This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer File: EhrxRNkD4_iJffD-0gcaFkd17U8.cer (raw, json) Hash identifier: Kiof+C7Gp+E+PpyvTNQDKTJkDppiBQCazZlMOIsXyRw= Subject key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 71EF Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft caRepository: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Sat 10 Jan 2026 14:11:45 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: IP: 160.191.80.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29167 (0x71ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Jan 10 14:11:45 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:be:26:af:37:0d:76:59:26:57:bc:ba:20:60: 30:d8:77:08:b2:40:56:51:cd:a3:98:52:cf:c5:07: 75:23:ea:ed:10:e5:e6:25:c6:c6:83:2d:3e:b2:db: f3:8e:20:a3:06:da:e1:f8:fd:42:d7:12:3b:b1:cb: f7:22:bf:5e:4e:bd:08:cb:93:84:04:8c:75:27:5b: 8e:d1:95:f9:4c:c4:e8:c5:7e:74:6a:ec:76:e4:35: 84:eb:4d:a4:4f:53:5b:51:b3:45:a6:b3:ac:eb:ae: 6d:2a:e4:a9:c9:72:03:c6:09:95:1d:60:fc:f7:9c: 74:d6:c8:dd:1e:d4:6d:8b:2a:34:e6:6b:a9:b6:ca: 8d:e6:f2:f3:05:1d:12:b7:6b:cd:ba:df:79:a0:2e: fa:fb:6d:e8:a4:c5:5e:64:7b:ff:e8:21:78:6d:76: b0:d4:2b:16:bf:fb:c6:c2:4f:95:fc:48:c0:89:25: 1c:f8:6c:62:52:5f:59:53:7a:b1:2a:93:b2:84:27: 2e:cd:95:7e:6c:ab:3d:f7:78:ef:49:53:19:02:c3: 28:f8:ab:78:51:68:2e:06:06:df:ee:a0:75:ff:28: 46:06:75:a2:74:ca:a8:9e:56:52:6b:04:aa:5c:35: 49:3f:57:92:43:e5:c3:f0:4f:49:89:ba:6c:0c:54: 0c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.80.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:f4:62:74:eb:03:96:1f:23:e6:98:23:8b:9a:39:35:bc:67: e6:c4:05:db:45:82:67:44:a8:6d:23:b9:73:a7:f4:25:ec:4f: 32:36:15:40:86:2f:74:cb:ea:d7:2a:5b:98:26:52:c6:aa:48: da:0a:1f:81:ef:56:99:cb:d1:cf:04:1e:72:7e:6a:41:18:f1: de:72:0c:19:6f:8f:1f:00:54:96:fd:33:78:8f:ca:20:79:84: dc:c7:fa:9b:0f:c5:31:dd:b2:d1:00:bc:2a:5e:e0:d1:8f:dd: 52:57:df:7e:8e:91:cb:37:88:c6:ed:ed:04:b5:28:d9:d1:b3: 5e:15:25:46:82:e8:98:72:99:bb:ea:74:8c:52:81:cf:98:3c: bb:96:1a:14:d4:31:4c:19:7c:4b:f2:1e:b0:95:bf:2d:9c:2f: 12:56:34:a9:c0:ae:ee:ac:fa:6b:5f:da:a1:f6:9a:85:ff:f3: 7c:8f:84:73:c4:f2:30:b7:61:6b:66:ae:5e:34:97:5c:55:c2: c0:bb:64:1a:b5:48:2d:b4:bc:e4:c3:79:07:8a:82:65:01:ff: 51:9d:6f:34:de:32:9c:cf:ad:aa:96:af:b0:2a:85:64:fb:5e: fa:fe:13:08:0b:96:ad:7a:de:c4:ae:e7:63:3e:ed:b9:5a:f4: e3:0b:b2:e9 -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICce8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjYwMTEwMTQxMTQ1WhcNMjcwMTMxMDAwMDAwWjBGMREwDwYD VQQDDAhBOTFFNTU0QTExMC8GA1UEBRMoMTIxQUYxNDREOTAzRTNGODg5N0RGMEZF RDIwNzFBMTY0Nzc1RUQ0RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALi+Jq83DXZZJle8uiBgMNh3CLJAVlHNo5hSz8UHdSPq7RDl5iXGxoMtPrLb844g owba4fj9QtcSO7HL9yK/Xk69CMuThASMdSdbjtGV+UzE6MV+dGrsduQ1hOtNpE9T W1GzRaazrOuubSrkqclyA8YJlR1g/PecdNbI3R7UbYsqNOZrqbbKjeby8wUdErdr zbrfeaAu+vtt6KTFXmR7/+gheG12sNQrFr/7xsJPlfxIwIklHPhsYlJfWVN6sSqT soQnLs2VfmyrPfd470lTGQLDKPireFFoLgYG3+6gdf8oRgZ1onTKqJ5WUmsEqlw1 ST9XkkPlw/BPSYm6bAxUDMcCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQSGvFE2QPj +Il98P7SBxoWR3XtTzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU1NEEvNzk1RTczRDA5MUY3MTFFRkFERTExMjY2QzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUU1NTRBLzc5NUU3M0QwOTFGNzExRUZBREUxMTI2NkM0RjlBRTAyL0VocnhSTmtE NF9pSmZmRC0wZ2NhRmtkMTdVOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/UDANBgkqhkiG9w0BAQsFAAOCAQEATfRidOsDlh8j5pgji5o5 Nbxn5sQF20WCZ0SobSO5c6f0JexPMjYVQIYvdMvq1ypbmCZSxqpI2gofge9WmcvR zwQecn5qQRjx3nIMGW+PHwBUlv0zeI/KIHmE3Mf6mw/FMd2y0QC8Kl7g0Y/dUlff fo6RyzeIxu3tBLUo2dGzXhUlRoLomHKZu+p0jFKBz5g8u5YaFNQxTBl8S/IesJW/ LZwvElY0qcCu7qz6a1/aofaahf/zfI+Ec8TyMLdha2auXjSXXFXCwLtkGrVILbS8 5MN5B4qCZQH/UZ1vNN4ynM+tqpavsCqFZPte+v4TCAuWrXrexK7nYz7tuVr04wuy 6Q== -----END CERTIFICATE-----Generated at Sun Jan 18 01:53:28 2026 by rpki-client