This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/DCD5207AC33E109E31052BBB7F811DBF6DA180BB.cer File: DCD5207AC33E109E31052BBB7F811DBF6DA180BB.cer (raw, json) Hash identifier: OAevG3FAh8M2WNEpVKsudj7xOCVhbX8LQXGZZaa+pMc= Subject key identifier: DC:D5:20:7A:C3:3E:10:9E:31:05:2B:BB:7F:81:1D:BF:6D:A1:80:BB Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5147CF8DEF60AFBE7AD35A94E54244FB92519E18 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/5d8ef119-7ddf-45e5-8634-38b77258cbcc/0/DCD5207AC33E109E31052BBB7F811DBF6DA180BB.mft caRepository: rsync://repo-rpki.idnic.net/repo/5d8ef119-7ddf-45e5-8634-38b77258cbcc/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 11 Dec 2025 22:54:00 +0000 Certificate not after: Thu 10 Dec 2026 22:59:00 +0000 Subordinate resources: IP: 160.22.101.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:47:cf:8d:ef:60:af:be:7a:d3:5a:94:e5:42:44:fb:92:51:9e:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 11 22:54:00 2025 GMT Not After : Dec 10 22:59:00 2026 GMT Subject: CN=DCD5207AC33E109E31052BBB7F811DBF6DA180BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:64:ce:82:9e:7f:52:a9:d6:24:fa:bb:d0:28: 7c:08:3a:ea:84:cf:07:ec:8b:35:c1:d7:bc:88:87: 18:e6:c2:21:ca:91:ab:eb:26:8f:0d:96:df:b1:fb: 44:93:35:2c:2f:91:df:31:b7:49:18:0b:f7:fc:d6: 44:40:98:f8:a2:ad:4a:9a:0f:0b:7c:72:04:0d:fc: 5c:0b:35:e7:7b:15:44:68:e4:4b:5c:45:67:84:d7: 2f:3b:15:d5:c7:fd:c7:3d:32:8f:38:b7:fe:93:43: 1d:82:6d:bf:c1:b7:a9:1d:42:ee:f6:a0:77:b4:b9: 3b:bd:cf:13:79:14:34:f9:ad:87:dd:17:c8:2d:11: 68:51:61:07:1a:50:1b:6d:e1:72:fe:3c:9a:15:b8: 24:4d:1f:bf:53:ac:f3:d8:64:e0:de:3e:3d:43:a6: 45:9e:2b:c4:84:20:f2:4f:d1:69:31:59:be:51:db: 72:fb:b1:ab:6c:8d:6e:65:2b:d2:d7:fb:2a:6d:53: 65:55:18:1f:6f:0e:91:bd:14:ec:dd:49:64:b2:85: 82:c6:c4:c0:6e:43:2b:cb:ed:f9:c7:8c:09:a1:ab: 91:e0:c1:01:10:e9:d1:c0:a8:13:94:c3:ff:7b:46: 13:ba:e9:54:97:dc:60:c7:3e:94:29:86:99:4c:3d: cf:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DC:D5:20:7A:C3:3E:10:9E:31:05:2B:BB:7F:81:1D:BF:6D:A1:80:BB X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5d8ef119-7ddf-45e5-8634-38b77258cbcc/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5d8ef119-7ddf-45e5-8634-38b77258cbcc/0/DCD5207AC33E109E31052BBB7F811DBF6DA180BB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.101.0/24 Signature Algorithm: sha256WithRSAEncryption 63:f5:b4:ba:be:4e:e3:f3:dd:ab:46:9b:c5:29:ef:43:1b:96: 67:6c:51:e9:8f:bb:5b:d9:6f:bb:c5:12:e4:01:6c:47:49:49: 94:e3:bc:9d:1e:97:c6:bc:db:e3:b6:db:c7:c2:09:35:97:6f: b7:e3:93:bd:3f:93:56:78:33:d9:67:97:0e:bc:ec:e2:dd:25: 00:90:27:b8:e1:5e:d9:6e:75:3e:45:2f:c8:85:87:bb:f8:57: b0:1f:1f:11:00:4c:8e:26:e9:6c:1e:58:5d:0f:9e:0f:f2:5e: 4f:b3:c3:81:b1:c5:f5:b6:fd:7f:46:47:45:89:69:fb:26:e1: 57:58:f0:a5:8e:f7:27:8d:91:86:4f:93:6f:bc:4c:8a:b5:64: da:61:fd:de:73:af:99:bd:af:98:fc:10:25:c7:4c:98:82:31: 83:c6:d2:78:e7:62:7e:84:68:d6:47:74:84:52:52:85:37:ec: 76:76:46:32:c0:a1:88:46:fd:76:a4:7d:a6:15:c1:88:c4:97: bb:56:8e:8d:24:65:ce:0e:aa:d0:69:80:32:97:9b:47:05:67: be:8c:94:7c:2e:5f:cb:7a:f6:af:7c:14:d6:75:00:26:5f:ac: b8:22:ff:5d:7c:27:81:19:ca:6f:d7:b7:8a:db:23:4d:41:17: 88:bc:8d:ae -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUUUfPje9gr75601qU5UJE+5JRnhgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIxMTIyNTQwMFoX DTI2MTIxMDIyNTkwMFowMzExMC8GA1UEAxMoRENENTIwN0FDMzNFMTA5RTMxMDUy QkJCN0Y4MTFEQkY2REExODBCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPJkzoKef1Kp1iT6u9AofAg66oTPB+yLNcHXvIiHGObCIcqRq+smjw2W37H7 RJM1LC+R3zG3SRgL9/zWRECY+KKtSpoPC3xyBA38XAs153sVRGjkS1xFZ4TXLzsV 1cf9xz0yjzi3/pNDHYJtv8G3qR1C7vagd7S5O73PE3kUNPmth90XyC0RaFFhBxpQ G23hcv48mhW4JE0fv1Os89hk4N4+PUOmRZ4rxIQg8k/RaTFZvlHbcvuxq2yNbmUr 0tf7Km1TZVUYH28Okb0U7N1JZLKFgsbEwG5DK8vt+ceMCaGrkeDBARDp0cCoE5TD /3tGE7rpVJfcYMc+lCmGmUw9z38CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNzVIHrDPhCeMQUru3+BHb9toYC7MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ZDhlZjExOS03ZGRmLTQ1ZTUtODYzNC0zOGI3NzI1OGNiY2MvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkOGVmMTE5 LTdkZGYtNDVlNS04NjM0LTM4Yjc3MjU4Y2JjYy8wL0RDRDUyMDdBQzMzRTEwOUUz MTA1MkJCQjdGODExREJGNkRBMTgwQkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACgFmUwDQYJKoZIhvcNAQELBQADggEBAGP1tLq+TuPz3atGm8Up70MblmdsUemP u1vZb7vFEuQBbEdJSZTjvJ0el8a82+O228fCCTWXb7fjk70/k1Z4M9lnlw687OLd JQCQJ7jhXtludT5FL8iFh7v4V7AfHxEATI4m6WweWF0Png/yXk+zw4GxxfW2/X9G R0WJafsm4VdY8KWO9yeNkYZPk2+8TIq1ZNph/d5zr5m9r5j8ECXHTJiCMYPG0njn Yn6EaNZHdIRSUoU37HZ2RjLAoYhG/XakfaYVwYjEl7tWjo0kZc4OqtBpgDKXm0cF Z76MlHwuX8t69q98FNZ1ACZfrLgi/118J4EZym/Xt4rbI01BF4i8ja4= -----END CERTIFICATE-----Generated at Thu Dec 25 09:16:05 2025 by rpki-client