This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.cer File: BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.cer (raw, json) Hash identifier: perZZPbtdjkXa9czMH2V2lOcya2t17JALbKV2uHhATc= Subject key identifier: BE:69:E9:E2:99:CE:2D:FF:17:6C:7E:FA:B1:45:44:2D:3C:79:0D:C8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6DC7AE735B4BD5F8138ECC2F921C2571319362DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.mft caRepository: rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 12 Sep 2025 01:40:55 +0000 Certificate not after: Fri 11 Sep 2026 01:45:55 +0000 Subordinate resources: IP: 202.80.112.0/20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c7:ae:73:5b:4b:d5:f8:13:8e:cc:2f:92:1c:25:71:31:93:62:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 12 01:40:55 2025 GMT Not After : Sep 11 01:45:55 2026 GMT Subject: CN=BE69E9E299CE2DFF176C7EFAB145442D3C790DC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6f:66:16:f5:77:8e:df:42:b5:f8:07:1d:ca: ff:75:9b:c5:57:0c:4a:ec:3a:12:d2:9f:fa:50:5f: 8e:80:59:8e:dc:f4:b1:2e:a9:a3:dc:b1:7d:8a:bb: 74:b1:dc:86:c0:20:af:a8:0f:fa:6e:87:73:78:eb: 4b:20:fb:fe:13:b4:ca:08:90:ad:28:fe:63:94:88: d1:ae:2e:b5:86:6b:f1:5a:a7:96:b0:aa:3e:b1:1e: 2b:df:04:b5:8b:9b:4f:68:b4:07:e5:da:4d:de:b5: ce:98:68:60:0e:57:78:70:cb:8b:56:b8:50:2c:94: 46:bd:e3:94:e5:b9:7b:08:24:3b:0e:7f:2d:51:3a: a7:f4:df:32:81:38:4e:76:59:91:cb:9b:82:da:c1: 62:57:c8:51:f3:7f:88:8f:8b:3b:43:6b:6e:7e:01: b0:7f:bd:22:2a:6e:aa:4c:0e:f0:c7:33:eb:04:fd: 3d:43:19:ba:e7:ea:ab:5f:3d:18:c4:2d:16:ca:3b: 79:3b:c8:a7:a5:80:ce:73:58:ee:ac:8b:c1:2f:ed: 2f:5c:6b:fd:f1:66:b6:b7:3b:c1:dc:7c:26:e4:86: ad:20:e8:60:b3:3b:61:9a:12:c3:a5:74:c9:b5:1c: df:21:46:3d:25:91:1e:8a:77:f5:43:d9:0c:7b:62: f3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BE:69:E9:E2:99:CE:2D:FF:17:6C:7E:FA:B1:45:44:2D:3C:79:0D:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.80.112.0/20 Signature Algorithm: sha256WithRSAEncryption 20:d5:57:4a:fe:d1:9f:ff:3e:85:91:93:c7:44:66:ff:d9:9a: 26:f8:93:98:62:e0:94:d6:e7:91:4b:77:c7:a1:44:6e:74:0d: 9f:f6:84:1c:44:26:4f:ed:14:63:d5:8a:d9:23:ae:01:b4:65: bd:50:0d:ba:53:9d:63:83:56:dd:62:49:66:4a:cd:53:6c:5b: 22:e5:5e:29:63:25:e6:5c:de:e2:3f:ce:fc:70:e2:8f:1e:dc: d8:b5:d0:37:5d:cc:ca:24:0e:a1:e8:e8:59:cd:85:15:f7:e4: 7f:dc:64:79:23:cc:89:bb:c9:27:be:d3:db:07:04:be:48:da: e9:49:fd:6f:6b:eb:10:dd:bf:63:04:5d:8e:df:09:79:84:04: 71:7d:b7:dc:7c:b0:23:1d:50:f7:34:b5:11:c1:a5:2a:65:71: f9:90:06:39:d4:20:bc:07:ea:0d:ee:5e:d8:0e:6c:51:85:62: 5e:5d:74:de:66:c2:60:b5:6b:89:46:b5:2c:33:95:19:eb:87: f8:a8:99:80:f4:0e:71:4c:d5:25:6e:2c:90:5a:0a:cc:08:09: 85:e5:78:46:3b:c7:d2:50:b2:bc:83:d5:7c:2b:e0:ec:87:01: 54:30:b2:92:e6:9d:67:4a:cb:f3:08:5c:90:1d:86:ef:9a:d6: 7e:59:d1:1d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUbceuc1tL1fgTjswvkhwlcTGTYtwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxMjAxNDA1NVoX DTI2MDkxMTAxNDU1NVowMzExMC8GA1UEAxMoQkU2OUU5RTI5OUNFMkRGRjE3NkM3 RUZBQjE0NTQ0MkQzQzc5MERDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNvZhb1d47fQrX4Bx3K/3WbxVcMSuw6EtKf+lBfjoBZjtz0sS6po9yxfYq7 dLHchsAgr6gP+m6Hc3jrSyD7/hO0ygiQrSj+Y5SI0a4utYZr8VqnlrCqPrEeK98E tYubT2i0B+XaTd61zphoYA5XeHDLi1a4UCyURr3jlOW5ewgkOw5/LVE6p/TfMoE4 TnZZkcubgtrBYlfIUfN/iI+LO0Nrbn4BsH+9IipuqkwO8Mcz6wT9PUMZuufqq189 GMQtFso7eTvIp6WAznNY7qyLwS/tL1xr/fFmtrc7wdx8JuSGrSDoYLM7YZoSw6V0 ybUc3yFGPSWRHop39UPZDHti8zcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFL5p6eKZzi3/F2x++rFFRC08eQ3IMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMzhhMjMxOS1iNGZmLTQ5NzMtOGRhOS1jNDFhZDJmNzMxZjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzOGEyMzE5 LWI0ZmYtNDk3My04ZGE5LWM0MWFkMmY3MzFmMy8wL0JFNjlFOUUyOTlDRTJERkYx NzZDN0VGQUIxNDU0NDJEM0M3OTBEQzgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATKUHAwDQYJKoZIhvcNAQELBQADggEBACDVV0r+0Z//PoWRk8dEZv/Zmib4k5hi 4JTW55FLd8ehRG50DZ/2hBxEJk/tFGPVitkjrgG0Zb1QDbpTnWODVt1iSWZKzVNs WyLlXiljJeZc3uI/zvxw4o8e3Ni10DddzMokDqHo6FnNhRX35H/cZHkjzIm7ySe+ 09sHBL5I2ulJ/W9r6xDdv2MEXY7fCXmEBHF9t9x8sCMdUPc0tRHBpSplcfmQBjnU ILwH6g3uXtgObFGFYl5ddN5mwmC1a4lGtSwzlRnrh/iomYD0DnFM1SVuLJBaCswI CYXleEY7x9JQsryD1Xwr4OyHAVQwspLmnWdKy/MIXJAdhu+a1n5Z0R0= -----END CERTIFICATE-----Generated at Wed Dec 3 13:56:50 2025 by rpki-client