This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1mk-41xy689CY8aYRW2C9o5xT1w.cer File: 1mk-41xy689CY8aYRW2C9o5xT1w.cer (raw, json) Hash identifier: l3uY/wrYt/jQDbREsfXxC99jb4jxKa41j651ate8GNU= Subject key identifier: D6:69:3E:E3:5C:72:EB:CF:42:63:C6:98:45:6D:82:F6:8E:71:4F:5C Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 6E3C Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft caRepository: rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Mon 17 Nov 2025 14:15:05 +0000 Certificate not after: Tue 01 Dec 2026 00:00:00 +0000 Subordinate resources: AS: 54415 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28220 (0x6e3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Nov 17 14:15:05 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=A916EF5E, serialNumber=D6693EE35C72EBCF4263C698456D82F68E714F5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f8:68:a7:1f:a7:98:41:e8:ec:81:38:62:86: 19:2c:9d:2c:86:08:85:38:64:b6:35:7b:28:6d:ce: a3:10:06:84:f7:be:a9:c7:e7:f3:8f:52:1a:52:05: 43:c4:0d:ed:10:6c:e1:28:fa:55:6e:be:41:48:7a: c7:a5:2f:f2:98:5e:11:47:3e:6e:6f:d4:ea:fc:90: df:04:d0:b4:17:88:8d:8d:68:2f:5a:72:69:0e:c4: 78:33:65:f0:44:75:41:07:ed:09:1d:17:ab:0f:db: bb:80:72:0a:3c:cc:4a:03:7e:5a:0a:39:e8:65:5a: 34:0f:8e:15:14:9b:a4:fa:f5:e4:df:ca:42:2d:1e: 0b:3c:78:1a:c2:c4:7f:dd:00:a0:d7:22:77:70:d2: 12:d7:15:8f:c7:14:82:96:8d:a0:32:b7:a7:ce:a6: c1:1d:3b:7c:59:61:66:43:ba:dc:04:28:eb:52:88: 39:b7:a8:c3:27:09:e5:8a:10:0e:6e:e3:67:7d:43: f2:52:e6:bc:f3:09:fe:ec:dd:79:01:6f:19:64:f9: bf:e1:2f:94:8c:1a:79:a5:38:b5:0f:dc:77:a8:60: 84:b5:08:e3:80:03:24:a5:74:1a:57:e8:58:cf:a9: ab:e0:5b:82:31:e3:1f:9b:0f:57:77:b8:fa:b0:77: 95:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:69:3E:E3:5C:72:EB:CF:42:63:C6:98:45:6D:82:F6:8E:71:4F:5C X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 54415 Signature Algorithm: sha256WithRSAEncryption 54:64:93:27:5a:50:30:3e:03:2e:3f:b4:69:99:67:c3:fb:61: 24:be:41:e0:f9:f1:8c:09:57:bf:15:cf:04:cf:5c:2d:19:a9: 75:a0:1c:2e:e1:89:a2:4d:12:7e:16:69:b0:53:db:d2:f9:ad: 4b:8c:0a:5f:49:c3:9a:d8:eb:33:35:be:19:3e:50:2e:96:59: 62:64:3c:b3:4b:05:40:a5:ba:45:70:15:53:0f:d1:13:45:95: b3:23:53:0d:c4:81:83:89:2b:59:0a:20:0e:fa:60:54:74:c3: f1:9a:0c:09:33:a6:90:16:79:4a:59:96:d0:1d:5c:ef:6b:bc: 81:6f:ee:5a:07:10:92:ec:0a:d0:c9:2a:23:56:a5:2b:a5:74: e5:0c:8d:45:d1:64:61:ab:cf:63:f2:df:d1:1e:74:2e:38:8b: ce:e2:21:12:53:c8:28:90:f8:04:25:5f:ae:d8:2c:65:84:a6: 6b:ac:f1:c1:38:d8:0d:d1:27:da:8c:12:6a:b7:9f:ac:b5:24: 4b:bf:87:bf:0f:26:c3:bd:83:38:83:a1:bb:9d:51:55:fb:13: eb:26:1b:e7:d7:97:bf:61:a8:22:86:95:f4:b6:e3:ac:da:2a: d6:12:c1:08:35:3f:49:dc:d3:65:89:03:cb:b2:59:27:0b:c4: da:52:a9:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgICbjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMTE3MTQxNTA1WhcNMjYxMjAxMDAwMDAwWjBGMREwDwYD VQQDEwhBOTE2RUY1RTExMC8GA1UEBRMoRDY2OTNFRTM1QzcyRUJDRjQyNjNDNjk4 NDU2RDgyRjY4RTcxNEY1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANf4aKcfp5hB6OyBOGKGGSydLIYIhThktjV7KG3OoxAGhPe+qcfn849SGlIFQ8QN 7RBs4Sj6VW6+QUh6x6Uv8pheEUc+bm/U6vyQ3wTQtBeIjY1oL1pyaQ7EeDNl8ER1 QQftCR0Xqw/bu4ByCjzMSgN+Wgo56GVaNA+OFRSbpPr15N/KQi0eCzx4GsLEf90A oNcid3DSEtcVj8cUgpaNoDK3p86mwR07fFlhZkO63AQo61KIObeowycJ5YoQDm7j Z31D8lLmvPMJ/uzdeQFvGWT5v+EvlIwaeaU4tQ/cd6hghLUI44ADJKV0GlfoWM+p q+BbgjHjH5sPV3e4+rB3lYUCAwEAAaOCAu4wggLqMB0GA1UdDgQWBBTWaT7jXHLr z0JjxphFbYL2jnFPXDAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVGNUUvMkNFNDk0QzA4Rjk2MTFFQTlBQ0I3RTdGQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTZFRjVFLzJDRTQ5NEMwOEY5NjExRUE5QUNCN0U3RkM0RjlBRTAyLzFtay00MXh5 Njg5Q1k4YVlSVzJDOW81eFQxdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAaBggrBgEFBQcBCAEB/wQLMAmg BzAFAgMA1I8wDQYJKoZIhvcNAQELBQADggEBAFRkkydaUDA+Ay4/tGmZZ8P7YSS+ QeD58YwJV78VzwTPXC0ZqXWgHC7hiaJNEn4WabBT29L5rUuMCl9Jw5rY6zM1vhk+ UC6WWWJkPLNLBUClukVwFVMP0RNFlbMjUw3EgYOJK1kKIA76YFR0w/GaDAkzppAW eUpZltAdXO9rvIFv7loHEJLsCtDJKiNWpSuldOUMjUXRZGGrz2Py39EedC44i87i IRJTyCiQ+AQlX67YLGWEpmus8cE42A3RJ9qMEmq3n6y1JEu/h78PJsO9gziDobud UVX7E+smG+fXl79hqCKGlfS246zaKtYSwQg1P0nc02WJA8uyWScLxNpSqcQ= -----END CERTIFICATE-----Generated at Wed Dec 3 13:18:32 2025 by rpki-client