This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7iTJi5YTEPUN8Nyy0naWug69fUs.cer File: 7iTJi5YTEPUN8Nyy0naWug69fUs.cer (raw, json) Hash identifier: hCrTakjhFY3MsV5OFSY0UcvO/8trgZ65kS0Qsfx6VQg= Subject key identifier: EE:24:C9:8B:96:13:10:F5:0D:F0:DC:B2:D2:76:96:BA:0E:BD:7D:4B Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 7266 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A9186883/A88FFCF85C5311EE951E9D58C4F9AE02/7iTJi5YTEPUN8Nyy0naWug69fUs.mft caRepository: rsync://rpki.apnic.net/member_repository/A9186883/A88FFCF85C5311EE951E9D58C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Fri 16 Jan 2026 13:31:42 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 134.211.0.0/16 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29286 (0x7266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Jan 16 13:31:42 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A9186883, serialNumber=EE24C98B961310F50DF0DCB2D27696BA0EBD7D4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b8:e9:2e:14:71:4f:9e:03:fd:57:c0:42:d4: 5a:2a:c5:6e:af:e2:e8:84:96:3e:9a:58:2a:aa:ab: 19:bf:44:82:8d:8f:e2:d8:2a:3c:a5:11:67:11:80: 10:d8:bd:89:8a:0a:07:ca:2c:08:f3:de:96:5a:97: b0:0f:11:73:95:81:2b:85:2d:0a:d8:4b:46:d0:5e: 00:e9:1b:17:25:fd:9d:4f:a1:72:72:54:b9:aa:4a: 73:89:a1:7d:19:6d:64:5c:33:09:3f:49:33:54:7a: 45:a5:7e:eb:39:8d:80:f9:56:78:67:e9:20:d0:c5: 61:89:1a:6d:86:6e:3b:8b:75:d0:8f:30:a9:b7:c0: 90:44:be:af:29:a4:97:98:0e:81:10:b3:bd:42:e5: a2:a8:58:dc:ce:a1:ab:71:a3:61:ae:3f:54:76:c1: ec:6b:8b:cd:2c:e7:71:ba:12:8b:a3:54:7b:f2:29: b2:db:4c:a6:3f:9f:ee:64:ea:ab:b0:bd:f0:f9:56: 37:11:f2:33:3d:85:8a:f5:48:84:08:fd:04:87:a5: f0:c2:33:d8:03:4a:0e:2a:28:5b:c2:56:21:1f:be: c4:48:eb:2c:08:8d:ea:c2:f0:6b:7c:34:b3:fe:1f: ac:f3:03:99:0f:e3:09:67:36:01:9d:90:20:e8:50: f6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:24:C9:8B:96:13:10:F5:0D:F0:DC:B2:D2:76:96:BA:0E:BD:7D:4B X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186883/A88FFCF85C5311EE951E9D58C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186883/A88FFCF85C5311EE951E9D58C4F9AE02/7iTJi5YTEPUN8Nyy0naWug69fUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.211.0.0/16 Signature Algorithm: sha256WithRSAEncryption a4:be:b1:4e:e3:3b:29:7e:e3:a8:c1:ee:e9:4d:cc:07:c0:fa: a2:78:16:2f:b4:2f:16:6e:28:56:2a:89:95:43:24:db:63:25: 1f:79:d5:b6:f2:84:58:8d:7c:cc:79:c7:c0:f8:de:bf:74:ca: ec:c5:36:15:31:4e:31:64:48:95:0c:8c:45:16:75:f1:a7:9c: 18:1f:c9:18:46:7f:9d:37:5a:88:07:fb:1f:1f:7a:5f:a8:bf: 45:ea:fd:70:79:f0:2a:3a:7e:0c:45:25:af:44:fb:42:36:27: 9c:4a:fb:ec:e3:be:bf:23:53:61:9a:25:82:4d:1b:da:94:2b: 45:ed:8a:d4:f6:5d:c3:56:d6:41:2f:28:dd:68:a5:ff:9e:51: 30:93:2f:29:3b:9c:51:0e:3d:42:5c:89:fd:61:40:73:62:e0: c3:d0:70:d3:6b:b3:28:a6:2b:ae:80:54:44:73:54:de:00:b4: 27:dc:d8:3d:ee:03:de:e8:85:cd:5b:33:62:de:1e:dc:c3:9a: 88:bf:ce:f9:33:e8:2e:9f:14:1a:ef:d1:a3:4c:75:03:2a:cd: c6:eb:a8:05:62:65:a0:8c:e3:17:3a:b8:e7:9e:50:3a:4d:26: cf:d0:9e:09:c8:ac:95:cd:59:8b:88:21:23:fe:2c:a5:41:f0: 72:d4:6c:31 -----BEGIN CERTIFICATE----- MIIF/DCCBOSgAwIBAgICcmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjYwMTE2MTMzMTQyWhcNMjcwMzAyMDAwMDAwWjBGMREwDwYD VQQDDAhBOTE4Njg4MzExMC8GA1UEBRMoRUUyNEM5OEI5NjEzMTBGNTBERjBEQ0Iy RDI3Njk2QkEwRUJEN0Q0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AM+46S4UcU+eA/1XwELUWirFbq/i6ISWPppYKqqrGb9Ego2P4tgqPKURZxGAENi9 iYoKB8osCPPellqXsA8Rc5WBK4UtCthLRtBeAOkbFyX9nU+hcnJUuapKc4mhfRlt ZFwzCT9JM1R6RaV+6zmNgPlWeGfpINDFYYkabYZuO4t10I8wqbfAkES+rymkl5gO gRCzvULloqhY3M6hq3GjYa4/VHbB7GuLzSzncboSi6NUe/IpsttMpj+f7mTqq7C9 8PlWNxHyMz2FivVIhAj9BIel8MIz2ANKDiooW8JWIR++xEjrLAiN6sLwa3w0s/4f rPMDmQ/jCWc2AZ2QIOhQ9lUCAwEAAaOCAvIwggLuMB0GA1UdDgQWBBTuJMmLlhMQ 9Q3w3LLSdpa6Dr19SzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY4ODMvQTg4RkZDRjg1QzUzMTFFRTk1MUU5RDU4QzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTg2ODgzL0E4OEZGQ0Y4NUM1MzExRUU5NTFFOUQ1OEM0RjlBRTAyLzdpVEppNVlU RVBVTjhOeXkwbmFXdWc2OWZVcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQPMA0w CwQCAAEwBQMDAIbTMA0GCSqGSIb3DQEBCwUAA4IBAQCkvrFO4zspfuOowe7pTcwH wPqieBYvtC8WbihWKomVQyTbYyUfedW28oRYjXzMecfA+N6/dMrsxTYVMU4xZEiV DIxFFnXxp5wYH8kYRn+dN1qIB/sfH3pfqL9F6v1wefAqOn4MRSWvRPtCNiecSvvs 476/I1NhmiWCTRvalCtF7YrU9l3DVtZBLyjdaKX/nlEwky8pO5xRDj1CXIn9YUBz YuDD0HDTa7MopiuugFREc1TeALQn3Ng97gPe6IXNWzNi3h7cw5qIv875M+gunxQa 79GjTHUDKs3G66gFYmWgjOMXOrjnnlA6TSbP0J4JyKyVzVmLiCEj/iylQfBy1Gwx -----END CERTIFICATE-----Generated at Sun Jan 18 01:56:20 2026 by rpki-client