This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer File: YUeipvEG3FYBPcO8-6C0t1Ps0bw.cer (raw, json) Hash identifier: DEOWz7Z1HQb1wzFFOtlGNZW+pmvhj2eFFSba8BSqROI= Subject key identifier: 61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 6E25 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft caRepository: rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Fri 14 Nov 2025 18:25:16 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: IP: 160.191.38.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28197 (0x6e25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Nov 14 18:25:16 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A91E5832, serialNumber=6147A2A6F106DC56013DC3BCFBA0B4B753ECD1BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d8:57:0f:38:e6:41:50:e5:32:77:b4:a9:2c: 37:43:41:74:af:25:4a:59:2f:9d:4d:34:88:f1:27: 98:c0:03:5e:84:da:49:9e:f7:45:d7:23:c9:c7:6c: 34:6a:48:d0:e5:c7:39:e9:e6:81:bf:5e:b2:77:77: 6d:fd:2f:8d:b6:74:89:d1:77:58:fe:62:ea:00:ae: 52:2d:c9:40:01:7c:b9:40:63:14:1e:e5:66:2f:d3: 6c:1c:cb:dd:be:bb:b5:66:e6:18:d6:0f:46:c1:57: b8:67:52:70:41:ed:26:38:2b:47:79:38:22:91:e3: ba:61:53:a1:c9:79:a3:3e:a3:eb:f9:18:cd:9a:46: a9:39:5d:71:b2:a8:5e:bb:fc:ae:c0:24:99:d3:55: 05:3d:20:d2:d5:67:06:7d:30:dc:3a:a9:d2:cc:56: 3a:69:eb:f0:cf:60:52:95:27:4c:4e:cc:68:3a:4e: 25:63:92:a9:7f:47:cd:0a:cf:30:88:bd:4c:80:91: 64:9e:6a:73:fb:8a:50:39:71:c0:29:d6:bc:32:e9: 99:fd:12:54:82:1c:76:6a:9e:c5:ab:f3:f7:43:32: 95:a0:9e:2c:3d:ff:73:90:7b:a1:52:4b:f0:77:8d: d6:3a:92:f9:9b:1c:af:c2:0a:bf:79:92:54:e9:c6: 59:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:47:A2:A6:F1:06:DC:56:01:3D:C3:BC:FB:A0:B4:B7:53:EC:D1:BC X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E5832/1ED452ACD0BA11EF896CD026C4F9AE02/YUeipvEG3FYBPcO8-6C0t1Ps0bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.38.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:ba:b2:1d:c0:c6:b3:c7:8b:6c:24:3b:24:40:08:32:ef:20: 5f:95:a7:59:36:2d:a4:bf:69:9f:49:fe:63:72:2b:67:21:83: c2:73:93:5c:b2:39:6e:06:85:ec:ba:32:ed:60:c0:91:ca:3d: a9:ae:52:8e:75:45:fe:1e:c4:fb:ad:f2:3a:cf:d8:ca:35:f4: 47:2c:ed:e7:b7:c3:8c:bf:3d:0d:2e:91:0f:9e:29:72:ea:3a: da:55:47:a8:9a:84:24:7a:a3:9e:d3:78:19:eb:65:28:a6:28: 88:10:78:67:28:d1:c4:df:ae:fb:7c:10:66:09:d1:b0:e8:d9: 77:3a:5e:13:b5:49:bf:ec:c6:0c:85:28:b7:e2:56:ef:c0:8c: 76:21:57:a9:82:6a:61:0c:12:51:d4:cf:2a:75:5a:14:7d:d2: 9d:7a:49:3d:19:f6:ea:12:ed:79:23:b8:93:5f:db:24:db:a7: cf:db:25:ba:3a:65:11:db:87:51:3c:89:8f:b2:5e:70:94:5e: 68:ee:6c:a2:09:ff:77:17:88:43:84:69:d0:e2:20:8e:6f:aa: 39:f9:36:10:12:e2:43:d0:4d:c8:85:96:9d:f0:d7:91:86:a9: 75:f5:51:cc:c3:07:76:ed:82:0c:89:69:9c:0f:3e:76:0b:a1: b2:9b:22:45 -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICbiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMTE0MTgyNTE2WhcNMjcwMTMxMDAwMDAwWjBGMREwDwYD VQQDEwhBOTFFNTgzMjExMC8GA1UEBRMoNjE0N0EyQTZGMTA2REM1NjAxM0RDM0JD RkJBMEI0Qjc1M0VDRDFCQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALjYVw845kFQ5TJ3tKksN0NBdK8lSlkvnU00iPEnmMADXoTaSZ73RdcjycdsNGpI 0OXHOenmgb9esnd3bf0vjbZ0idF3WP5i6gCuUi3JQAF8uUBjFB7lZi/TbBzL3b67 tWbmGNYPRsFXuGdScEHtJjgrR3k4IpHjumFTocl5oz6j6/kYzZpGqTldcbKoXrv8 rsAkmdNVBT0g0tVnBn0w3Dqp0sxWOmnr8M9gUpUnTE7MaDpOJWOSqX9HzQrPMIi9 TICRZJ5qc/uKUDlxwCnWvDLpmf0SVIIcdmqexavz90MylaCeLD3/c5B7oVJL8HeN 1jqS+Zscr8IKv3mSVOnGWfECAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRhR6Km8Qbc VgE9w7z7oLS3U+zRvDAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU4MzIvMUVENDUyQUNEMEJBMTFFRjg5NkNEMDI2QzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUU1ODMyLzFFRDQ1MkFDRDBCQTExRUY4OTZDRDAyNkM0RjlBRTAyL1lVZWlwdkVH M0ZZQlBjTzgtNkMwdDFQczBidy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/JjANBgkqhkiG9w0BAQsFAAOCAQEAerqyHcDGs8eLbCQ7JEAI Mu8gX5WnWTYtpL9pn0n+Y3IrZyGDwnOTXLI5bgaF7Loy7WDAkco9qa5SjnVF/h7E +63yOs/YyjX0Ryzt57fDjL89DS6RD54pcuo62lVHqJqEJHqjntN4GetlKKYoiBB4 ZyjRxN+u+3wQZgnRsOjZdzpeE7VJv+zGDIUot+JW78CMdiFXqYJqYQwSUdTPKnVa FH3SnXpJPRn26hLteSO4k1/bJNunz9slujplEduHUTyJj7JecJReaO5sogn/dxeI Q4Rp0OIgjm+qOfk2EBLiQ9BNyIWWnfDXkYapdfVRzMMHdu2CDIlpnA8+dguhspsi RQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:54 2025 by rpki-client