This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JSpaWMLCOTaCu_K7xGEjQcEdhBk.cer File: JSpaWMLCOTaCu_K7xGEjQcEdhBk.cer (raw, json) Hash identifier: hWJrrZ6Ea0XIMjFgnfgZNSXnJ8OmH1tZI2ZOWE+ePKg= Subject key identifier: 25:2A:5A:58:C2:C2:39:36:82:BB:F2:BB:C4:61:23:41:C1:1D:84:19 Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 6E2A Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/JSpaWMLCOTaCu_K7xGEjQcEdhBk.mft caRepository: rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Sat 15 Nov 2025 14:04:07 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: IP: 160.191.70.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28202 (0x6e2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Nov 15 14:04:07 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A91AF4CC, serialNumber=252A5A58C2C2393682BBF2BBC4612341C11D8419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:c4:fe:0c:ec:ba:c4:61:a4:46:e4:e3:f3:08: 67:c9:09:99:51:83:c6:5d:a7:6e:e9:64:19:e8:43: aa:f9:55:85:24:e0:db:e7:b4:cd:e7:f1:26:b4:60: 24:9c:21:9f:bf:35:2c:6a:56:e4:35:98:53:07:e6: 83:65:95:4f:5a:6c:1e:ad:30:ac:99:8b:2a:3c:77: f8:e8:35:3f:c1:8f:ba:42:4b:30:a3:b9:59:88:98: 73:f1:14:8a:db:ad:b8:99:26:93:20:e2:0a:e5:30: f1:29:c0:20:b9:ac:aa:3b:de:ad:53:a9:4d:69:a9: a9:b2:f0:3e:2e:1c:fb:f0:96:5e:37:d4:1f:fe:bc: 85:e7:bd:2e:61:42:8d:96:a9:36:3a:fe:eb:7c:bc: 0a:3d:db:8b:26:bb:2e:90:db:27:96:97:14:6e:2d: ad:f2:b4:4b:19:40:33:f6:a4:81:9f:03:0f:cf:20: 31:2b:99:42:4b:4e:6c:fb:a5:83:80:9a:78:a2:c2: 2c:15:41:23:de:2d:17:9b:10:07:71:a7:c1:64:ca: 5d:d5:f4:48:37:37:01:87:c6:5b:93:cc:8c:db:72: 53:5e:af:09:4b:42:ef:d4:ee:1b:69:63:78:13:8a: 9c:cb:94:3c:fc:38:a7:c8:74:2b:ca:55:dd:67:b8: f7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:2A:5A:58:C2:C2:39:36:82:BB:F2:BB:C4:61:23:41:C1:1D:84:19 X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AF4CC/CC68E3DA914811EF87EADD52C4F9AE02/JSpaWMLCOTaCu_K7xGEjQcEdhBk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.70.0/23 Signature Algorithm: sha256WithRSAEncryption 13:e8:17:dd:ca:6c:3c:96:cf:b6:71:fb:de:33:74:59:0b:e8: 96:86:cb:36:e4:10:8b:ed:3b:d0:d5:52:17:cf:7b:32:bd:54: 00:0c:6e:76:45:cf:3c:8e:2c:e8:09:f4:28:48:8b:e9:48:15: a8:97:b3:d9:0e:4e:dc:ea:53:5b:16:c6:f0:8c:1d:cf:63:80: 47:30:71:9e:ce:09:bb:9d:60:39:d8:f1:c2:a4:5b:50:92:b5: b9:b7:c4:f4:e9:0f:fd:6c:b3:c2:97:58:37:e0:4f:ce:ad:f1: bd:4a:12:32:85:da:f3:d5:c8:3d:f9:b9:d5:5b:73:e3:ac:53: b8:19:f7:8f:40:bc:27:03:9f:7c:50:95:5a:23:14:dd:28:bb: d6:20:e3:bd:4b:9d:00:7d:f3:f4:7c:07:24:78:b2:90:b3:6c: 3a:d6:88:87:c2:1b:52:e6:2a:f1:e8:67:af:52:bc:72:c0:fb: 35:04:3d:7a:e8:6f:9f:46:1f:47:9e:c9:f6:be:85:59:db:cc: d5:c4:87:b1:4b:69:7d:b7:94:07:9c:58:54:bc:3b:24:b1:30: d6:09:6b:62:b0:7c:bc:38:d2:5b:1a:48:b0:ca:0e:36:c1:74: 78:53:90:a2:ed:84:d3:05:e2:63:a5:f8:d0:b0:a1:7a:70:f4: 7f:77:96:f2 -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICbiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMTE1MTQwNDA3WhcNMjcwMTMxMDAwMDAwWjBGMREwDwYD VQQDEwhBOTFBRjRDQzExMC8GA1UEBRMoMjUyQTVBNThDMkMyMzkzNjgyQkJGMkJC QzQ2MTIzNDFDMTFEODQxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AJDE/gzsusRhpEbk4/MIZ8kJmVGDxl2nbulkGehDqvlVhSTg2+e0zefxJrRgJJwh n781LGpW5DWYUwfmg2WVT1psHq0wrJmLKjx3+Og1P8GPukJLMKO5WYiYc/EUitut uJkmkyDiCuUw8SnAILmsqjverVOpTWmpqbLwPi4c+/CWXjfUH/68hee9LmFCjZap Njr+63y8Cj3biya7LpDbJ5aXFG4trfK0SxlAM/akgZ8DD88gMSuZQktObPulg4Ca eKLCLBVBI94tF5sQB3GnwWTKXdX0SDc3AYfGW5PMjNtyU16vCUtC79TuG2ljeBOK nMuUPPw4p8h0K8pV3We49+UCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQlKlpYwsI5 NoK78rvEYSNBwR2EGTAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUY0Q0MvQ0M2OEUzREE5MTQ4MTFFRjg3RUFERDUyQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUFGNENDL0NDNjhFM0RBOTE0ODExRUY4N0VBREQ1MkM0RjlBRTAyL0pTcGFXTUxD T1RhQ3VfSzd4R0VqUWNFZGhCay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/RjANBgkqhkiG9w0BAQsFAAOCAQEAE+gX3cpsPJbPtnH73jN0 WQvolobLNuQQi+070NVSF897Mr1UAAxudkXPPI4s6An0KEiL6UgVqJez2Q5O3OpT WxbG8Iwdz2OARzBxns4Ju51gOdjxwqRbUJK1ubfE9OkP/WyzwpdYN+BPzq3xvUoS MoXa89XIPfm51Vtz46xTuBn3j0C8JwOffFCVWiMU3Si71iDjvUudAH3z9HwHJHiy kLNsOtaIh8IbUuYq8ehnr1K8csD7NQQ9euhvn0YfR57J9r6FWdvM1cSHsUtpfbeU B5xYVLw7JLEw1glrYrB8vDjSWxpIsMoONsF0eFOQou2E0wXiY6X40LChenD0f3eW 8g== -----END CERTIFICATE-----Generated at Wed Dec 3 13:17:13 2025 by rpki-client