This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.cer (raw, json) Hash identifier: rz+5DmchGDSbjc0zeIi8LZuH/m1PZkPdJBJtW0q0bgs= Subject key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 71A1 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft caRepository: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Tue 06 Jan 2026 13:33:07 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 160.250.70.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29089 (0x71a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Jan 6 13:33:07 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6f:68:e0:11:3f:56:c7:16:39:38:2b:c0:e0: 33:ac:db:d1:1d:d6:62:6f:61:a4:34:e6:13:5c:9d: 34:5a:54:4e:e0:9d:08:c4:15:0a:c5:91:0e:12:7b: 30:d7:ba:99:b4:c6:4d:d7:58:ea:56:cf:7d:43:f2: 98:87:04:cd:fe:02:18:a2:6e:1c:61:5a:d1:61:03: 8d:56:07:1b:17:74:60:c4:5c:48:7f:1a:a2:50:41: 53:b1:da:2e:be:4a:8f:e9:8f:fc:45:80:a8:c4:12: 6b:26:05:d9:0a:72:7b:24:98:87:fe:3c:9f:4f:76: 9b:2c:ee:e7:69:1f:0f:16:db:26:a5:b8:8a:03:69: 1f:03:95:4a:b6:f9:50:c4:ce:94:b4:77:ee:50:9d: 89:0f:ad:94:9c:94:03:f8:e4:48:69:19:1b:be:08: 9c:82:44:a8:40:cd:7a:4c:6c:27:3d:7d:5c:2a:2d: da:95:ae:f1:cb:64:7d:68:ff:00:ad:77:9a:b2:f2: 77:34:f2:b5:42:a9:73:ee:19:22:f1:99:65:13:55: 5c:68:7e:f9:78:26:b8:00:f9:97:40:14:67:a8:a5: 3b:48:e3:56:0d:e5:7e:53:8a:1b:5b:90:29:0f:e6: 6d:7b:76:9b:2c:08:09:6e:45:c8:27:e8:88:9c:cf: 06:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.70.0/23 Signature Algorithm: sha256WithRSAEncryption 10:34:21:04:94:4d:39:d8:c4:38:81:ab:3d:b2:71:9f:c6:0f: e3:72:a8:29:17:00:08:dc:5c:30:86:5f:98:98:82:4a:24:78: 90:3c:75:1d:cd:1f:1a:c9:cd:63:3b:49:cf:a1:c6:bf:53:ab: b5:16:29:f4:fd:44:56:61:2a:8d:30:1e:6e:5a:11:ad:4a:55: 27:ec:04:1a:a0:b7:1c:88:fb:db:09:a7:28:41:2a:df:dd:d4: 8e:d8:82:7c:a6:81:d0:73:d4:e2:58:f0:fb:1e:d4:5f:7d:e4: 70:f0:b4:c8:70:4b:53:ec:b0:4b:f1:2d:f6:5f:87:d1:2e:cd: 96:c2:9f:68:91:9c:a7:2c:ee:68:00:67:1e:60:3e:fc:8e:cb: 1a:d1:ff:6c:84:ef:b9:b4:03:39:19:b3:bf:19:da:27:29:fc: c6:ea:2e:8f:61:d7:0a:33:50:db:0d:5c:ce:31:5d:9d:5c:ae: b1:b6:53:a2:73:48:cc:e5:5a:59:82:d6:51:8e:da:05:11:e0: 47:28:36:3b:d6:ca:1c:b5:0a:c4:cb:52:32:74:c8:14:3f:0c: 24:2d:61:15:48:43:4d:41:cf:ad:bd:96:11:13:a3:15:d9:8a: a3:2e:e5:12:b3:96:3a:5c:47:dd:2d:80:1a:63:18:e3:aa:13: 89:20:c6:77 -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICcaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjYwMTA2MTMzMzA3WhcNMjcwMzAyMDAwMDAwWjBGMREwDwYD VQQDDAhBOTE4NzMyNTExMC8GA1UEBRMoRDE3NDQ1M0U5NTYzRUJBRkNCQkIzMkFD QzZDRjg2NkZCRDhFMjJGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AOdvaOARP1bHFjk4K8DgM6zb0R3WYm9hpDTmE1ydNFpUTuCdCMQVCsWRDhJ7MNe6 mbTGTddY6lbPfUPymIcEzf4CGKJuHGFa0WEDjVYHGxd0YMRcSH8aolBBU7HaLr5K j+mP/EWAqMQSayYF2QpyeySYh/48n092myzu52kfDxbbJqW4igNpHwOVSrb5UMTO lLR37lCdiQ+tlJyUA/jkSGkZG74InIJEqEDNekxsJz19XCot2pWu8ctkfWj/AK13 mrLydzTytUKpc+4ZIvGZZRNVXGh++XgmuAD5l0AUZ6ilO0jjVg3lflOKG1uQKQ/m bXt2mywICW5FyCfoiJzPBkcCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBTRdEU+lWPr r8u7MqzGz4ZvvY4i8DAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczMjUvN0IzMzRBNEFBQUU5MTFFRkI3MjFDMjVEQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTg3MzI1LzdCMzM0QTRBQUFFOTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZq NjZfTHV6S3N4cy1HYjcyT0l2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaD6RjANBgkqhkiG9w0BAQsFAAOCAQEAEDQhBJRNOdjEOIGrPbJx n8YP43KoKRcACNxcMIZfmJiCSiR4kDx1Hc0fGsnNYztJz6HGv1OrtRYp9P1EVmEq jTAebloRrUpVJ+wEGqC3HIj72wmnKEEq393UjtiCfKaB0HPU4ljw+x7UX33kcPC0 yHBLU+ywS/Et9l+H0S7NlsKfaJGcpyzuaABnHmA+/I7LGtH/bITvubQDORmzvxna Jyn8xuouj2HXCjNQ2w1czjFdnVyusbZTonNIzOVaWYLWUY7aBRHgRyg2O9bKHLUK xMtSMnTIFD8MJC1hFUhDTUHPrb2WEROjFdmKoy7lErOWOlxH3S2AGmMY46oTiSDG dw== -----END CERTIFICATE-----Generated at Sun Jan 18 01:55:44 2026 by rpki-client