This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.cer File: C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.cer (raw, json) Hash identifier: ouxmQMclJYpS04mqqoUCKFTqA/am3WVz0D3ChXAWpJs= Subject key identifier: C3:5E:D8:5B:36:F5:D5:19:D2:CD:1D:47:4B:E5:1C:13:F4:9A:7E:47 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 23B328548E6C51FC14CC714874E32484772D8981 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.mft caRepository: rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 20 Nov 2025 06:47:22 +0000 Certificate not after: Thu 19 Nov 2026 06:52:22 +0000 Subordinate resources: IP: 203.14.18.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:b3:28:54:8e:6c:51:fc:14:cc:71:48:74:e3:24:84:77:2d:89:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 20 06:47:22 2025 GMT Not After : Nov 19 06:52:22 2026 GMT Subject: CN=C35ED85B36F5D519D2CD1D474BE51C13F49A7E47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:86:28:d6:88:4c:af:d5:89:59:ec:d6:0c:88: 3d:e6:d6:1d:de:ee:16:80:35:d9:ab:1d:c5:bf:c7: d6:a7:36:fd:02:fd:ae:fb:87:2a:f6:ea:34:85:4e: 57:00:85:44:0e:a3:59:8f:d9:96:4d:dd:97:57:dd: 29:15:0d:73:c6:be:57:ef:f1:5d:2a:6b:a1:f6:a1: 53:c3:aa:a2:5b:75:15:22:84:b7:30:0b:23:f9:85: 1e:7e:27:17:4e:05:9d:6d:ac:da:d6:17:57:13:7e: 1e:cf:ba:31:f5:29:67:26:8b:2d:84:12:4b:51:04: b8:ce:22:91:a5:45:ac:19:a6:44:5d:80:48:4a:0b: 95:db:09:84:70:42:a9:ac:56:e3:17:da:83:dd:f2: 5b:d3:1c:b8:b8:d9:45:15:6d:16:cb:2f:0e:8e:5d: 5a:c5:2b:75:8b:41:d9:d4:79:18:10:9c:14:0c:35: f0:dc:69:65:82:a4:98:9e:44:05:c8:02:70:f9:da: a6:6c:35:cf:15:70:84:e4:8a:99:b8:d2:de:b4:d9: 41:fd:3a:b6:0a:91:d3:0d:5e:f7:9a:bb:aa:04:61: 08:15:53:12:b0:98:c0:8d:b9:6a:7b:d8:08:52:03: 42:09:07:2d:c2:dd:29:9a:ef:6f:fe:e2:ac:b9:71: df:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C3:5E:D8:5B:36:F5:D5:19:D2:CD:1D:47:4B:E5:1C:13:F4:9A:7E:47 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.14.18.0/24 Signature Algorithm: sha256WithRSAEncryption 72:6c:0c:e1:ed:c8:b1:12:3f:a7:68:16:6e:f0:23:85:7e:1e: a4:17:b3:63:07:03:ca:52:a6:69:25:4a:83:16:33:26:4b:a4: be:de:3c:b8:ee:ea:74:c3:80:95:32:e5:eb:21:53:f0:fc:36: b2:40:6e:04:7e:7a:5b:f9:92:15:e9:b5:a0:49:99:97:52:77: b3:be:91:c0:bf:3b:00:33:77:73:7c:0d:1e:ef:e4:34:c5:53: d8:6e:ee:35:aa:d2:3d:2e:ba:52:fa:d1:b3:35:fb:76:e5:82: e0:c5:ef:7d:b4:c3:51:33:d0:19:47:e7:02:37:90:4f:0b:5a: cf:fd:97:61:ed:4b:f0:a7:13:ed:03:d4:fd:45:63:ee:55:5f: 10:bc:b4:13:fc:a7:b3:34:fd:a0:01:cd:14:57:0f:06:1a:57: 7d:00:92:63:ce:a9:38:63:cb:ea:79:e9:ff:bf:0a:08:39:3f: 84:f7:0e:0c:5c:fa:fa:88:2f:31:31:ae:c0:8d:33:2b:d9:eb: f7:1d:d8:52:bd:af:be:ac:9e:b7:7a:b3:1f:c4:8b:e7:dd:37: 35:86:a7:9f:76:8b:85:cf:68:33:ff:34:de:60:19:dc:09:c3: d1:42:f4:2f:88:c4:2e:45:7f:08:dc:5e:32:0c:12:d6:19:0e: f0:5c:85:2d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUI7MoVI5sUfwUzHFIdOMkhHctiYEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyMDA2NDcyMloX DTI2MTExOTA2NTIyMlowMzExMC8GA1UEAxMoQzM1RUQ4NUIzNkY1RDUxOUQyQ0Qx RDQ3NEJFNTFDMTNGNDlBN0U0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWGKNaITK/ViVns1gyIPebWHd7uFoA12asdxb/H1qc2/QL9rvuHKvbqNIVO VwCFRA6jWY/Zlk3dl1fdKRUNc8a+V+/xXSprofahU8Oqolt1FSKEtzALI/mFHn4n F04FnW2s2tYXVxN+Hs+6MfUpZyaLLYQSS1EEuM4ikaVFrBmmRF2ASEoLldsJhHBC qaxW4xfag93yW9McuLjZRRVtFssvDo5dWsUrdYtB2dR5GBCcFAw18NxpZYKkmJ5E BcgCcPnapmw1zxVwhOSKmbjS3rTZQf06tgqR0w1e95q7qgRhCBVTErCYwI25anvY CFIDQgkHLcLdKZrvb/7irLlx30kCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMNe2Fs29dUZ0s0dR0vlHBP0mn5HMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85NTM2NjZlMS0xZTQxLTQyZWQtYWJiYy1hOGMwODdmM2YzMzkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1MzY2NmUx LTFlNDEtNDJlZC1hYmJjLWE4YzA4N2YzZjMzOS8wL0MzNUVEODVCMzZGNUQ1MTlE MkNEMUQ0NzRCRTUxQzEzRjQ5QTdFNDcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADLDhIwDQYJKoZIhvcNAQELBQADggEBAHJsDOHtyLESP6doFm7wI4V+HqQXs2MH A8pSpmklSoMWMyZLpL7ePLju6nTDgJUy5eshU/D8NrJAbgR+elv5khXptaBJmZdS d7O+kcC/OwAzd3N8DR7v5DTFU9hu7jWq0j0uulL60bM1+3blguDF7320w1Ez0BlH 5wI3kE8LWs/9l2HtS/CnE+0D1P1FY+5VXxC8tBP8p7M0/aABzRRXDwYaV30AkmPO qThjy+p56f+/Cgg5P4T3Dgxc+vqILzExrsCNMyvZ6/cd2FK9r76snrd6sx/Ei+fd NzWGp592i4XPaDP/NN5gGdwJw9FC9C+IxC5FfwjcXjIMEtYZDvBchS0= -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:31 2025 by rpki-client