This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.cer File: A075EFE65C596438427C6A22E60EB0A01ADEDA8A.cer (raw, json) Hash identifier: b7YBhMc8m9fHHn/+CMUl60bYzAhBMez2mDEjBLebX5M= Subject key identifier: A0:75:EF:E6:5C:59:64:38:42:7C:6A:22:E6:0E:B0:A0:1A:DE:DA:8A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 53ECD1614CD967B0DB1364D80D6FB4940AB9C62B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.mft caRepository: rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 15 Jan 2026 01:06:56 +0000 Certificate not after: Thu 14 Jan 2027 01:11:56 +0000 Subordinate resources: IP: 103.22.204.0/22 IP: 2001:df0:a00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ec:d1:61:4c:d9:67:b0:db:13:64:d8:0d:6f:b4:94:0a:b9:c6:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 15 01:06:56 2026 GMT Not After : Jan 14 01:11:56 2027 GMT Subject: CN=A075EFE65C596438427C6A22E60EB0A01ADEDA8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:14:97:4d:a0:f9:5c:40:7b:f1:aa:58:5c: 0a:fa:20:f5:90:f8:29:5d:fc:39:bb:73:d8:18:f5: 0a:49:c8:97:cb:d2:50:f7:01:59:d1:88:0e:ce:b1: 8c:50:f2:21:d0:00:af:af:1c:74:5c:0f:8e:9d:23: c8:67:de:3f:bc:68:44:0d:6f:0a:e3:17:47:8c:55: 79:d6:b9:68:f7:2f:be:12:84:2c:1f:1d:b4:52:e3: f1:d5:5e:05:33:ad:df:7c:bd:29:d1:ff:ed:3f:85: b3:96:8d:6a:f1:67:b5:19:9c:dc:62:47:c4:c4:83: 0a:8e:16:5d:68:14:da:61:4e:c8:98:cb:a9:26:d4: 3b:9c:77:ba:30:ed:b6:67:db:c4:9f:b6:81:02:f4: b3:7e:a0:10:8a:26:df:4e:4d:2f:ff:8c:4e:f5:3d: 51:24:9d:b4:15:7a:fe:52:66:3c:69:72:3f:9a:b7: 65:bc:7e:e9:ef:e0:1c:f9:f3:95:b9:64:1a:2d:72: 0a:bd:92:6c:a3:4a:c7:64:75:60:b2:39:90:79:ee: de:aa:03:ca:a8:c1:2f:c5:f4:cc:56:5e:08:a6:b0: 7a:d2:9d:cc:d5:cc:45:f7:4b:50:fd:6e:2e:03:e3: 6e:6a:d5:bf:56:1a:b1:87:24:5b:ca:af:42:d6:49: b6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A0:75:EF:E6:5C:59:64:38:42:7C:6A:22:E6:0E:B0:A0:1A:DE:DA:8A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.204.0/22 IPv6: 2001:df0:a00::/48 Signature Algorithm: sha256WithRSAEncryption 40:7c:43:a0:6f:77:44:c7:4a:f9:12:1b:7c:c2:8c:1b:d4:3f: e6:08:24:fe:40:0e:a3:3f:13:a6:d0:04:22:1c:a9:79:35:77: 6a:5f:6d:ae:a2:f0:be:3a:fb:ed:8c:cb:71:9c:04:58:83:b4: cf:f0:96:e8:bb:66:4a:90:26:cc:fc:49:f9:71:7a:c8:31:c3: 51:ed:58:1d:b3:c5:d9:aa:e2:45:29:78:be:ea:97:fc:30:da: ef:dd:d5:fe:11:d0:a3:05:37:d6:a7:c2:62:75:87:a9:ae:3b: c2:4d:06:7d:30:50:8e:40:5b:34:4e:bd:5a:59:b8:0d:3e:b7: 1f:13:55:5c:9a:12:12:97:14:11:ac:82:ab:ec:59:27:4b:32: d6:b1:6f:19:17:9e:51:03:69:2a:b9:a8:4c:5f:e9:1a:36:93: 10:02:6e:21:0d:1c:0a:24:f6:f3:63:60:c2:c8:08:c5:61:c6: f2:b1:31:45:12:64:14:43:81:c8:29:93:50:04:2d:48:ec:35: 05:61:e7:0b:79:b7:b0:32:0a:8d:b6:13:0d:5f:73:48:ce:ef: 31:15:4b:b6:b4:79:b5:19:fa:10:62:f6:6d:2a:d8:ae:b0:0f: a6:b4:5f:26:ab:a5:f8:62:ff:fa:36:ad:d1:2f:3d:e8:a4:ff: 4c:15:80:a0 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUU+zRYUzZZ7DbE2TYDW+0lAq5xiswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExNTAxMDY1NloX DTI3MDExNDAxMTE1NlowMzExMC8GA1UEAxMoQTA3NUVGRTY1QzU5NjQzODQyN0M2 QTIyRTYwRUIwQTAxQURFREE4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL23FJdNoPlcQHvxqlhcCvog9ZD4KV38Obtz2Bj1CknIl8vSUPcBWdGIDs6x jFDyIdAAr68cdFwPjp0jyGfeP7xoRA1vCuMXR4xVeda5aPcvvhKELB8dtFLj8dVe BTOt33y9KdH/7T+Fs5aNavFntRmc3GJHxMSDCo4WXWgU2mFOyJjLqSbUO5x3ujDt tmfbxJ+2gQL0s36gEIom305NL/+MTvU9USSdtBV6/lJmPGlyP5q3Zbx+6e/gHPnz lblkGi1yCr2SbKNKx2R1YLI5kHnu3qoDyqjBL8X0zFZeCKawetKdzNXMRfdLUP1u LgPjbmrVv1YasYckW8qvQtZJto0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKB17+ZcWWQ4QnxqIuYOsKAa3tqKMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MDRkMDM5Ny1mZmEwLTQ5MDMtODA1Zi0wODQ1MjdiYzQzMGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwNGQwMzk3 LWZmYTAtNDkwMy04MDVmLTA4NDUyN2JjNDMwYy8wL0EwNzVFRkU2NUM1OTY0Mzg0 MjdDNkEyMkU2MEVCMEEwMUFERURBOEEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnFswwDwQCAAIwCQMHACABDfAKADANBgkqhkiG9w0BAQsFAAOCAQEAQHxDoG93 RMdK+RIbfMKMG9Q/5ggk/kAOoz8TptAEIhypeTV3al9trqLwvjr77YzLcZwEWIO0 z/CW6LtmSpAmzPxJ+XF6yDHDUe1YHbPF2ariRSl4vuqX/DDa793V/hHQowU31qfC YnWHqa47wk0GfTBQjkBbNE69Wlm4DT63HxNVXJoSEpcUEayCq+xZJ0sy1rFvGRee UQNpKrmoTF/pGjaTEAJuIQ0cCiT282NgwsgIxWHG8rExRRJkFEOByCmTUAQtSOw1 BWHnC3m3sDIKjbYTDV9zSM7vMRVLtrR5tRn6EGL2bSrYrrAPprRfJqul+GL/+jat 0S896KT/TBWAoA== -----END CERTIFICATE-----Generated at Sun Jan 25 17:06:41 2026 by rpki-client