This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer File: BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer (raw, json) Hash identifier: iEMbeKw6sUivCK7FIANMJwvpg8uzXabD+fI5n/W0Kqs= Subject key identifier: BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 606AADE8BD4AF0A19A1EA828B93D24432A16D7AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.mft caRepository: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 06 Nov 2025 00:32:35 +0000 Certificate not after: Thu 05 Nov 2026 00:37:35 +0000 Subordinate resources: IP: 103.121.108.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:6a:ad:e8:bd:4a:f0:a1:9a:1e:a8:28:b9:3d:24:43:2a:16:d7:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 6 00:32:35 2025 GMT Not After : Nov 5 00:37:35 2026 GMT Subject: CN=BE77663F7F3591A0E64D8D5AC98F2635919B4B3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:28:a0:13:db:e5:76:7e:f9:eb:d4:47:c4:57: 7a:5f:07:13:17:12:07:c7:78:02:32:69:67:52:62: 30:a1:e6:f9:1a:37:a7:12:ef:e5:eb:3c:d8:ed:d0: a7:be:c1:fe:42:d3:f6:ad:f7:06:3f:23:7f:35:23: b1:5d:80:22:0c:06:b6:7c:e5:c6:09:9a:ad:eb:ed: 8d:39:21:d5:27:7e:cb:7a:b8:29:c8:9b:a5:7b:91: d5:b4:23:77:f2:67:35:2a:c6:88:00:de:60:d5:73: b2:e0:a7:bf:7c:d1:36:9b:19:00:23:01:cc:ce:b5: f0:a1:3f:08:04:0d:2a:1e:1a:2e:8f:7f:df:72:23: 74:04:a5:df:bc:da:c3:be:e9:86:e2:20:4d:86:66: 48:f9:88:8f:94:51:dc:f5:82:ca:28:01:62:d1:dd: ca:90:f4:4d:85:6a:28:50:c2:6f:24:ff:68:9b:2b: 64:7b:2a:f6:b0:46:c1:6b:f9:6a:b5:4d:25:e3:e4: b8:5f:b0:92:c0:00:bc:19:2d:87:86:3c:c8:bd:45: d5:41:0a:b5:46:6c:f5:b5:fc:aa:83:c9:0c:64:a2: 4b:d1:0b:2a:fa:bd:92:6e:89:ac:42:72:b4:23:f3: e8:8d:0d:2b:a0:bb:d8:86:c2:aa:75:30:5f:57:2c: 29:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.108.0/22 Signature Algorithm: sha256WithRSAEncryption 31:2c:65:b3:49:73:30:c1:aa:95:01:56:9a:20:90:b0:ea:f4: 4d:40:c6:7a:9f:7d:4f:df:da:f9:60:bb:f0:ff:1f:d6:50:e7: ce:4e:4e:3b:fd:7e:d2:00:ca:42:8a:c6:93:e7:9a:8f:79:1e: 10:47:c1:f8:38:6d:d4:fb:4a:2e:54:71:bd:00:c6:3b:8d:7a: 1e:fa:e1:9f:32:72:06:dc:d7:39:73:7e:da:d2:db:36:d3:1f: 2d:27:6e:4d:6b:b6:06:ca:2c:7a:1d:be:92:99:60:e4:ce:0e: d9:06:6c:8f:00:a7:ae:e9:66:02:f9:d0:47:e3:41:28:53:af: d8:f1:d5:74:d5:81:52:5a:b8:a7:99:0b:da:71:4d:30:4c:c9: 36:78:43:1c:0b:ce:f8:a8:2a:73:fd:59:5e:80:4c:a7:7e:f7: 10:ec:dc:c6:b2:e0:b4:e3:5b:c4:99:51:5a:c1:93:93:bf:c7: 31:ec:cd:60:c5:88:58:50:f5:27:72:cf:9c:93:8a:2b:38:ee: 77:11:77:31:6f:5f:45:fa:76:07:9b:1a:92:24:e4:ff:9d:ce: 2a:5a:c0:ce:a4:1e:61:c0:c5:bc:8b:4f:47:e0:13:7d:23:0b: a6:b4:76:bf:39:65:b2:b2:06:29:94:17:d5:0e:5e:1d:f7:d8: d3:4f:65:dc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYGqt6L1K8KGaHqgouT0kQyoW168wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNjAwMzIzNVoX DTI2MTEwNTAwMzczNVowMzExMC8GA1UEAxMoQkU3NzY2M0Y3RjM1OTFBMEU2NEQ4 RDVBQzk4RjI2MzU5MTlCNEIzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKwooBPb5XZ++evUR8RXel8HExcSB8d4AjJpZ1JiMKHm+Ro3pxLv5es82O3Q p77B/kLT9q33Bj8jfzUjsV2AIgwGtnzlxgmarevtjTkh1Sd+y3q4KcibpXuR1bQj d/JnNSrGiADeYNVzsuCnv3zRNpsZACMBzM618KE/CAQNKh4aLo9/33IjdASl37za w77phuIgTYZmSPmIj5RR3PWCyigBYtHdypD0TYVqKFDCbyT/aJsrZHsq9rBGwWv5 arVNJePkuF+wksAAvBkth4Y8yL1F1UEKtUZs9bX8qoPJDGSiS9ELKvq9km6JrEJy tCPz6I0NK6C72IbCqnUwX1csKdcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFL53Zj9/NZGg5k2NWsmPJjWRm0s7MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NGI0ZmU5My03Mjk2LTQ4YjQtYWEwZC1jOGE1YTNkZmQ1OWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjRmZTkz LTcyOTYtNDhiNC1hYTBkLWM4YTVhM2RmZDU5YS8wL0JFNzc2NjNGN0YzNTkxQTBF NjREOEQ1QUM5OEYyNjM1OTE5QjRCM0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJneWwwDQYJKoZIhvcNAQELBQADggEBADEsZbNJczDBqpUBVpogkLDq9E1Axnqf fU/f2vlgu/D/H9ZQ585OTjv9ftIAykKKxpPnmo95HhBHwfg4bdT7Si5Ucb0AxjuN eh764Z8ycgbc1zlzftrS2zbTHy0nbk1rtgbKLHodvpKZYOTODtkGbI8Ap67pZgL5 0EfjQShTr9jx1XTVgVJauKeZC9pxTTBMyTZ4QxwLzvioKnP9WV6ATKd+9xDs3May 4LTjW8SZUVrBk5O/xzHszWDFiFhQ9Sdyz5yTiis47ncRdzFvX0X6dgebGpIk5P+d zipawM6kHmHAxbyLT0fgE30jC6a0dr85ZbKyBimUF9UOXh332NNPZdw= -----END CERTIFICATE-----Generated at Wed Dec 3 12:46:13 2025 by rpki-client