This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ic_Ogdh11c-PWWrb_MNgGWHEQec.cer File: Ic_Ogdh11c-PWWrb_MNgGWHEQec.cer (raw, json) Hash identifier: vyaNdIkXXiU37sX8vyrexSSVvu/deYVU0giRapxSgSQ= Subject key identifier: 21:CF:CE:81:D8:75:D5:CF:8F:59:6A:DB:FC:C3:60:19:61:C4:41:E7 Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 6FF1 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A9171BF0/9F591E8EA41511EFA14FBD3FC4F9AE02/Ic_Ogdh11c-PWWrb_MNgGWHEQec.mft caRepository: rsync://rpki.apnic.net/member_repository/A9171BF0/9F591E8EA41511EFA14FBD3FC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Wed 10 Dec 2025 13:34:19 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 160.191.196.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:26:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28657 (0x6ff1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Dec 10 13:34:19 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A9171BF0, serialNumber=21CFCE81D875D5CF8F596ADBFCC3601961C441E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f3:9e:e1:58:a3:3c:ae:d4:d0:bf:82:97:a4: fd:c8:6a:9c:10:cf:1e:7e:62:b5:a9:d8:ef:a4:c5: bf:5a:e9:b5:6d:f4:8b:ab:57:b5:e4:ae:b5:76:f3: a9:5c:1a:1b:4e:4b:e1:70:a6:b5:3e:d8:e3:c1:77: 51:e1:54:da:75:7f:48:f8:e6:e1:45:48:47:0d:ba: cc:67:6a:be:84:7b:f4:2f:27:c0:1c:8d:04:94:6e: 89:e4:b3:18:6d:15:bd:96:3c:51:82:dd:a1:78:fa: 04:93:ba:5e:13:e0:9e:48:7a:3a:21:3b:2a:18:32: c8:06:a4:b0:85:06:12:95:62:b8:e6:2a:8a:36:72: c2:e1:d3:52:06:6a:51:6c:f9:6c:da:05:f5:94:4b: 5f:01:77:4b:81:61:e2:9e:95:6f:fa:2d:cb:02:2e: 83:cd:e4:90:fc:21:c5:8b:62:55:d5:dd:84:75:27: 48:5e:67:85:15:a9:d0:e2:75:3a:f6:a7:7a:c1:e2: fb:cb:fc:84:9d:fc:a2:c5:cc:e7:9d:d4:d2:ca:8c: ca:24:6e:6c:32:c3:02:c8:9c:ba:0c:78:b7:80:e5: 89:0a:e4:4b:f6:d5:75:29:15:de:c6:dc:f7:d1:2a: 17:f7:46:88:7f:26:fa:02:b0:fb:18:9c:fb:4b:1a: c9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CF:CE:81:D8:75:D5:CF:8F:59:6A:DB:FC:C3:60:19:61:C4:41:E7 X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/9F591E8EA41511EFA14FBD3FC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/9F591E8EA41511EFA14FBD3FC4F9AE02/Ic_Ogdh11c-PWWrb_MNgGWHEQec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.196.0/23 Signature Algorithm: sha256WithRSAEncryption 27:2f:93:cb:cf:e5:15:61:f9:1c:12:df:97:8a:6e:db:44:c4: 62:c1:d0:6f:c2:e7:a6:ba:2f:d5:cd:55:31:e9:bf:02:ce:79: 52:a1:66:98:a1:e1:dc:54:95:3d:bf:3f:c2:07:5e:1d:5d:07: 98:99:f9:e5:7e:42:dd:1b:8e:e8:94:45:1e:36:62:b5:ed:1c: 59:34:3a:3f:e3:e4:63:76:26:91:64:b7:33:5e:cd:42:d8:aa: 59:ee:c7:8d:f4:92:50:69:d5:cc:03:c6:ce:1f:41:f1:a5:84: 60:c7:13:fc:8d:1f:be:fc:18:ec:7c:ff:3e:a7:fc:24:6f:d6: 40:4d:34:60:45:c8:7e:d4:7d:c7:5d:89:51:04:35:01:20:35: a5:60:d3:ed:9a:7b:96:7f:5d:6b:e0:c7:fd:36:4f:c9:7d:ba: ba:01:f1:36:8a:54:2d:d0:c3:db:76:de:34:63:3f:be:71:9d: de:bd:5a:28:d6:68:9f:4d:7b:a3:be:a9:a7:49:d9:9f:5b:17: 30:c7:e1:e1:37:98:2d:f2:dd:f5:0c:a5:39:75:d2:7a:9d:22: 55:76:56:4d:bc:a5:66:79:ac:69:6d:81:71:33:91:80:dd:5d: eb:79:0b:6d:78:e1:56:f4:f4:79:44:ce:98:23:00:12:61:10: c8:42:57:cf -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICb/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMjEwMTMzNDE5WhcNMjcwMzAyMDAwMDAwWjBGMREwDwYD VQQDEwhBOTE3MUJGMDExMC8GA1UEBRMoMjFDRkNFODFEODc1RDVDRjhGNTk2QURC RkNDMzYwMTk2MUM0NDFFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMrznuFYozyu1NC/gpek/chqnBDPHn5itanY76TFv1rptW30i6tXteSutXbzqVwa G05L4XCmtT7Y48F3UeFU2nV/SPjm4UVIRw26zGdqvoR79C8nwByNBJRuieSzGG0V vZY8UYLdoXj6BJO6XhPgnkh6OiE7KhgyyAaksIUGEpViuOYqijZywuHTUgZqUWz5 bNoF9ZRLXwF3S4Fh4p6Vb/otywIug83kkPwhxYtiVdXdhHUnSF5nhRWp0OJ1Ovan esHi+8v8hJ38osXM553U0sqMyiRubDLDAsicugx4t4DliQrkS/bVdSkV3sbc99Eq F/dGiH8m+gKw+xic+0sayXcCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQhz86B2HXV z49Zatv8w2AZYcRB5zAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFCRjAvOUY1OTFFOEVBNDE1MTFFRkExNEZCRDNGQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTcxQkYwLzlGNTkxRThFQTQxNTExRUZBMTRGQkQzRkM0RjlBRTAyL0ljX09nZGgx MWMtUFdXcmJfTU5nR1dIRVFlYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/xDANBgkqhkiG9w0BAQsFAAOCAQEAJy+Ty8/lFWH5HBLfl4pu 20TEYsHQb8Lnprov1c1VMem/As55UqFmmKHh3FSVPb8/wgdeHV0HmJn55X5C3RuO 6JRFHjZite0cWTQ6P+PkY3YmkWS3M17NQtiqWe7HjfSSUGnVzAPGzh9B8aWEYMcT /I0fvvwY7Hz/Pqf8JG/WQE00YEXIftR9x12JUQQ1ASA1pWDT7Zp7ln9da+DH/TZP yX26ugHxNopULdDD23beNGM/vnGd3r1aKNZon017o76pp0nZn1sXMMfh4TeYLfLd 9QylOXXSep0iVXZWTbylZnmsaW2BcTORgN1d63kLbXjhVvT0eUTOmCMAEmEQyEJX zw== -----END CERTIFICATE-----Generated at Thu Dec 18 22:37:32 2025 by rpki-client