This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer File: DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer (raw, json) Hash identifier: XZiA8btrivsJUijtoEHt8OGLv/bPf/8srXE6T5gasfY= Subject key identifier: DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2BB8C2BCE264FBA5C4AB3BB69AB59EA0112B232D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft caRepository: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 07 Nov 2025 04:38:18 +0000 Certificate not after: Fri 06 Nov 2026 04:43:18 +0000 Subordinate resources: IP: 103.166.234.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b8:c2:bc:e2:64:fb:a5:c4:ab:3b:b6:9a:b5:9e:a0:11:2b:23:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 04:38:18 2025 GMT Not After : Nov 6 04:43:18 2026 GMT Subject: CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:68:db:59:30:e2:be:e5:03:82:68:8d:47:52: a1:f4:ff:0c:ec:cf:2d:7a:56:72:82:a8:4e:dc:08: 7a:8d:c8:29:a0:df:3b:1e:4e:ad:d0:2b:0b:0a:12: ce:13:79:44:89:b3:33:53:c2:22:13:9d:d6:40:e7: 26:4d:7a:20:55:c7:59:8b:e4:b1:21:df:d6:ac:71: 64:38:d1:84:fc:2b:6f:94:cd:f5:3f:c1:ce:84:69: 12:f5:89:6c:2a:59:33:eb:65:9d:f0:81:4c:cd:a9: 77:84:ae:8c:c7:f6:65:6b:52:03:19:bf:a8:14:4d: 37:6a:31:19:2b:eb:dd:df:72:cd:86:fd:05:db:34: 70:70:ca:66:26:93:90:e8:f8:b8:00:22:0c:c0:27: be:ef:ab:88:e4:22:55:94:4c:4d:60:7c:15:41:13: a6:7a:75:3e:8e:0f:ec:d4:a0:c1:9b:83:2b:42:47: 9d:a9:60:16:04:ab:00:83:7c:96:f0:98:aa:16:f9: bb:6e:dd:d5:1c:a6:79:51:85:64:f8:71:bb:99:48: a6:eb:9c:41:0e:16:45:36:4b:65:81:b0:95:c4:b3: fc:9e:e0:d3:3c:ba:8e:5d:bb:ed:83:74:bf:17:ce: fb:c4:4c:7e:0d:85:a7:59:14:a6:63:9b:13:1e:9e: cd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.234.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:91:de:a4:91:f1:c8:0e:d9:92:70:46:22:69:02:55:db:ce: d5:61:4b:4c:d3:4e:81:ea:af:ec:67:a2:d5:7b:47:ab:66:6f: f7:2d:e5:e5:7a:9a:27:66:7a:66:ee:fa:73:2d:d9:cf:03:1c: 4d:d7:07:93:02:92:15:17:20:2f:52:2f:ae:24:81:c5:72:80: 2d:67:0e:01:f8:d7:2b:fb:d9:54:53:95:46:75:67:d4:d3:e9: b0:21:c8:aa:1b:5e:fe:79:ca:4d:84:bb:60:3f:b0:07:07:d3: e6:fa:03:6f:b4:38:85:c5:c1:f3:40:e0:a1:8f:d3:ce:b2:8a: 28:c5:a0:5f:2d:3e:33:7f:ba:b9:41:ba:42:56:31:68:64:52: b3:62:f7:7c:fa:c5:61:3f:1b:e0:8e:90:65:de:2d:bf:a8:a9: 59:1e:37:92:48:db:f0:d4:1d:d2:1d:46:96:d5:10:2b:ee:de: 17:be:8c:ea:2b:f4:7b:5d:e5:1a:51:b1:bb:e6:db:9f:e6:4d: d0:42:44:1e:ea:63:3d:23:49:14:cd:39:2f:f8:12:4e:c6:f4: f2:ce:7e:bb:eb:e6:89:a4:8c:5f:75:da:66:4a:9d:7d:2d:df: 7d:b7:7b:5d:77:a7:8e:60:5b:c6:ef:b7:12:ce:ab:4f:b1:70: a7:1f:96:2a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUK7jCvOJk+6XEqzu2mrWeoBErIy0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNzA0MzgxOFoX DTI2MTEwNjA0NDMxOFowMzExMC8GA1UEAxMoREYxOTk0OUNFMTdEQzExNkU3QjdD MjI0OEM5MzM0MDVCN0ExQUVGMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZo21kw4r7lA4JojUdSofT/DOzPLXpWcoKoTtwIeo3IKaDfOx5OrdArCwoS zhN5RImzM1PCIhOd1kDnJk16IFXHWYvksSHf1qxxZDjRhPwrb5TN9T/BzoRpEvWJ bCpZM+tlnfCBTM2pd4SujMf2ZWtSAxm/qBRNN2oxGSvr3d9yzYb9Bds0cHDKZiaT kOj4uAAiDMAnvu+riOQiVZRMTWB8FUETpnp1Po4P7NSgwZuDK0JHnalgFgSrAIN8 lvCYqhb5u27d1RymeVGFZPhxu5lIpuucQQ4WRTZLZYGwlcSz/J7g0zy6jl277YN0 vxfO+8RMfg2Fp1kUpmObEx6ezccCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN8ZlJzhfcEW57fCJIyTNAW3oa7yMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYWVmNzg2Yi02MjI2LTQ0YWYtODUyZC0xZmIwNDVjNGRlYjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhZWY3ODZi LTYyMjYtNDRhZi04NTJkLTFmYjA0NWM0ZGViMy8wL0RGMTk5NDlDRTE3REMxMTZF N0I3QzIyNDhDOTMzNDA1QjdBMUFFRjIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnpuowDQYJKoZIhvcNAQELBQADggEBAF6R3qSR8cgO2ZJwRiJpAlXbztVhS0zT ToHqr+xnotV7R6tmb/ct5eV6midmembu+nMt2c8DHE3XB5MCkhUXIC9SL64kgcVy gC1nDgH41yv72VRTlUZ1Z9TT6bAhyKobXv55yk2Eu2A/sAcH0+b6A2+0OIXFwfNA 4KGP086yiijFoF8tPjN/urlBukJWMWhkUrNi93z6xWE/G+COkGXeLb+oqVkeN5JI 2/DUHdIdRpbVECvu3he+jOor9Htd5RpRsbvm25/mTdBCRB7qYz0jSRTNOS/4Ek7G 9PLOfrvr5omkjF912mZKnX0t3323e113p45gW8bvtxLOq0+xcKcflio= -----END CERTIFICATE-----Generated at Wed Dec 3 13:56:27 2025 by rpki-client