This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/amXibTSlO_J-8hE5NjBzuia52_o.cer File: amXibTSlO_J-8hE5NjBzuia52_o.cer (raw, json) Hash identifier: IGdwb+oqiBh4HKOUNCd/Fb7Q1Hz82GvzkdYV7ss+RmM= Subject key identifier: 6A:65:E2:6D:34:A5:3B:F2:7E:F2:11:39:36:30:73:BA:26:B9:DB:FA Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8 Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8 Certificate serial: 4E82 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer Manifest: rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/amXibTSlO_J-8hE5NjBzuia52_o.mft caRepository: rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Mon 24 Nov 2025 13:34:20 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: IP: 185.126.124.0/22 IP: 185.212.120.0/22 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20098 (0x4e82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8 Validity Not Before: Nov 24 13:34:20 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A914B46A, serialNumber=6A65E26D34A53BF27EF21139363073BA26B9DBFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:ac:9c:e3:53:55:b8:32:da:35:cc:ab:8d: d7:a3:cd:1f:2c:fb:77:d7:8f:b0:91:40:bb:dc:51: 16:62:69:3b:27:f6:52:1c:92:a5:50:ac:eb:44:f6: 46:bd:7d:e7:0b:1a:33:3e:91:92:64:32:c2:1e:ca: b5:36:3c:77:39:fd:25:5e:c6:2f:24:01:06:28:8d: bc:6a:ea:cf:e7:a2:6d:c1:30:ed:4c:55:2c:45:5e: 94:d4:50:81:e7:71:39:86:b0:17:c6:8b:6d:15:49: a5:46:f8:a3:03:37:60:e7:ed:87:89:9e:7a:aa:9a: 1a:a7:f4:41:03:9d:fc:7b:55:7e:d6:25:7d:cc:38: a7:38:49:a7:5b:a4:7c:3a:1e:17:51:3a:9a:7f:57: 69:36:1f:14:49:a6:e9:f3:0e:a8:b3:12:35:c1:20: 26:b7:c5:41:a4:58:4e:00:e7:f6:aa:07:42:01:5b: 4a:99:cf:9d:9d:98:85:e8:0a:f2:9d:cb:6d:56:21: 9f:0d:1d:58:f2:f1:ee:d2:ce:51:dd:5d:dc:84:b4: 7c:16:b9:49:bc:e5:0f:fb:9f:30:60:c9:f1:04:cd: 97:68:4d:e1:ec:d9:f7:db:17:19:76:0f:3b:50:94: bf:97:84:d4:db:05:05:84:ed:77:29:77:93:9e:58: 71:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:65:E2:6D:34:A5:3B:F2:7E:F2:11:39:36:30:73:BA:26:B9:DB:FA X509v3 Authority Key Identifier: keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B46A/F7AA509CE09811EB92760B4DC4F9AE02/amXibTSlO_J-8hE5NjBzuia52_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.126.124.0/22 185.212.120.0/22 Signature Algorithm: sha256WithRSAEncryption 22:0e:83:e7:77:2f:a2:80:95:80:29:86:2e:5b:0f:64:8d:4e: cb:93:3c:87:ac:67:ee:34:32:18:6f:9e:e4:b9:36:5c:0c:e4: