This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer File: F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer (raw, json) Hash identifier: wDs7Pbn1u3O66+RlafT03hkwvpm+PvdFOAWMNF6KQps= Subject key identifier: F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 089E1E2C9441D3F2B5D947276EB6A36CA470A358 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.mft caRepository: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 13 Jan 2026 21:01:25 +0000 Certificate not after: Tue 12 Jan 2027 21:06:25 +0000 Subordinate resources: IP: 103.159.196.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:9e:1e:2c:94:41:d3:f2:b5:d9:47:27:6e:b6:a3:6c:a4:70:a3:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 13 21:01:25 2026 GMT Not After : Jan 12 21:06:25 2027 GMT Subject: CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a3:1d:3d:f3:54:23:20:b1:1f:8e:57:b6:53: e4:40:4a:22:5a:df:fa:c4:a7:ab:94:78:8f:8f:e3: 81:8e:42:20:d2:04:5f:c0:a9:6e:e0:b5:e5:01:5a: d1:7b:01:8a:ed:55:df:8f:fb:bc:25:3e:22:aa:b8: 27:59:8d:61:aa:b8:66:d8:ff:11:2f:41:f9:22:c9: fe:02:10:d8:bf:91:97:2f:62:cc:ae:cf:03:d3:43: 13:5d:2e:5e:09:c4:10:5e:4a:00:b3:d5:7f:02:3d: fd:09:9f:32:6e:c4:a9:90:54:f3:0e:bb:b3:96:21: 38:61:f9:80:ce:0e:21:8f:92:e7:40:3b:09:1e:f7: a0:be:6d:4b:f6:ec:cf:4f:ac:f9:2d:ce:e9:77:33: e1:64:ac:70:5a:3c:08:47:5a:9e:42:46:14:8e:9c: dd:6b:da:27:f9:f8:85:99:a3:74:98:e5:33:1d:92: 97:ad:1f:cb:b0:4a:c8:d4:37:b1:b3:5d:2d:ec:33: 43:53:59:86:ae:9a:fe:57:e6:9d:b7:c4:e7:af:90: 2d:89:e1:87:c1:55:c0:4c:df:f0:2d:f8:18:c1:a6: 66:bc:59:51:e9:b1:13:80:e1:65:fb:10:88:ee:cd: 76:78:a7:4d:73:2c:9c:2d:63:ea:65:73:a9:12:14: e0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.196.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:71:0d:49:19:01:c6:c1:11:df:73:5c:98:57:41:3b:b1:f3: ae:17:fc:ef:9e:b7:00:c2:11:eb:52:25:c5:e1:6e:3e:4e:a5: 36:63:b7:ad:e3:e7:0e:7d:95:d4:fe:3d:41:74:8a:c2:57:35: 93:01:43:18:87:5b:9c:a9:b5:4d:d5:26:b2:d3:2b:91:31:e0: db:b3:b8:ad:1a:e7:6f:a5:bd:1c:a7:11:b2:e0:c2:d3:37:37: 76:33:9c:33:e8:fe:a4:61:76:d7:0a:91:60:d9:48:33:69:fe: 12:02:e8:a0:89:77:cb:87:cd:f9:4a:b4:14:5e:e7:df:62:29: d4:b4:fe:d0:e5:70:ff:10:da:28:f0:1d:d1:66:d6:47:99:92: 93:e5:b0:e2:22:a7:57:23:61:dc:5e:dd:ec:62:49:d2:4d:e2: 03:df:30:bd:cb:ad:ba:3a:ad:d7:c1:5c:0c:6a:ac:d3:57:69: cd:76:07:ee:18:6e:5a:88:5c:3e:df:4d:5b:de:1f:cf:6b:2c: c9:3a:e0:60:f4:ca:24:45:65:f3:74:32:66:39:74:ff:5b:02: a3:04:4c:b9:08:8f:ea:78:9b:e2:96:ed:ea:ba:f2:0e:85:35: 53:82:b5:da:f6:ba:e3:19:06:4e:a2:ea:a0:3c:33:e1:cb:2d: 9b:6b:db:cc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCJ4eLJRB0/K12UcnbrajbKRwo1gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExMzIxMDEyNVoX DTI3MDExMjIxMDYyNVowMzExMC8GA1UEAxMoRjdBNUMwODk3QTFBQjMxQkZEMzFC RTBBRjIxRDgyNUM1QUE2OTcyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKujHT3zVCMgsR+OV7ZT5EBKIlrf+sSnq5R4j4/jgY5CINIEX8CpbuC15QFa 0XsBiu1V34/7vCU+Iqq4J1mNYaq4Ztj/ES9B+SLJ/gIQ2L+Rly9izK7PA9NDE10u XgnEEF5KALPVfwI9/QmfMm7EqZBU8w67s5YhOGH5gM4OIY+S50A7CR73oL5tS/bs z0+s+S3O6Xcz4WSscFo8CEdankJGFI6c3WvaJ/n4hZmjdJjlMx2Sl60fy7BKyNQ3 sbNdLewzQ1NZhq6a/lfmnbfE56+QLYnhh8FVwEzf8C34GMGmZrxZUemxE4DhZfsQ iO7NdninTXMsnC1j6mVzqRIU4LsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPelwIl6GrMb/TG+CvIdglxappctMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zY2RkNTc3NC0zMGRkLTRhMDAtYjFhOS05YjEyODI2OTMwYzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZGQ1Nzc0 LTMwZGQtNGEwMC1iMWE5LTliMTI4MjY5MzBjMi8wL0Y3QTVDMDg5N0ExQUIzMUJG RDMxQkUwQUYyMUQ4MjVDNUFBNjk3MkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnn8QwDQYJKoZIhvcNAQELBQADggEBAGxxDUkZAcbBEd9zXJhXQTux864X/O+e twDCEetSJcXhbj5OpTZjt63j5w59ldT+PUF0isJXNZMBQxiHW5yptU3VJrLTK5Ex 4NuzuK0a52+lvRynEbLgwtM3N3YznDPo/qRhdtcKkWDZSDNp/hIC6KCJd8uHzflK tBRe599iKdS0/tDlcP8Q2ijwHdFm1keZkpPlsOIip1cjYdxe3exiSdJN4gPfML3L rbo6rdfBXAxqrNNXac12B+4YblqIXD7fTVveH89rLMk64GD0yiRFZfN0MmY5dP9b AqMETLkIj+p4m+KW7eq68g6FNVOCtdr2uuMZBk6i6qA8M+HLLZtr28w= -----END CERTIFICATE-----Generated at Wed Jan 21 17:54:19 2026 by rpki-client