This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D79DCFAD73DC86775F136607372499D1F2C9E25C.cer File: D79DCFAD73DC86775F136607372499D1F2C9E25C.cer (raw, json) Hash identifier: zU6oWT4u62JGJc0VkMzaVsxPtq32G914s+6a9NtVd90= Subject key identifier: D7:9D:CF:AD:73:DC:86:77:5F:13:66:07:37:24:99:D1:F2:C9:E2:5C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0340BD94DFF0B7D187A54AFE2F34FA64796FF3E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/92e95493-ae76-4cef-a08c-a20dfc9d2619/0/D79DCFAD73DC86775F136607372499D1F2C9E25C.mft caRepository: rsync://repo-rpki.idnic.net/repo/92e95493-ae76-4cef-a08c-a20dfc9d2619/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 12 Nov 2025 12:09:51 +0000 Certificate not after: Wed 11 Nov 2026 12:14:51 +0000 Subordinate resources: IP: 103.161.228.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:40:bd:94:df:f0:b7:d1:87:a5:4a:fe:2f:34:fa:64:79:6f:f3:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 12 12:09:51 2025 GMT Not After : Nov 11 12:14:51 2026 GMT Subject: CN=D79DCFAD73DC86775F136607372499D1F2C9E25C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:98:18:e8:f6:3c:51:42:b3:a7:d6:8e:30:62: c3:e8:5b:0c:75:57:b9:b2:45:dd:0a:9c:a0:8b:8d: ef:bd:07:14:9f:dc:5d:ed:61:e6:1d:d5:2b:f1:63: 4a:ed:56:20:21:71:14:d9:6f:0f:42:44:ec:26:4f: 78:78:d2:6a:f7:e4:a9:d4:82:30:24:16:26:9a:55: bc:4f:80:93:e3:01:9b:1b:3c:6e:cc:84:89:da:2b: da:69:11:9b:6a:7d:ec:74:96:4d:49:10:5d:4b:84: 96:d8:ea:76:29:bd:b7:6c:12:71:95:40:6a:51:92: f4:f1:a6:47:e6:46:77:00:ec:c6:e6:f7:c0:b9:d0: 12:fb:f5:8d:b9:e7:ee:40:48:8b:71:13:55:f4:7d: a9:2d:e3:11:56:08:b1:73:7b:3c:a2:fe:ab:94:e5: dd:d7:a3:22:f4:db:0d:77:54:e4:10:c5:7b:d3:c0: d2:6b:61:b8:77:7d:d1:d3:ea:b6:99:86:66:74:9f: 66:da:f0:c7:f3:ef:a7:a6:99:35:a3:54:c4:eb:77: da:e9:1d:c9:bd:2f:ef:59:f4:c9:5b:7b:45:54:b7: b5:01:7c:bf:c2:39:fc:6a:5e:55:8a:e3:99:23:7a: ac:60:99:b7:81:aa:f1:33:4a:6e:fe:ed:7c:52:49: dd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D7:9D:CF:AD:73:DC:86:77:5F:13:66:07:37:24:99:D1:F2:C9:E2:5C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/92e95493-ae76-4cef-a08c-a20dfc9d2619/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/92e95493-ae76-4cef-a08c-a20dfc9d2619/0/D79DCFAD73DC86775F136607372499D1F2C9E25C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.228.0/24 Signature Algorithm: sha256WithRSAEncryption 77:dc:1f:84:c9:90:08:c5:f3:39:26:7e:64:98:41:35:79:de: a4:30:5a:8f:d0:ca:e8:9e:8a:2a:b5:49:e4:3a:3e:a9:ac:39: a8:fe:93:a7:01:e1:87:dd:b9:f7:8a:d9:96:d0:b9:4f:2a:cf: 72:77:9e:5b:89:8d:99:69:fa:cb:0d:d6:9c:8e:a6:a8:11:ff: f4:c0:87:68:3c:0c:d2:a8:0a:25:cb:26:2f:c7:73:c9:6d:c6: 57:e2:d2:aa:99:dd:c2:ab:6b:f8:11:c8:6f:b4:6d:51:b5:67: 2f:ca:2f:ac:b4:a5:e7:c9:8b:8a:31:63:44:3e:ac:53:06:1d: 97:d2:f3:6b:84:f7:5d:e5:e7:97:65:9a:32:a4:9e:0f:6f:55: 08:4f:57:dd:6c:b6:76:32:6d:bd:98:21:66:ad:46:cb:3b:ca: db:87:c6:80:54:95:6e:c4:76:88:31:b5:6c:58:40:78:f7:78: a3:2b:2e:ad:7c:24:b7:69:f5:9c:03:db:37:ce:56:49:22:b9: 7c:fd:24:48:aa:cd:19:1a:aa:27:29:95:51:99:00:19:07:66: 7f:8d:cf:93:82:2e:cb:04:55:51:12:5e:ef:5b:9f:d1:9b:85: 41:57:12:71:d6:90:d0:e6:32:4c:f9:32:bb:cc:60:99:9c:2f: 96:1e:e3:b9 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUA0C9lN/wt9GHpUr+LzT6ZHlv8+UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMjEyMDk1MVoX DTI2MTExMTEyMTQ1MVowMzExMC8GA1UEAxMoRDc5RENGQUQ3M0RDODY3NzVGMTM2 NjA3MzcyNDk5RDFGMkM5RTI1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCYGOj2PFFCs6fWjjBiw+hbDHVXubJF3QqcoIuN770HFJ/cXe1h5h3VK/Fj Su1WICFxFNlvD0JE7CZPeHjSavfkqdSCMCQWJppVvE+Ak+MBmxs8bsyEidor2mkR m2p97HSWTUkQXUuEltjqdim9t2wScZVAalGS9PGmR+ZGdwDsxub3wLnQEvv1jbnn 7kBIi3ETVfR9qS3jEVYIsXN7PKL+q5Tl3dejIvTbDXdU5BDFe9PA0mthuHd90dPq tpmGZnSfZtrwx/Pvp6aZNaNUxOt32ukdyb0v71n0yVt7RVS3tQF8v8I5/GpeVYrj mSN6rGCZt4Gq8TNKbv7tfFJJ3dkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNedz61z3IZ3XxNmBzckmdHyyeJcMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MmU5NTQ5My1hZTc2LTRjZWYtYTA4Yy1hMjBkZmM5ZDI2MTkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyZTk1NDkz LWFlNzYtNGNlZi1hMDhjLWEyMGRmYzlkMjYxOS8wL0Q3OURDRkFENzNEQzg2Nzc1 RjEzNjYwNzM3MjQ5OUQxRjJDOUUyNUMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnoeQwDQYJKoZIhvcNAQELBQADggEBAHfcH4TJkAjF8zkmfmSYQTV53qQwWo/Q yuieiiq1SeQ6PqmsOaj+k6cB4YfdufeK2ZbQuU8qz3J3nluJjZlp+ssN1pyOpqgR //TAh2g8DNKoCiXLJi/Hc8ltxlfi0qqZ3cKra/gRyG+0bVG1Zy/KL6y0pefJi4ox Y0Q+rFMGHZfS82uE913l55dlmjKkng9vVQhPV91stnYybb2YIWatRss7ytuHxoBU lW7EdogxtWxYQHj3eKMrLq18JLdp9ZwD2zfOVkkiuXz9JEiqzRkaqicplVGZABkH Zn+Nz5OCLssEVVESXu9bn9GbhUFXEnHWkNDmMkz5MrvMYJmcL5Ye47k= -----END CERTIFICATE-----Generated at Wed Dec 3 13:57:03 2025 by rpki-client