This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer File: C24FD85D1F493383773D253EBB38BED908305E45.cer (raw, json) Hash identifier: /9Vbi/bcmvNb2LXCxlLHcb0jSLmC4tmNfD+i9imOUAM= Subject key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 22FA13B8BD3CE73F5C13EC840C355669D84E58A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft caRepository: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 18 Dec 2025 08:27:59 +0000 Certificate not after: Thu 17 Dec 2026 08:32:59 +0000 Subordinate resources: IP: 103.169.148.0/23 IP: 2407:a5c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 13:29:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:fa:13:b8:bd:3c:e7:3f:5c:13:ec:84:0c:35:56:69:d8:4e:58:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 18 08:27:59 2025 GMT Not After : Dec 17 08:32:59 2026 GMT Subject: CN=C24FD85D1F493383773D253EBB38BED908305E45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2a:48:bd:61:c1:e8:d9:f0:07:24:8a:2e:17: c4:32:6d:7a:3a:7a:a0:18:b7:09:4c:2a:cd:db:85: 63:2e:68:7a:69:be:4e:20:13:12:72:ae:00:15:cb: da:34:73:1a:6d:c7:ae:97:e7:80:da:a9:5c:01:b5: e8:d3:6f:dd:e8:b6:b6:3d:82:84:a9:44:54:2e:cc: 95:31:76:b3:52:8f:a9:b4:6d:35:9b:0b:77:c8:56: f4:1d:c1:e6:a3:30:43:1e:d2:78:84:da:da:4b:e6: 2b:6a:9d:b8:eb:3a:f4:d9:3c:53:c5:01:95:ed:e1: 83:a6:77:a2:e4:43:d1:87:28:12:98:09:41:15:48: 12:b4:04:b7:4d:53:c9:e2:e2:58:ee:d4:1e:11:7d: 78:47:ea:01:e0:45:7b:85:c8:52:9c:60:6f:ce:60: 59:21:27:85:66:82:a0:08:e5:c7:f3:5b:cb:45:0c: 35:29:da:a0:21:99:2f:ce:cf:f7:f0:d6:61:05:34: 66:6f:98:cc:c5:d7:55:85:6d:cf:a3:2f:e6:c7:7b: 88:06:58:a3:83:d0:29:58:60:19:d0:ff:dd:2d:30: d4:62:9b:25:b7:20:70:e3:e7:66:05:b9:6d:eb:4f: 7a:c0:da:15:d3:17:1e:46:18:4d:8e:ec:36:39:07: 55:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.148.0/23 IPv6: 2407:a5c0::/32 Signature Algorithm: sha256WithRSAEncryption 63:0c:d7:87:80:8f:78:c8:cd:4e:e9:ae:81:a3:81:55:27:c8: 75:0b:62:1b:2b:a9:b5:41:64:25:f6:06:41:37:71:62:17:60: 72:8c:f2:fe:08:69:1a:0b:2d:f0:f9:ce:03:66:41:a0:9e:ca: 71:ca:b4:5e:0d:82:9d:b7:bb:37:8a:86:09:1a:04:c3:a4:0b: f5:d5:9f:f7:1c:36:af:be:bb:f0:c3:d8:f7:90:28:85:0a:ac: 77:ac:8e:e5:f5:33:49:0b:62:c1:5e:ef:bd:88:04:8d:dc:09: 98:f0:b1:42:6a:e8:c2:4b:9e:38:55:01:62:3e:01:0c:a5:cc: a3:00:f6:55:d9:ee:9e:4e:89:bf:70:5a:c2:8f:6e:c7:92:03: 5c:31:c7:20:1d:e8:fc:d7:a7:62:0a:78:f3:df:06:0f:36:6c: bc:f5:cd:4f:42:26:62:b1:c0:f0:6e:c4:6c:4d:44:1d:ad:bb: ee:e9:cb:7d:28:e4:16:ec:c7:08:d9:bc:dd:c9:f9:64:e3:1c: 7d:e8:02:ad:c3:81:2e:8f:c5:06:2c:89:e4:39:dd:93:d4:d6: 15:33:46:76:d7:b8:b8:8f:57:00:e3:72:9c:28:f5:aa:76:74: 9a:1e:82:14:45:d0:86:65:35:ae:93:91:bc:e9:41:af:d1:cf: c8:6d:c0:35 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUIvoTuL085z9cE+yEDDVWadhOWKEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIxODA4Mjc1OVoX DTI2MTIxNzA4MzI1OVowMzExMC8GA1UEAxMoQzI0RkQ4NUQxRjQ5MzM4Mzc3M0Qy NTNFQkIzOEJFRDkwODMwNUU0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEqSL1hwejZ8Ackii4XxDJtejp6oBi3CUwqzduFYy5oemm+TiATEnKuABXL 2jRzGm3HrpfngNqpXAG16NNv3ei2tj2ChKlEVC7MlTF2s1KPqbRtNZsLd8hW9B3B 5qMwQx7SeITa2kvmK2qduOs69Nk8U8UBle3hg6Z3ouRD0YcoEpgJQRVIErQEt01T yeLiWO7UHhF9eEfqAeBFe4XIUpxgb85gWSEnhWaCoAjlx/Nby0UMNSnaoCGZL87P 9/DWYQU0Zm+YzMXXVYVtz6Mv5sd7iAZYo4PQKVhgGdD/3S0w1GKbJbcgcOPnZgW5 betPesDaFdMXHkYYTY7sNjkHVakCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMJP2F0fSTODdz0lPrs4vtkIMF5FMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xMTkyMDIxZS0zOTA0LTQxMTUtYWY1ZS0zZWRiNzEzYmFhMTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExOTIwMjFl LTM5MDQtNDExNS1hZjVlLTNlZGI3MTNiYWExNC8wL0MyNEZEODVEMUY0OTMzODM3 NzNEMjUzRUJCMzhCRUQ5MDgzMDVFNDUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnqZQwDQQCAAIwBwMFACQHpcAwDQYJKoZIhvcNAQELBQADggEBAGMM14eAj3jI zU7proGjgVUnyHULYhsrqbVBZCX2BkE3cWIXYHKM8v4IaRoLLfD5zgNmQaCeynHK tF4Ngp23uzeKhgkaBMOkC/XVn/ccNq++u/DD2PeQKIUKrHesjuX1M0kLYsFe772I BI3cCZjwsUJq6MJLnjhVAWI+AQylzKMA9lXZ7p5Oib9wWsKPbseSA1wxxyAd6PzX p2IKePPfBg82bLz1zU9CJmKxwPBuxGxNRB2tu+7py30o5BbsxwjZvN3J+WTjHH3o Aq3DgS6PxQYsieQ53ZPU1hUzRnbXuLiPVwDjcpwo9ap2dJoeghRF0IZlNa6Tkbzp Qa/Rz8htwDU= -----END CERTIFICATE-----Generated at Fri Dec 19 01:24:53 2025 by rpki-client