This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer File: D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer (raw, json) Hash identifier: km2U4WkCUOJmHdj4+ueCI87Tmydh2dLCPne60rSHTV8= Subject key identifier: D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1E0B5A1F591DA38F3B34AED54A36FE4BC9CD6378 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.mft caRepository: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 07 Nov 2025 15:22:23 +0000 Certificate not after: Fri 06 Nov 2026 15:27:23 +0000 Subordinate resources: IP: 103.181.252.0/23 IP: 2001:df0:7ac0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:0b:5a:1f:59:1d:a3:8f:3b:34:ae:d5:4a:36:fe:4b:c9:cd:63:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 15:22:23 2025 GMT Not After : Nov 6 15:27:23 2026 GMT Subject: CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:33:fd:27:f0:ec:cb:31:66:ce:07:e1:b8:89: 0a:66:8b:27:3f:4d:63:76:df:23:9d:8b:b0:1c:52: 99:ff:5a:14:69:92:1d:c0:87:cb:55:7c:02:bb:18: c0:2c:41:98:c1:22:a1:74:2b:b7:79:bf:1e:6c:9f: 45:2c:45:87:59:99:5a:12:cc:a6:0a:a6:23:b5:cd: ec:6a:ee:a8:de:12:12:fb:30:ef:dc:78:03:d3:f0: 5e:c1:e3:d5:b3:42:bd:9c:e4:bb:3c:57:3e:5c:da: d2:d3:3c:49:36:de:2c:ce:32:38:b3:ca:69:b7:7b: 46:1c:da:52:a4:17:35:2e:f4:57:df:95:9d:bf:07: ba:3c:05:31:ef:fe:e5:92:8c:66:d4:94:b4:0a:74: 39:10:2e:8a:c9:30:77:4b:b8:81:7e:30:4f:26:f0: 98:ce:f2:43:22:78:4b:d7:bc:df:8d:75:73:bb:2c: 60:90:70:d0:84:14:04:24:7e:00:5b:a2:23:1b:ea: 19:32:03:44:87:33:86:da:c7:48:b7:7c:4b:ad:7e: a7:b7:ab:fc:c5:3c:7e:e7:7b:b9:6a:27:94:b0:56: 86:0a:80:6f:0a:bb:22:73:76:fa:d7:b6:34:99:0e: a5:44:df:f4:8f:fa:6f:0a:80:9b:43:99:44:59:5d: 59:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.252.0/23 IPv6: 2001:df0:7ac0::/48 Signature Algorithm: sha256WithRSAEncryption 88:94:5b:bc:d4:33:20:ca:58:33:f7:17:9e:50:04:68:c6:16: 99:31:9c:62:a9:f4:5c:6b:05:57:48:5d:bb:77:dd:f7:22:52: d6:64:3e:90:7e:a3:7e:4b:da:5e:12:d6:05:fa:7a:9c:35:1b: a5:1f:ab:5b:f0:88:c4:9b:e6:2b:69:8b:be:34:21:84:1d:f6: 45:67:a3:76:85:a4:ee:03:81:5f:0d:6f:98:f8:23:c9:df:75: b8:bc:6b:21:d8:f0:65:60:fe:b3:37:c9:04:f2:a4:f0:27:15: e2:7d:cc:d4:67:81:7d:c6:71:b8:77:fd:b8:cc:71:f1:61:d1: 7e:95:87:ef:42:12:b1:bb:51:5f:a0:44:82:3c:4b:02:68:18: ee:90:a2:40:70:c0:0b:43:83:aa:d9:c8:7c:90:72:35:fa:00: 13:10:17:f9:20:65:76:94:66:7b:e5:29:db:2a:99:8f:7e:82: cd:54:1a:e0:8f:4e:b3:a7:63:6e:62:12:cb:c9:67:78:9f:54: 21:89:a5:0a:b7:83:a7:2d:a4:d8:2c:40:a2:01:bc:b3:d2:e9: b7:24:23:41:cd:f8:93:22:c9:85:54:52:a7:f7:62:0f:6b:1c: 6d:0b:07:15:a5:59:2a:3d:cd:6d:bb:39:a1:17:8b:2a:2a:c5: ba:f4:81:3f -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUHgtaH1kdo487NK7VSjb+S8nNY3gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNzE1MjIyM1oX DTI2MTEwNjE1MjcyM1owMzExMC8GA1UEAxMoRDI5RUQ1QjVGQzREQkZGRTQ0N0RE RDAyMkMwRDAxRUIwMEJBOEYxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYz/Sfw7MsxZs4H4biJCmaLJz9NY3bfI52LsBxSmf9aFGmSHcCHy1V8ArsY wCxBmMEioXQrt3m/HmyfRSxFh1mZWhLMpgqmI7XN7GruqN4SEvsw79x4A9PwXsHj 1bNCvZzkuzxXPlza0tM8STbeLM4yOLPKabd7RhzaUqQXNS70V9+Vnb8HujwFMe/+ 5ZKMZtSUtAp0ORAuiskwd0u4gX4wTybwmM7yQyJ4S9e83411c7ssYJBw0IQUBCR+ AFuiIxvqGTIDRIczhtrHSLd8S61+p7er/MU8fud7uWonlLBWhgqAbwq7InN2+te2 NJkOpUTf9I/6bwqAm0OZRFldWfcCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNKe1bX8Tb/+RH3dAiwNAesAuo8UMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yODUyNDNlNS1jNjYwLTQxMTItYmRjMy01OTQ0MTJkZWRjNGQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4NTI0M2U1 LWM2NjAtNDExMi1iZGMzLTU5NDQxMmRlZGM0ZC8wL0QyOUVENUI1RkM0REJGRkU0 NDdEREQwMjJDMEQwMUVCMDBCQThGMTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFntfwwDwQCAAIwCQMHACABDfB6wDANBgkqhkiG9w0BAQsFAAOCAQEAiJRbvNQz IMpYM/cXnlAEaMYWmTGcYqn0XGsFV0hdu3fd9yJS1mQ+kH6jfkvaXhLWBfp6nDUb pR+rW/CIxJvmK2mLvjQhhB32RWejdoWk7gOBXw1vmPgjyd91uLxrIdjwZWD+szfJ BPKk8CcV4n3M1GeBfcZxuHf9uMxx8WHRfpWH70ISsbtRX6BEgjxLAmgY7pCiQHDA C0ODqtnIfJByNfoAExAX+SBldpRme+Up2yqZj36CzVQa4I9Os6djbmISy8lneJ9U IYmlCreDpy2k2CxAogG8s9LptyQjQc34kyLJhVRSp/diD2scbQsHFaVZKj3Nbbs5 oReLKirFuvSBPw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:05 2025 by rpki-client