This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3VdGDwwSvgVGE6L0KWewfaVoe_A.cer File: 3VdGDwwSvgVGE6L0KWewfaVoe_A.cer (raw, json) Hash identifier: vc2ojjTupKBwlaGTB9oEQNzzpc/jLB/S5cf5JLYF7+0= Subject key identifier: DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 6DEF Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft caRepository: rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Wed 12 Nov 2025 13:31:20 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: IP: 160.187.192.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28143 (0x6def) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Nov 12 13:31:20 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A91566DC, serialNumber=DD57460F0C12BE054613A2F42967B07DA5687BF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:55:87:d7:35:b6:c3:2a:d8:2d:d4:93:a5:88: cd:40:4e:a4:8b:3c:93:6b:f2:a8:94:a2:dc:66:43: ba:37:57:ed:f7:39:1f:cb:94:69:2e:82:66:23:44: 2a:42:94:52:32:18:a3:df:53:af:3c:fb:3b:45:8a: c2:55:03:5e:0b:96:34:26:07:82:c0:30:39:5c:7d: d6:aa:fb:3a:6b:66:80:cf:f6:cd:da:06:bb:39:54: 95:31:63:85:ee:15:e4:e4:47:d5:92:70:e8:3b:8f: 1f:2c:50:4f:b9:d7:65:1d:b8:93:38:3e:d8:18:cd: 1b:32:0d:bc:66:6b:1f:3b:49:a8:f3:6b:eb:1b:ec: 23:54:60:58:ba:04:eb:a9:e2:36:1d:78:4a:95:5c: 0f:5b:40:4b:50:8d:ff:13:69:72:dc:33:bd:46:c0: 62:26:cd:b9:44:23:c7:7c:e4:e5:c5:62:7e:f1:95: b1:b4:71:fa:ba:de:e1:32:39:28:38:b8:25:7e:4f: b1:31:d1:21:42:7b:22:5c:a3:14:4b:8c:4e:ca:89: 2a:ba:36:2b:f4:10:f3:97:15:73:83:96:42:74:49: bf:e6:cc:9d:b3:94:2c:9e:4c:11:2b:5d:e6:32:ea: 69:a5:60:74:d8:07:c0:e1:c6:df:2a:47:9d:55:07: ab:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:57:46:0F:0C:12:BE:05:46:13:A2:F4:29:67:B0:7D:A5:68:7B:F0 X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91566DC/5A182C7C852311EF9B48FF41C4F9AE02/3VdGDwwSvgVGE6L0KWewfaVoe_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.192.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:2d:cb:f5:63:b6:0f:52:4d:90:3a:1f:c6:05:39:c4:d5:85: e6:e3:b6:52:ac:44:01:95:75:17:b1:80:79:70:08:83:d1:ae: b5:2e:91:99:d5:f3:b3:d9:78:e3:af:13:cf:0e:e6:84:ff:5c: 1f:0c:0f:32:47:41:9f:07:72:6d:5d:24:78:1c:ff:4a:a2:29: 95:94:a7:a3:69:fe:23:29:86:7a:f0:0a:6b:66:3a:7b:2f:85: e3:9e:6c:55:94:43:06:3c:a0:9f:f4:f2:bb:63:c8:30:09:df: bc:20:a0:66:28:cc:99:37:41:3c:12:31:23:77:8d:56:a0:49: 5e:0e:0c:5c:fa:6e:77:3c:ed:b7:b9:53:fc:e0:e3:9a:31:ee: be:ee:97:7a:51:5b:95:2b:62:84:2a:c7:eb:a4:8e:04:dc:77: d2:b4:c1:d0:2a:95:5f:e9:dd:88:67:2d:bf:33:aa:d0:a3:98: 17:42:e1:bc:16:d5:60:c1:2a:99:7c:af:10:2b:5b:a8:52:e5: 15:f9:38:dc:80:63:12:9a:49:90:3a:8e:ad:b2:5c:b1:e9:53: a9:bf:49:af:60:c5:1c:30:aa:fd:a3:a4:24:c9:46:cc:c3:14: 05:57:91:ec:ac:4e:67:39:60:cc:c8:0a:e2:71:a4:81:69:f0: 69:e1:e1:38 -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICbe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMTEyMTMzMTIwWhcNMjcwMTMxMDAwMDAwWjBGMREwDwYD VQQDEwhBOTE1NjZEQzExMC8GA1UEBRMoREQ1NzQ2MEYwQzEyQkUwNTQ2MTNBMkY0 Mjk2N0IwN0RBNTY4N0JGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AKZVh9c1tsMq2C3Uk6WIzUBOpIs8k2vyqJSi3GZDujdX7fc5H8uUaS6CZiNEKkKU UjIYo99Trzz7O0WKwlUDXguWNCYHgsAwOVx91qr7OmtmgM/2zdoGuzlUlTFjhe4V 5ORH1ZJw6DuPHyxQT7nXZR24kzg+2BjNGzINvGZrHztJqPNr6xvsI1RgWLoE66ni Nh14SpVcD1tAS1CN/xNpctwzvUbAYibNuUQjx3zk5cVifvGVsbRx+rre4TI5KDi4 JX5PsTHRIUJ7IlyjFEuMTsqJKro2K/QQ85cVc4OWQnRJv+bMnbOULJ5MEStd5jLq aaVgdNgHwOHG3ypHnVUHqwMCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBTdV0YPDBK+ BUYTovQpZ7B9pWh78DAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY2REMvNUExODJDN0M4NTIzMTFFRjlCNDhGRjQxQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTU2NkRDLzVBMTgyQzdDODUyMzExRUY5QjQ4RkY0MUM0RjlBRTAyLzNWZEdEd3dT dmdWR0U2TDBLV2V3ZmFWb2VfQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC7wDANBgkqhkiG9w0BAQsFAAOCAQEAei3L9WO2D1JNkDofxgU5 xNWF5uO2UqxEAZV1F7GAeXAIg9GutS6RmdXzs9l4468Tzw7mhP9cHwwPMkdBnwdy bV0keBz/SqIplZSno2n+IymGevAKa2Y6ey+F455sVZRDBjygn/Tyu2PIMAnfvCCg ZijMmTdBPBIxI3eNVqBJXg4MXPpudzztt7lT/ODjmjHuvu6XelFblStihCrH66SO BNx30rTB0CqVX+ndiGctvzOq0KOYF0LhvBbVYMEqmXyvECtbqFLlFfk43IBjEppJ kDqOrbJcselTqb9Jr2DFHDCq/aOkJMlGzMMUBVeR7KxOZzlgzMgK4nGkgWnwaeHh OA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:46 2025 by rpki-client