This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer (raw, json) Hash identifier: FjeDfcV8+JL8QivXoJFPrDwx1TA3tZNK6vfyeZUj7cc= Subject key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3BD9343CF48B6F0BB42FCA49EF2FA3DCC612C303 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft caRepository: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 15 Nov 2025 03:50:13 +0000 Certificate not after: Sat 14 Nov 2026 03:55:13 +0000 Subordinate resources: IP: 103.155.190.0/23 IP: 2406:7540::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:d9:34:3c:f4:8b:6f:0b:b4:2f:ca:49:ef:2f:a3:dc:c6:12:c3:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 15 03:50:13 2025 GMT Not After : Nov 14 03:55:13 2026 GMT Subject: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8c:e8:5d:81:ac:97:ec:31:0f:ba:a9:d8:a4: 37:39:f2:54:dd:2e:13:34:27:dc:30:48:e8:d1:36: 22:59:5f:39:ac:6d:9f:b0:a7:c3:6f:17:43:aa:d8: 49:01:d2:15:a6:dc:37:e9:18:82:31:ac:84:44:42: bb:da:86:b6:82:4b:06:70:e8:6f:1e:70:81:a0:57: df:fe:5d:e0:df:6d:0b:b3:3f:db:90:c6:5a:0e:b2: cb:69:78:ef:3e:3c:50:d4:55:d4:b0:33:73:58:1b: c6:e6:5b:b3:04:1b:57:62:5d:4e:05:81:c7:13:9c: 10:52:3f:79:56:ea:65:ff:c6:e0:2a:98:7c:fb:3e: aa:07:9a:33:cb:30:7d:d6:65:1d:b4:cc:b3:55:bd: fa:db:3b:06:54:e5:1a:86:b1:ef:96:bd:11:05:ad: 3b:a1:fe:ab:f1:49:de:a2:0d:16:e8:d6:d2:7e:b0: 00:e6:e8:2d:13:c8:89:fe:4b:1b:1a:62:f8:e6:20: 36:47:e8:e5:2e:87:f2:59:32:8b:bd:6b:dd:3c:82: a4:e1:dd:f4:18:ee:7c:0c:6d:8b:dc:6e:11:09:10: 88:d8:d4:d0:5c:45:b2:5f:91:ec:33:e5:8e:3b:25: 19:e2:ad:16:ce:5f:83:65:6d:3b:e9:e4:98:6b:49: cf:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.190.0/23 IPv6: 2406:7540::/32 Signature Algorithm: sha256WithRSAEncryption 83:ed:c8:1e:7b:60:a9:e4:00:2c:f2:da:b8:be:6c:1e:96:7d: 7c:62:5d:5d:ff:7b:1f:ed:e1:78:84:87:6e:4f:e5:d6:7d:88: 32:68:b5:f5:a6:89:41:36:0d:14:01:3a:91:d0:1b:8d:39:7f: 54:a2:70:e6:a8:7d:ca:9f:59:fb:3f:0d:1a:04:9f:9a:ff:9f: 10:a0:e7:99:20:70:25:e2:b9:b7:79:24:4c:3a:c1:b3:bd:44: de:38:f6:2a:52:83:65:24:01:8e:4b:8c:11:b2:1c:b5:7b:33: 7e:6f:19:c5:b9:03:e0:34:b0:b5:06:38:52:e7:2c:e4:52:43: 67:0e:9d:79:50:44:04:13:41:b3:0d:2d:fe:07:9b:dd:9d:9f: b2:d3:0c:a8:3f:eb:67:69:6a:e9:37:70:32:e7:7f:93:7d:28: 77:52:0e:d7:25:7d:25:23:44:c3:b2:69:98:88:57:2e:96:74: a5:6c:7c:95:66:8d:c9:93:80:78:fa:5f:4a:02:72:14:7e:69: 25:80:2d:d3:f9:5f:f2:8f:88:03:7d:76:aa:f1:df:4d:27:15: 4e:de:cb:21:f5:30:1e:27:65:3b:9a:70:fa:94:58:26:6d:db: fc:11:f8:5a:16:ed:1e:5a:7c:77:14:05:99:3d:ab:a0:36:81: 8b:a2:fd:4c -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUO9k0PPSLbwu0L8pJ7y+j3MYSwwMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExNTAzNTAxM1oX DTI2MTExNDAzNTUxM1owMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAx QkE2RjBCMzUyRTZDNTdFOUJFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOmM6F2BrJfsMQ+6qdikNznyVN0uEzQn3DBI6NE2IllfOaxtn7Cnw28XQ6rY SQHSFabcN+kYgjGshERCu9qGtoJLBnDobx5wgaBX3/5d4N9tC7M/25DGWg6yy2l4 7z48UNRV1LAzc1gbxuZbswQbV2JdTgWBxxOcEFI/eVbqZf/G4CqYfPs+qgeaM8sw fdZlHbTMs1W9+ts7BlTlGoax75a9EQWtO6H+q/FJ3qINFujW0n6wAOboLRPIif5L Gxpi+OYgNkfo5S6H8lkyi71r3TyCpOHd9BjufAxti9xuEQkQiNjU0FxFsl+R7DPl jjslGeKtFs5fg2VtO+nkmGtJzw8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCizBcZjNsQzq2AbpvCzUubFfpvsMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiNmU5YjUx LWJkODctNDkwNS05YmY0LWE4NDhhNDRlNWJhNS8wLzI4QjMwNUM2NjMzNkM0MzNB QjYwMUJBNkYwQjM1MkU2QzU3RTlCRUMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnm74wDQQCAAIwBwMFACQGdUAwDQYJKoZIhvcNAQELBQADggEBAIPtyB57YKnk ACzy2ri+bB6WfXxiXV3/ex/t4XiEh25P5dZ9iDJotfWmiUE2DRQBOpHQG405f1Si cOaofcqfWfs/DRoEn5r/nxCg55kgcCXiubd5JEw6wbO9RN449ipSg2UkAY5LjBGy HLV7M35vGcW5A+A0sLUGOFLnLORSQ2cOnXlQRAQTQbMNLf4Hm92dn7LTDKg/62dp auk3cDLnf5N9KHdSDtclfSUjRMOyaZiIVy6WdKVsfJVmjcmTgHj6X0oCchR+aSWA LdP5X/KPiAN9dqrx300nFU7eyyH1MB4nZTuacPqUWCZt2/wR+FoW7R5afHcUBZk9 q6A2gYui/Uw= -----END CERTIFICATE-----Generated at Sun Dec 7 06:37:54 2025 by rpki-client