This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DF3717861F6521730921F11365C5A826CFF24DAA.cer File: DF3717861F6521730921F11365C5A826CFF24DAA.cer (raw, json) Hash identifier: rq4WDCO8j7lviG2o8yt6mRfF92rydO+x1VFVH7yY4Fg= Subject key identifier: DF:37:17:86:1F:65:21:73:09:21:F1:13:65:C5:A8:26:CF:F2:4D:AA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4EAED48CA60AD4EAC6806A06B1431BBD0F482E13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.mft caRepository: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 13 Nov 2025 15:23:19 +0000 Certificate not after: Thu 12 Nov 2026 15:28:19 +0000 Subordinate resources: IP: 2001:df3:5bc0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ae:d4:8c:a6:0a:d4:ea:c6:80:6a:06:b1:43:1b:bd:0f:48:2e:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 13 15:23:19 2025 GMT Not After : Nov 12 15:28:19 2026 GMT Subject: CN=DF3717861F6521730921F11365C5A826CFF24DAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6b:c6:34:46:0f:e3:f3:47:13:1f:76:91:f6: bc:da:82:ce:ff:31:73:e6:2b:4a:95:1f:24:61:3a: b8:df:9e:fd:46:4e:a8:c5:75:4a:39:7a:a8:81:08: 83:a3:06:70:9c:67:8b:a4:5e:82:95:30:a5:22:8e: dc:f8:88:f7:32:ed:d4:8d:53:3d:d2:9c:4c:4b:ca: 9f:0a:e7:b6:50:1b:1f:87:ad:ce:fa:67:d6:ae:f3: 9b:bb:f2:69:ff:e9:25:5c:07:50:d6:cc:66:a2:46: 90:7a:f2:66:27:e2:d7:01:8d:cd:b8:63:bd:2c:72: e0:22:2a:e3:f0:91:93:55:c8:89:5f:10:7f:be:e9: a2:6c:e8:a7:e6:78:fa:44:6a:ad:9f:c5:3a:ee:89: 42:14:ab:2a:bf:24:3a:74:2a:f2:88:43:a7:a8:c1: ed:c5:50:6c:4a:2f:8f:b5:21:8d:21:ef:4f:d0:e7: 4c:4b:03:e6:46:c5:7b:76:a2:2f:c2:0b:b0:52:46: 70:8d:c3:f7:5f:0e:8f:dc:b1:38:9f:0a:ea:d0:50: a0:bc:52:c9:34:fc:8e:98:30:fe:c1:60:c2:3f:7c: d0:bc:5b:f5:aa:13:6f:90:09:e2:3b:ec:0a:a9:f4: 4a:e1:4e:b2:4d:26:37:a1:62:4e:63:96:cc:f9:f3: 18:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DF:37:17:86:1F:65:21:73:09:21:F1:13:65:C5:A8:26:CF:F2:4D:AA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 2c:06:ca:e9:57:16:ce:b3:45:24:fd:98:c6:a7:06:f9:67:1d: eb:15:dc:1e:9a:7e:57:2b:bc:b7:16:b1:2b:d0:2e:cd:08:d4: 45:72:6b:ce:86:a1:43:e9:f7:85:be:d5:76:24:bf:59:82:87: 11:0d:e1:38:70:68:5a:8e:07:a7:eb:50:9b:e9:c3:c0:77:54: 59:ca:2f:0d:19:6a:fc:cd:2c:ea:f5:f7:69:9d:28:93:32:a8: 81:99:48:b8:46:3b:fe:4d:fa:af:a7:34:39:4f:79:33:6c:8e: be:7f:d8:09:e5:91:04:53:89:59:0d:a2:b0:6e:26:9e:b2:ed: 66:01:38:10:5e:87:3d:11:67:09:86:f4:62:22:83:cc:b0:cb: 6b:89:81:5a:40:47:3a:54:07:2d:53:13:3f:08:85:d2:0a:27: 7d:57:48:75:99:8a:52:0a:00:9f:b3:69:69:2b:be:2f:d7:04: 97:6c:15:6d:da:0c:9e:8e:58:9b:6c:d1:00:e2:fd:2f:ed:42: 41:f3:7e:2d:96:59:c1:f5:92:bf:98:9d:cd:af:fa:9e:3e:32: 96:17:2a:08:8e:92:de:d7:cd:25:c2:35:47:6d:79:47:3a:ef: c3:ca:6f:2d:97:7f:a8:86:d9:8c:56:e9:f9:c2:59:2d:da:3b: 29:84:27:91 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUTq7UjKYK1OrGgGoGsUMbvQ9ILhMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMzE1MjMxOVoX DTI2MTExMjE1MjgxOVowMzExMC8GA1UEAxMoREYzNzE3ODYxRjY1MjE3MzA5MjFG MTEzNjVDNUE4MjZDRkYyNERBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNrxjRGD+PzRxMfdpH2vNqCzv8xc+YrSpUfJGE6uN+e/UZOqMV1Sjl6qIEI g6MGcJxni6RegpUwpSKO3PiI9zLt1I1TPdKcTEvKnwrntlAbH4etzvpn1q7zm7vy af/pJVwHUNbMZqJGkHryZifi1wGNzbhjvSxy4CIq4/CRk1XIiV8Qf77pomzop+Z4 +kRqrZ/FOu6JQhSrKr8kOnQq8ohDp6jB7cVQbEovj7UhjSHvT9DnTEsD5kbFe3ai L8ILsFJGcI3D918Oj9yxOJ8K6tBQoLxSyTT8jpgw/sFgwj980Lxb9aoTb5AJ4jvs Cqn0SuFOsk0mN6FiTmOWzPnzGGUCAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN83F4YfZSFzCSHxE2XFqCbP8k2qMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNDdjZDVhMi1hNzQyLTQ1MGMtYjE5MC01MDBlNzU0NTIwZGUvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEy LWE3NDItNDUwYy1iMTkwLTUwMGU3NTQ1MjBkZS8xL0RGMzcxNzg2MUY2NTIxNzMw OTIxRjExMzY1QzVBODI2Q0ZGMjREQUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ3zW8AwDQYJKoZIhvcNAQELBQADggEBACwGyulXFs6zRST9mManBvlnHesV 3B6aflcrvLcWsSvQLs0I1EVya86GoUPp94W+1XYkv1mChxEN4ThwaFqOB6frUJvp w8B3VFnKLw0ZavzNLOr192mdKJMyqIGZSLhGO/5N+q+nNDlPeTNsjr5/2AnlkQRT iVkNorBuJp6y7WYBOBBehz0RZwmG9GIig8ywy2uJgVpARzpUBy1TEz8IhdIKJ31X SHWZilIKAJ+zaWkrvi/XBJdsFW3aDJ6OWJts0QDi/S/tQkHzfi2WWcH1kr+Ync2v +p4+MpYXKgiOkt7XzSXCNUdteUc678PKby2Xf6iG2YxW6fnCWS3aOymEJ5E= -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:59 2025 by rpki-client