This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer File: F2vOFchi1HunYKH2ZTj4HVxJO4E.cer (raw, json) Hash identifier: C5IEu5HzR2ZBIouN11cwSMtDJC/5mV8xs23M4wQKppc= Subject key identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 7139 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft caRepository: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Wed 31 Dec 2025 13:19:46 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 160.191.228.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28985 (0x7139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Dec 31 13:19:46 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A91706E4, serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8b:51:82:c1:a9:ad:ec:ff:ef:36:67:91:4a: b8:ff:c8:5b:b6:eb:32:96:ea:8a:4c:b2:4f:51:07: 12:99:ae:db:a7:a7:40:d7:a3:f0:a6:49:a0:60:1a: e0:4f:1f:5c:70:4b:ac:cf:7d:76:c7:7d:f7:80:a3: 74:75:ee:29:f2:39:ed:77:a9:08:4e:15:43:60:fc: e9:b1:20:f6:42:1f:51:c9:e6:c9:c4:ca:e3:47:94: ea:e5:8c:12:a0:2e:28:d8:d9:9c:a3:11:69:b9:00: ed:93:8b:61:bf:d3:06:eb:15:6c:83:da:dc:0d:5a: 61:f7:32:02:f0:ab:b3:78:5e:b8:fe:ce:88:ba:e7: 3f:6f:63:cf:39:10:f7:c7:a8:eb:96:41:0c:3a:e3: 70:55:6a:8f:71:f5:c9:56:20:11:6e:48:13:cd:5e: cd:6c:49:f7:c4:a2:bb:7d:fb:88:7e:88:84:75:e9: 0f:12:92:92:02:02:d0:bc:e4:b8:60:8a:cd:ed:eb: f6:81:10:84:cc:f4:5f:56:ea:0d:39:b7:82:d4:a8: b7:b9:85:15:99:4f:6f:6f:4c:e9:34:09:df:9f:35: 87:c0:f9:90:9f:3e:ad:8b:6f:3a:b2:5b:b5:74:5b: d1:c1:e0:4c:15:80:c1:5b:2d:96:80:d3:e4:76:6c: a5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.228.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:52:9f:02:7c:f2:fa:58:b9:eb:bd:b3:92:1b:89:84:93:2f: 6e:bb:40:fe:4a:82:38:4d:f9:e3:4c:c5:e2:7e:96:ff:b6:66: 80:d4:0c:fa:37:29:92:0a:94:02:5b:7f:92:e4:fb:f2:4c:dc: 99:94:91:0d:ee:80:d0:3e:be:e6:3c:5e:d3:05:2f:39:bc:b7: 03:60:e1:e5:37:82:25:9a:af:0d:17:cf:40:e8:6c:53:78:1e: 2a:57:22:b9:99:a7:92:ad:1a:47:c0:93:09:e3:44:e3:43:4c: 6a:c3:c6:9d:e6:cb:6d:94:b6:3e:94:91:5c:a0:80:b7:45:00: f0:0a:59:02:24:63:96:2c:ce:fc:be:e6:d3:51:65:fc:b4:d5: 12:47:a7:96:2a:45:ab:94:bc:cb:6e:44:bf:42:a5:fd:59:f6: bd:b6:4f:c7:f4:1a:41:d9:98:65:1d:03:98:8a:a0:a6:46:8f: c7:6a:71:85:b2:da:f2:a1:3e:24:fe:3f:04:97:45:20:0f:ff: 1b:1d:25:95:9e:17:99:07:14:80:0d:bc:b1:7a:bb:54:2d:00: ef:14:f8:71:8e:15:ca:93:52:ba:f7:95:92:87:da:1f:91:71: c1:37:86:45:e9:7f:16:dd:f1:0a:0f:c9:25:62:f3:05:95:de: f8:92:a7:fb -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICcTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMjMxMTMxOTQ2WhcNMjcwMzAyMDAwMDAwWjBGMREwDwYD VQQDDAhBOTE3MDZFNDExMC8GA1UEBRMoMTc2QkNFMTVDODYyRDQ3QkE3NjBBMUY2 NjUzOEY4MUQ1QzQ5M0I4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANSLUYLBqa3s/+82Z5FKuP/IW7brMpbqikyyT1EHEpmu26enQNej8KZJoGAa4E8f XHBLrM99dsd994CjdHXuKfI57XepCE4VQ2D86bEg9kIfUcnmycTK40eU6uWMEqAu KNjZnKMRabkA7ZOLYb/TBusVbIPa3A1aYfcyAvCrs3heuP7OiLrnP29jzzkQ98eo 65ZBDDrjcFVqj3H1yVYgEW5IE81ezWxJ98Siu337iH6IhHXpDxKSkgIC0LzkuGCK ze3r9oEQhMz0X1bqDTm3gtSot7mFFZlPb29M6TQJ3581h8D5kJ8+rYtvOrJbtXRb 0cHgTBWAwVstloDT5HZspV0CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQXa84VyGLU e6dgofZlOPgdXEk7gTAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA2RTQvMzJFOTkzQzBBNjg0MTFFRjhGNUVEMzdGQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTcwNkU0LzMyRTk5M0MwQTY4NDExRUY4RjVFRDM3RkM0RjlBRTAyL0Yydk9GY2hp MUh1bllLSDJaVGo0SFZ4Sk80RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/5DANBgkqhkiG9w0BAQsFAAOCAQEAbFKfAnzy+li5672zkhuJ hJMvbrtA/kqCOE3540zF4n6W/7ZmgNQM+jcpkgqUAlt/kuT78kzcmZSRDe6A0D6+ 5jxe0wUvOby3A2Dh5TeCJZqvDRfPQOhsU3geKlciuZmnkq0aR8CTCeNE40NMasPG nebLbZS2PpSRXKCAt0UA8ApZAiRjlizO/L7m01Fl/LTVEkenlipFq5S8y25Ev0Kl /Vn2vbZPx/QaQdmYZR0DmIqgpkaPx2pxhbLa8qE+JP4/BJdFIA//Gx0llZ4XmQcU gA28sXq7VC0A7xT4cY4VypNSuveVkofaH5FxwTeGRel/Ft3xCg/JJWLzBZXe+JKn +w== -----END CERTIFICATE-----Generated at Sun Jan 18 01:51:36 2026 by rpki-client