This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0ZV-xYwI81uqa_535FqXQLpHH54.cer File: 0ZV-xYwI81uqa_535FqXQLpHH54.cer (raw, json) Hash identifier: KnKbLSVCrAzj2yfGKAbIlI4mhQI0pD9hfZhWc7GGBbY= Subject key identifier: D1:95:7E:C5:8C:08:F3:5B:AA:6B:FE:77:E4:5A:97:40:BA:47:1F:9E Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8 Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8 Certificate serial: 4EF1 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer Manifest: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft caRepository: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ Notify URL: https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml Certificate not before: Mon 22 Dec 2025 21:58:08 +0000 Certificate not after: Thu 30 Jul 2026 00:00:00 +0000 Subordinate resources: IP: 80.208.192.0/20 IP: 81.23.208.0/20 IP: 81.203.0.0/16 IP: 85.131.192.0/18 IP: 87.101.96.0/20 IP: 90.149.0.0/16 IP: 92.202.0.0/15 IP: 109.236.0.0/20 IP: 185.164.244.0/22 IP: 193.82.64.0/19 IP: 193.114.0.0/19 IP: 193.115.32.0/19 IP: 193.115.128.0/18 IP: 193.116.0.0/18 IP: 193.117.64.0/19 IP: 194.91.0.0/16 IP: 195.181.224.0/20 IP: 212.237.152.0/21 IP: 213.18.0.0/17 IP: 217.178.0.0/16 IP: 2001:7fa:0:3::/64 IP: 2001:7fa:7::/48 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 14:23:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20209 (0x4ef1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8 Validity Not Before: Dec 22 21:58:08 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=A91A73810000, serialNumber=D1957EC58C08F35BAA6BFE77E45A9740BA471F9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:80:98:d3:ae:75:22:44:38:67:fb:a8:2d:08: a6:fe:7c:78:5d:43:d0:9d:7d:00:d3:2a:e8:de:1b: 1d:ad:2b:7a:e7:7a:07:6b:6f:73:cb:78:7b:cc:c7: 16:23:b6:03:65:d6:0a:c8:91:cd:54:ce:bc:28:68: 75:64:6c:50:6b:4b:1e:b7:87:7d:6b:50:cf:5b:09: 09:b1:a0:0d:41:36:b2:b1:97:30:ea:6e:cc:50:25: f0:34:ce:c6:62:22:b4:3d:7e:d4:02:4e:93:83:a0: 29:be:1b:d9:0f:3f:51:1b:80:6d:6a:b8:68:a3:d9: 97:08:9a:d7:22:ee:e6:db:0c:39:88:01:99:96:ec: db:fc:66:e0:b0:16:6b:18:f3:50:ba:eb:9f:b8:79: 3f:62:99:27:00:2d:53:5b:f0:e1:30:10:84:ba:48: ce:04:ce:fe:5c:41:32:42:97:5c:d5:31:d3:05:73: 89:0b:56:bb:19:ec:2c:f1:7e:d9:60:6f:d6:c9:92: d6:22:3c:bf:c0:0b:93:04:82:32:91:a9:d8:d2:1a: de:96:a4:4c:c0:40:30:02:2f:3f:26:43:c6:4d:4b: f5:2b:47:6e:65:31:65:3c:dc:27:e7:24:6f:09:49: c7:f7:16:23:0d:bd:67:7a:a0:93:2e:7a:6d:1b:23: 5b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:95:7E:C5:8C:08:F3:5B:AA:6B:FE:77:E4:5A:97:40:BA:47:1F:9E X509v3 Authority Key Identifier: keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ RPKI Manifest - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 80.208.192.0/20 81.23.208.0/20 81.203.0.0/16 85.131.192.0/18 87.101.96.0/20 90.149.0.0/16 92.202.0.0/15 109.236.0.0/20 185.164.244.0/22 193.82.64.0/19 193.114.0.0/19 193.115.32.0/19 193.115.128.0/18 193.116.0.0/18 193.117.64.0/19 194.91.0.0/16 195.181.224.0/20 212.237.152.0/21 213.18.0.0/17 217.178.0.0/16 IPv6: 2001:7fa:0:3::/64 2001:7fa:7::/48 Signature Algorithm: sha256WithRSAEncryption 