc0NDU5Mi8wL0I3QTNERTAxN0ZCM0Q3NDBC MjkzMjJEODE4RDVDNkE4RkU2RDRDMzAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFn1zwwDQYJKoZIhvcNAQELBQADggEBACOrjdPoX2KbWO9ieOiAqqZQfS3ySQnc uqQYt+RZ3nOWoJNYzUroqXG7bMg7CPS0X28H9uYh238+WfjlSpekyU66SNQJZfal BrtAgXzPK0ShUcle+kQOybx9nucsG9Adf25vQIM+tQM99/fLeJwL7t5zF7716hE4 MMVMMHxZmKGig88/Fc569UuGHy40/aRA25IYFF5K4O6eGz4kgBvjOB/zjsFRP5OE rpHLcYMOKeHsjN/hNHygyUAuch0gE9XGoacSOtjh2iWxxlSfK17DQMc5Rsn99fYs ZliNlsfH1CPoZS//qyPmwTG45clz+snNNRoy12qQk+0FCRKes7cvjjI= -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:40 2025 by rpki-client