This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer File: bz4CYgDVU58n4POqUNMgokUo1X0.cer (raw, json) Hash identifier: 3NNMgpJFhebPgSyegKZsH+6DyLS/RdcAkvZd2QtRM00= Subject key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 7255 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft caRepository: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Thu 15 Jan 2026 13:58:41 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 160.250.190.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29269 (0x7255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Jan 15 13:58:41 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:12:71:36:04:05:f6:bf:92:83:f4:c5:8d:37: fd:7d:06:2d:b7:c8:34:4b:8e:e2:7d:ac:4c:00:9c: 6c:74:f7:2b:57:27:f9:54:6a:c6:e6:ee:8c:91:fc: c0:bd:c8:36:c0:3d:4a:b4:d1:1b:01:8a:2b:86:1a: cd:86:bd:0e:6c:6e:46:8f:7c:f3:26:39:78:75:3e: cc:17:6d:b4:7a:4a:8d:57:52:bb:21:ca:c5:5b:33: 78:f7:86:e8:fd:d3:14:83:2f:6a:be:24:a6:de:86: a3:9d:27:bf:e0:d9:63:15:23:b3:3b:98:90:3b:94: e0:ec:14:8d:45:b5:e9:94:cd:a9:8d:d6:68:74:d9: ac:26:39:a3:54:0c:c2:c0:86:c1:49:69:65:c0:ec: ea:02:3c:fb:09:b5:24:5f:74:f0:82:82:0a:b0:5e: 97:49:62:02:48:dc:a0:36:14:15:43:fd:8b:dc:5b: 0e:42:1e:e6:2c:6c:55:97:ad:d9:27:74:43:a4:3d: 0e:36:c4:72:05:37:29:e3:64:82:6a:b6:ba:d1:9f: 2e:52:c6:33:fc:50:a9:ea:c7:f8:ae:93:b1:fe:a9: b4:77:9a:e6:48:14:a3:12:05:c3:d1:fc:ed:3b:6c: b1:ec:36:e0:54:05:57:5a:fb:27:86:b8:67:00:dc: a8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.190.0/23 Signature Algorithm: sha256WithRSAEncryption 86:7f:e2:a1:26:e6:6e:e0:d4:b6:87:ea:49:38:36:82:a5:bb: 3b:85:66:0c:28:a4:5e:44:2a:53:5b:4f:82:da:14:9b:e5:c9: 2a:7f:20:cd:92:32:09:6e:a8:1a:de:58:79:9e:c3:b6:cb:d6: 17:6d:a8:42:a1:78:55:21:bb:8e:9b:1f:64:31:3e:67:bf:b5: 6d:8d:35:02:c2:e3:25:12:b8:41:3a:1b:c3:71:8b:e7:8a:dd: c6:f3:08:8f:61:e3:be:e9:a0:7b:92:74:98:dd:33:7b:44:2d: 26:02:ec:3f:82:6c:7f:a7:c4:e2:ed:cb:85:4d:c0:00:5f:d4: 12:19:9f:e2:07:bd:0d:19:eb:e4:56:52:33:73:69:c0:96:32: b7:ea:d2:50:b4:4f:78:2e:23:36:e8:ba:4a:26:d6:79:38:81: 21:a7:47:a9:35:56:89:13:62:00:1a:4c:c9:9d:43:7b:24:3b: bb:8c:8b:32:ce:e7:b5:f2:cc:fb:8f:14:f0:3a:53:45:47:f7: 46:9e:fe:de:a9:a4:0c:f2:aa:e1:db:9f:14:c1:a9:ce:1f:62: ea:87:1b:09:96:b0:46:26:24:a7:93:c7:55:ac:fe:3e:96:4a: e0:4a:67:8e:d9:27:38:7b:65:3a:7c:c2:fd:dc:3e:f6:58:38: c7:7b:9e:e5 -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICclUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjYwMTE1MTM1ODQxWhcNMjcwMzMxMDAwMDAwWjBGMREwDwYD VQQDDAhBOTFCNzMyQTExMC8GA1UEBRMoNkYzRTAyNjIwMEQ1NTM5RjI3RTBGM0FB NTBEMzIwQTI0NTI4RDU3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AOwScTYEBfa/koP0xY03/X0GLbfINEuO4n2sTACcbHT3K1cn+VRqxubujJH8wL3I NsA9SrTRGwGKK4YazYa9DmxuRo988yY5eHU+zBdttHpKjVdSuyHKxVszePeG6P3T FIMvar4kpt6Go50nv+DZYxUjszuYkDuU4OwUjUW16ZTNqY3WaHTZrCY5o1QMwsCG wUlpZcDs6gI8+wm1JF908IKCCrBel0liAkjcoDYUFUP9i9xbDkIe5ixsVZet2Sd0 Q6Q9DjbEcgU3KeNkgmq2utGfLlLGM/xQqerH+K6Tsf6ptHea5kgUoxIFw9H87Tts sew24FQFV1r7J4a4ZwDcqA8CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRvPgJiANVT nyfg86pQ0yCiRSjVfTAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjczMkEvRkZGMkU2QThCNjMwMTFFRkEyRDdGQjYzQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUI3MzJBL0ZGRjJFNkE4QjYzMDExRUZBMkQ3RkI2M0M0RjlBRTAyL2J6NENZZ0RW VTU4bjRQT3FVTk1nb2tVbzFYMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaD6vjANBgkqhkiG9w0BAQsFAAOCAQEAhn/ioSbmbuDUtofqSTg2 gqW7O4VmDCikXkQqU1tPgtoUm+XJKn8gzZIyCW6oGt5YeZ7DtsvWF22oQqF4VSG7 jpsfZDE+Z7+1bY01AsLjJRK4QTobw3GL54rdxvMIj2Hjvumge5J0mN0ze0QtJgLs P4Jsf6fE4u3LhU3AAF/UEhmf4ge9DRnr5FZSM3NpwJYyt+rSULRPeC4jNui6SibW eTiBIadHqTVWiRNiABpMyZ1DeyQ7u4yLMs7ntfLM+48U8DpTRUf3Rp7+3qmkDPKq 4dufFMGpzh9i6ocbCZawRiYkp5PHVaz+PpZK4EpnjtknOHtlOnzC/dw+9lg4x3ue 5Q== -----END CERTIFICATE-----Generated at Sun Jan 18 01:56:20 2026 by rpki-client