cf:b2:bd:45:48:ad:dc:33:26:9e:2a:25:e9:eb:d0:f4:00:13: 92:a8:79:cf:aa:59:87:0b:ad:17:3a:67:ef:30:f7:df:8f:43: 56:85:89:dc:cd:72:73:61:5e:26:86:4e:b0:54:6a:72:89:58: e4:d1:90:64:58:eb:2d:c2:f1:80:4f:d6:ef:35:55:a5:1c:49: 12:58:aa:8a:7a:8c:8b:96:9d:c2:dc:8f:4a:eb:9d:cb:c4:04: ae:5a:79:cd:78:99:02:bf:9f:c4:fe:c3:50:58:1e:18:ad:a6: 43:e1:18:4c:e8:55:32:c5:34:6f:2d:6d:05:fd:63:35:20:91: 6c:cc:75:66:ed:2f:b1:2c:29:be:e1:15:72:6e:fe:43:e6:ad: d7:d8:e8:5b:39:53:9b:b0:8a:d2:7b:a7:e7:b1:8a:2d:a9:9c: e6:2d:d7:bd:38:cb:29:82:b1:e4:f9:00:3f:cd:d7:11:b7:4a: f7:ef:86:24:c5:3a:10:dd:bd:75:5f:ab:a3:e2:ce:ca:7d:e3: 06:bc:42:c1:0c:cd:ae:54:f6:a1:23:b8:08:5c:74:61:f6:d3: 2e:99:93:2d -----BEGIN CERTIFICATE----- MIIGAzCCBOugAwIBAgICToIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2 MTU5RTc2RjgwHhcNMjUxMTI0MTMzNDIwWhcNMjcwMTMxMDAwMDAwWjBGMREwDwYD VQQDEwhBOTE0QjQ2QTExMC8GA1UEBRMoNkE2NUUyNkQzNEE1M0JGMjdFRjIxMTM5 MzYzMDczQkEyNkI5REJGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALqirJzjU1W4Mto1zKuN16PNHyz7d9ePsJFAu9xRFmJpOyf2UhySpVCs60T2Rr19 5wsaMz6RkmQywh7KtTY8dzn9JV7GLyQBBiiNvGrqz+eibcEw7UxVLEVelNRQgedx OYawF8aLbRVJpUb4owM3YOfth4meeqqaGqf0QQOd/HtVftYlfcw4pzhJp1ukfDoe F1E6mn9XaTYfFEmm6fMOqLMSNcEgJrfFQaRYTgDn9qoHQgFbSpnPnZ2YhegK8p3L bVYhnw0dWPLx7tLOUd1d3IS0fBa5SbzlD/ufMGDJ8QTNl2hN4ezZ99sXGXYPO1CU v5eE1NsFBYTtdyl3k55Ycd0CAwEAAaOCAvkwggL1MB0GA1UdDgQWBBRqZeJtNKU7 8n7yETk2MHO6Jrnb+jAfBgNVHSMEGDAWgBQM/Od4V/zwHznZmmK0qmLmFZ52+DAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2 MTFFMkEzRjI3RjdDNzJGRDFGRjIvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZn LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9EUHpuZUZmODhCODUyWnBpdEtwaTVoV2VkdmcuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEI0NkEvRjdBQTUwOUNFMDk4MTFFQjkyNzYwQjREQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTRCNDZBL0Y3QUE1MDlDRTA5ODExRUI5Mjc2MEI0REM0RjlBRTAyL2FtWGliVFNs T19KLThoRTVOakJ6dWlhNTJfby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEArl+fAMEArnUeDANBgkqhkiG9w0BAQsFAAOCAQEAIg6D53cvooCV gCmGLlsPZI1Oy5M8h6xn7jQyGG+e5Lk2XAzkz7K9RUit3DMmniol6evQ9AATkqh5 z6pZhwutFzpn7zD3349DVoWJ3M1yc2FeJoZOsFRqcolY5NGQZFjrLcLxgE/W7zVV pRxJEliqinqMi5adwtyPSuudy8QErlp5zXiZAr+fxP7DUFgeGK2mQ+EYTOhVMsU0 by1tBf1jNSCRbMx1Zu0vsSwpvuEVcm7+Q+at19joWzlTm7CK0nun57GKLamc5i3X vTjLKYKx5PkAP83XEbdK9++GJMU6EN29dV+ro+LOyn3jBrxCwQzNrlT2oSO4CFx0 YfbTLpmTLQ== -----END CERTIFICATE-----Generated at Sat Dec 6 20:41:31 2025 by rpki-client