This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D454E26475969CECE78A97B9152AFC76DB922AA3.cer File: D454E26475969CECE78A97B9152AFC76DB922AA3.cer (raw, json) Hash identifier: Xpdn4NN6SwajMZ+Mtb/OdQtsCOo1vKi1k1M7Nb4d9Pk= Subject key identifier: D4:54:E2:64:75:96:9C:EC:E7:8A:97:B9:15:2A:FC:76:DB:92:2A:A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 469A344331DC459333E4FF044B89177AD21E5C13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0/D454E26475969CECE78A97B9152AFC76DB922AA3.mft caRepository: rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 04 Nov 2025 05:50:38 +0000 Certificate not after: Tue 03 Nov 2026 05:55:38 +0000 Subordinate resources: IP: 103.164.61.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:9a:34:43:31:dc:45:93:33:e4:ff:04:4b:89:17:7a:d2:1e:5c:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 4 05:50:38 2025 GMT Not After : Nov 3 05:55:38 2026 GMT Subject: CN=D454E26475969CECE78A97B9152AFC76DB922AA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7c:8c:b9:29:75:3e:ec:42:ee:23:6e:83:e5: 77:02:2e:24:84:22:c4:b5:8c:df:4f:42:cd:9a:17: bd:eb:12:b9:15:97:a1:51:16:5a:9b:dd:8a:14:1e: 99:2b:6c:60:1b:83:ce:eb:4e:3d:14:ff:ce:00:6c: 63:8e:55:06:f7:97:a2:92:d2:44:5c:56:d9:d0:4f: 16:e7:71:5b:52:f0:90:6a:77:7b:d5:7e:b7:89:ec: 8f:fc:c8:c9:05:61:8c:ce:1f:2d:25:a7:69:77:97: 38:08:1a:36:28:ef:25:46:5b:39:ef:19:3b:8b:9f: 34:d4:eb:26:54:a2:59:45:f3:2b:81:0e:6e:68:60: e6:25:d2:88:ea:88:dd:84:f1:42:36:e9:62:2f:56: d6:8a:99:ee:23:79:83:7a:a6:03:df:e6:37:6e:6d: 1e:71:69:7f:51:3c:32:fc:32:82:56:97:af:79:2a: 09:b4:1e:71:7b:60:c7:2b:ef:50:ff:6e:99:5f:e1: 4d:66:55:e4:2f:6a:06:bd:c2:4f:20:b0:ea:ba:31: f8:1f:15:cf:7a:c9:2b:a0:7b:0b:75:7f:40:ac:56: 16:69:66:ce:2c:d3:d8:1a:66:cc:de:88:c2:c3:5a: 00:cf:32:9f:7a:9d:c5:04:fd:c8:3d:b3:4d:9c:06: 8c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D4:54:E2:64:75:96:9C:EC:E7:8A:97:B9:15:2A:FC:76:DB:92:2A:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0/D454E26475969CECE78A97B9152AFC76DB922AA3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.61.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:41:dc:43:b7:b9:33:9c:1f:38:94:30:f2:ec:e2:b8:50:b0: 7d:4c:f3:d1:cf:7e:e1:bd:eb:d9:82:20:29:2b:0d:fd:f6:94: b1:70:b6:a7:ad:02:64:34:f9:60:2c:89:ee:0c:65:a8:65:b0: 07:ae:55:61:89:d5:4e:90:de:dc:3e:74:12:56:3f:55:52:ec: 61:19:d4:65:61:00:09:ec:29:79:eb:b0:48:f2:28:57:c4:11: 0d:ee:db:de:c5:1b:c7:c6:37:19:23:38:77:82:a7:88:d8:ec: 0f:25:5a:84:f7:67:42:f3:dd:81:7d:db:fb:73:c1:92:82:1f: 8c:30:cb:2c:2c:4f:37:98:d3:18:1a:29:a5:f7:06:4a:53:8b: a8:19:eb:15:52:80:fc:28:79:36:5b:86:93:73:10:0e:a5:c9: c5:f8:41:8a:db:8f:57:f4:d1:e7:a1:ba:5d:45:f7:34:bf:2b: 89:91:ad:cb:d7:78:2f:8d:cd:98:13:cb:13:a5:47:23:90:94: f1:4b:3b:42:72:16:3d:26:07:be:f4:27:f1:2a:5f:1f:a0:c2: a4:6c:62:c3:20:ee:b6:95:e4:82:90:8b:a9:1e:5f:78:7a:74: e9:4c:d7:5c:b0:97:6f:6e:c8:0c:1f:c1:b5:93:08:10:7e:70: 11:cc:e4:fe -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURpo0QzHcRZMz5P8ES4kXetIeXBMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNDA1NTAzOFoX DTI2MTEwMzA1NTUzOFowMzExMC8GA1UEAxMoRDQ1NEUyNjQ3NTk2OUNFQ0U3OEE5 N0I5MTUyQUZDNzZEQjkyMkFBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALB8jLkpdT7sQu4jboPldwIuJIQixLWM309CzZoXvesSuRWXoVEWWpvdihQe mStsYBuDzutOPRT/zgBsY45VBveXopLSRFxW2dBPFudxW1LwkGp3e9V+t4nsj/zI yQVhjM4fLSWnaXeXOAgaNijvJUZbOe8ZO4ufNNTrJlSiWUXzK4EObmhg5iXSiOqI 3YTxQjbpYi9W1oqZ7iN5g3qmA9/mN25tHnFpf1E8MvwyglaXr3kqCbQecXtgxyvv UP9umV/hTWZV5C9qBr3CTyCw6rox+B8Vz3rJK6B7C3V/QKxWFmlmzizT2BpmzN6I wsNaAM8yn3qdxQT9yD2zTZwGjBcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNRU4mR1lpzs54qXuRUq/HbbkiqjMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iYjE3YzIwNi05YjYzLTRjNTYtOTQzNi00NzVkODIxNDFhNjYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiMTdjMjA2 LTliNjMtNGM1Ni05NDM2LTQ3NWQ4MjE0MWE2Ni8wL0Q0NTRFMjY0NzU5NjlDRUNF NzhBOTdCOTE1MkFGQzc2REI5MjJBQTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnpD0wDQYJKoZIhvcNAQELBQADggEBAHpB3EO3uTOcHziUMPLs4rhQsH1M89HP fuG969mCICkrDf32lLFwtqetAmQ0+WAsie4MZahlsAeuVWGJ1U6Q3tw+dBJWP1VS 7GEZ1GVhAAnsKXnrsEjyKFfEEQ3u297FG8fGNxkjOHeCp4jY7A8lWoT3Z0Lz3YF9 2/tzwZKCH4wwyywsTzeY0xgaKaX3BkpTi6gZ6xVSgPwoeTZbhpNzEA6lycX4QYrb j1f00eehul1F9zS/K4mRrcvXeC+NzZgTyxOlRyOQlPFLO0JyFj0mB770J/EqXx+g wqRsYsMg7raV5IKQi6keX3h6dOlM11ywl29uyAwfwbWTCBB+cBHM5P4= -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:07 2025 by rpki-client