This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer File: QOWCY5crniQUK6qbWvoFNIGjcZ4.cer (raw, json) Hash identifier: 3ktw+s2D5TJmvbi8V7B2BNuxQGVuk4ih+wFVbCnOTh4= Subject key identifier: 40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 7140 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.mft caRepository: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Wed 31 Dec 2025 14:06:30 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 164.52.0.0/17 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28992 (0x7140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Dec 31 14:06:30 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A91C31A2, serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:47:3d:c7:68:57:ac:01:2e:41:b6:bb:44:54: 91:2b:9a:c7:ca:f3:ea:2f:ee:2a:73:04:74:93:42: 38:ed:b1:94:b6:40:81:0b:d0:e3:3b:d5:7b:50:06: 88:1a:64:94:6f:3a:db:ba:f0:89:23:ba:56:07:aa: 00:f8:cc:4d:1f:9b:6f:f1:27:66:c9:df:e7:25:c7: d5:b1:05:12:9d:44:eb:55:e3:6f:70:ac:b6:bc:d5: e4:67:e5:17:b3:6e:ef:74:60:28:d8:06:8f:4c:be: fb:fc:f8:f1:8e:7b:b5:08:49:ab:eb:e6:d8:7d:19: 41:95:d6:a1:b0:41:41:d7:3c:c4:cf:7d:55:f1:85: 44:00:b7:40:5d:db:dd:5d:cc:58:5b:e2:18:4a:33: 21:72:f4:4a:5b:56:bb:20:bb:41:9c:5f:a4:ba:c2: cd:10:f0:b9:50:2c:b6:cd:d4:64:db:87:21:db:b6: 6f:64:eb:e1:a7:71:d1:7b:09:43:ac:aa:71:eb:1f: 81:8e:4a:db:af:2b:a9:f1:d7:41:26:9a:58:0a:90: df:a3:c0:08:d0:7f:d7:6f:bf:be:56:ff:6d:77:de: 4c:ec:f9:83:d4:13:a0:08:30:4f:0c:2f:62:d5:5d: 54:01:33:f9:8a:79:4e:4c:58:64:13:82:43:42:33: 62:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.52.0.0/17 Signature Algorithm: sha256WithRSAEncryption 58:6e:59:42:fd:46:d6:f6:f2:cc:47:b9:19:42:79:ce:8f:be: 78:ea:20:0e:93:cf:ae:9b:ca:9e:5d:0a:11:99:4d:86:88:8b: eb:85:eb:45:54:09:a2:fa:00:2f:6c:0c:b9:8f:ab:02:9f:6f: b4:28:60:fe:26:0c:11:b2:c0:e0:4d:7f:0e:4d:c6:73:40:77: f1:85:4c:be:ce:46:de:25:4e:b0:84:06:da:32:4d:60:f1:ac: b2:fe:2e:8b:63:2b:bd:35:2e:6b:ca:aa:d1:4f:73:2e:64:03: ba:51:f3:a8:3f:6e:98:8d:38:99:59:ac:cc:03:33:c9:e5:74: 66:4d:fb:46:16:71:0e:c2:0c:9b:71:e7:24:ac:83:d0:67:8a: 5e:7f:dd:16:be:5d:42:92:6d:b3:78:fd:b4:21:bf:11:6a:c3: f9:57:4d:f7:06:aa:3a:da:5a:7d:92:0a:a5:42:4d:0d:f1:da: e0:76:e7:68:40:c7:4b:a9:4b:db:68:2a:1e:96:52:5f:ff:36: f8:55:78:87:f7:1c:d8:e9:b7:53:c6:17:54:8a:48:29:9d:8c: 8a:49:9d:d5:4f:42:de:03:e9:a9:66:32:60:51:31:0d:a3:49: ee:eb:5d:52:c2:ea:59:7f:14:c5:04:d7:cb:5d:ba:79:d0:88: ac:c7:e3:0c -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICcUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMjMxMTQwNjMwWhcNMjcwMzAyMDAwMDAwWjBGMREwDwYD VQQDDAhBOTFDMzFBMjExMC8GA1UEBRMoNDBFNTgyNjM5NzJCOUUyNDE0MkJBQTlC NUFGQTA1MzQ4MUEzNzE5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANdHPcdoV6wBLkG2u0RUkSuax8rz6i/uKnMEdJNCOO2xlLZAgQvQ4zvVe1AGiBpk lG8627rwiSO6VgeqAPjMTR+bb/EnZsnf5yXH1bEFEp1E61Xjb3CstrzV5GflF7Nu 73RgKNgGj0y++/z48Y57tQhJq+vm2H0ZQZXWobBBQdc8xM99VfGFRAC3QF3b3V3M WFviGEozIXL0SltWuyC7QZxfpLrCzRDwuVAsts3UZNuHIdu2b2Tr4adx0XsJQ6yq cesfgY5K268rqfHXQSaaWAqQ36PACNB/12+/vlb/bXfeTOz5g9QToAgwTwwvYtVd VAEz+Yp5TkxYZBOCQ0IzYqMCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRA5YJjlyue JBQrqpta+gU0gaNxnjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxQTIvRDQ3NkVENzYzNTcyMTFFREFFOTc3ODM5QzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUMzMUEyL0Q0NzZFRDc2MzU3MjExRURBRTk3NzgzOUM0RjlBRTAyL1FPV0NZNWNy bmlRVUs2cWJXdm9GTklHamNaNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEB6Q0ADANBgkqhkiG9w0BAQsFAAOCAQEAWG5ZQv1G1vbyzEe5GUJ5 zo++eOogDpPPrpvKnl0KEZlNhoiL64XrRVQJovoAL2wMuY+rAp9vtChg/iYMEbLA 4E1/Dk3Gc0B38YVMvs5G3iVOsIQG2jJNYPGssv4ui2MrvTUua8qq0U9zLmQDulHz qD9umI04mVmszAMzyeV0Zk37RhZxDsIMm3HnJKyD0GeKXn/dFr5dQpJts3j9tCG/ EWrD+VdN9waqOtpafZIKpUJNDfHa4HbnaEDHS6lL22gqHpZSX/82+FV4h/cc2Om3 U8YXVIpIKZ2Mikmd1U9C3gPpqWYyYFExDaNJ7utdUsLqWX8UxQTXy126edCIrMfj DA== -----END CERTIFICATE-----Generated at Sun Jan 18 01:56:12 2026 by rpki-client