80:69:1d:9c:2b:67:62:e6:6d:c5:3b:8d:d8:5e:97:f0:3a:c7: cd:85:da:2e:3d:cd:07:61:2f:40:63:d1:5d:a0:0a:88:49:4e: d5:7f:ae:d5:7c:34:cf:1f:6f:7b:c7:7a:5d:41:3a:2d:de:a6: bf:47:f2:b7:47:0d:fa:cd:b1:9a:1d:b5:1b:dc:7c:9e:b3:1a: 8c:e7:55:cb:fb:d8:cd:57:72:79:5b:4d:d3:99:3e:5f:e3:9e: 16:c1:ff:a7:d3:c7:17:8e:49:24:af:21:2f:52:7a:0f:8f:00: c2:0c:03:91:7e:f0:90:3d:d7:a1:b8:c3:67:14:5c:88:5c:b8: 66:0a:22:1e:86:fb:d5:9a:ea:f3:f9:b8:e6:df:aa:c4:36:89: 2e:c5:42:e7:23:35:39:aa:21:4a:14:38:b3:63:c6:21:d5:f5: d8:28:75:73:f8:1b:69:15:00:bd:d5:f9:c5:b2:3e:a5:74:65: 8d:0f:9b:33:49:7a:ca:09:86:99:a4:45:d4:25:63:27:97:7c: d4:87:ff:aa:9e:c6:16:b0:06:4e:3e:89:cd:d8:e7:6e:1c:1a: f8:24:95:1d:01:71:3e:4e:1a:7a:68:86:0d:28:e7:27:4e:b3: 38:0d:fa:6a:f9:34:65:d3:ab:25:85:18:40:5b:b9:94:ee:8e: 10:17:a5:24 -----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgICTvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkw REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2 MTU5RTc2RjgwHhcNMjUxMjIyMjE1ODA4WhcNMjYwNzMwMDAwMDAwWjBKMRUwEwYD VQQDDAxBOTFBNzM4MTAwMDAxMTAvBgNVBAUTKEQxOTU3RUM1OEMwOEYzNUJBQTZC RkU3N0U0NUE5NzQwQkE0NzFGOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDugJjTrnUiRDhn+6gtCKb+fHhdQ9CdfQDTKujeGx2tK3rnegdrb3PLeHvM xxYjtgNl1grIkc1UzrwoaHVkbFBrSx63h31rUM9bCQmxoA1BNrKxlzDqbsxQJfA0 zsZiIrQ9ftQCTpODoCm+G9kPP1EbgG1quGij2ZcImtci7ubbDDmIAZmW7Nv8ZuCw FmsY81C665+4eT9imScALVNb8OEwEIS6SM4Ezv5cQTJCl1zVMdMFc4kLVrsZ7Czx ftlgb9bJktYiPL/AC5MEgjKRqdjSGt6WpEzAQDACLz8mQ8ZNS/UrR25lMWU83Cfn JG8JScf3FiMNvWd6oJMuem0bI1urAgMBAAGjggNNMIIDSTAdBgNVHQ4EFgQU0ZV+ xYwI81uqa/535FqXQLpHH54wHwYDVR0jBBgwFoAUDPzneFf88B852ZpitKpi5hWe dvgwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBo oGagZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0 MUQ2NjExRTJBM0YyN0Y3QzcyRkQxRkYyL0RQem5lRmY4OEI4NTJacGl0S3BpNWhX ZWR2Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUy MUE0RjRGQjQvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZnLmNlcjBKBgNVHSAB Af8EQDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFw bmljLm5ldC9SUEtJL0NQUy5wZGYwgfcGCCsGAQUFBwELBIHqMIHnMD4GCCsGAQUF BzAFhjJyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzBdBggrBgEFBQcwCoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmlj LmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8wWlYteFl3STgxdXFhXzUzNUZxWFFMcEhI NTQubWZ0MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMu YWQuanAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMIGqBggrBgEFBQcBBwEB/wSB mjCBlzB5BAIAATBzAwQEUNDAAwQEURfQAwMAUcsDBAZVg8ADBARXZWADAwBalQMD AVzKAwQEbewAAwQCuaT0AwQFwVJAAwQFwXIAAwQFwXMgAwQGwXOAAwQGwXQAAwQF wXVAAwMAwlsDBATDteADBAPU7ZgDBAfVEgADAwDZsjAaBAIAAjAUAwkAIAEH+gAA AAMDBwAgAQf6AAcwDQYJKoZIhvcNAQELBQADggEBAIBpHZwrZ2LmbcU7jdhel/A6 x82F2i49zQdhL0Bj0V2gCohJTtV/rtV8NM8fb3vHel1BOi3epr9H8rdHDfrNsZod tRvcfJ6zGoznVcv72M1XcnlbTdOZPl/jnhbB/6fTxxeOSSSvIS9Seg+PAMIMA5F+ 8JA916G4w2cUXIhcuGYKIh6G+9Wa6vP5uObfqsQ2iS7FQucjNTmqIUoUOLNjxiHV 9dgodXP4G2kVAL3V+cWyPqV0ZY0PmzNJesoJhpmkRdQlYyeXfNSH/6qexhawBk4+ ic3Y524cGvgklR0BcT5OGnpohg0o5ydOszgN+mr5NGXTqyWFGEBbuZTujhAXpSQ= -----END CERTIFICATE-----Generated at Sat Jan 10 16:27:05 2026 by rpki-client