This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer File: cI8eBxM4VcgHTu1fjIO0RmpgesI.cer (raw, json) Hash identifier: R/9qiPkPBt2KAViq9f93vhC03B+45kZQwPzuV/IOxNw= Subject key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 7262 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft caRepository: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Fri 16 Jan 2026 13:16:57 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 157.10.38.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29282 (0x7262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Jan 16 13:16:57 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:ef:bc:7f:5c:ca:29:05:cf:2c:e4:e8:55:1e: 32:e9:c9:4e:1a:de:5d:45:e3:e1:06:73:60:fb:33: 2a:a8:87:7f:f4:49:45:6e:56:7e:e8:25:54:5f:fc: 5f:ac:c2:6b:a6:d3:64:de:34:94:9d:29:27:bb:df: 16:3a:96:01:fc:eb:ac:bb:96:70:dd:a6:4d:25:ad: f0:a5:a5:91:d1:3a:5e:09:b0:3e:a6:6a:4d:4b:5f: f7:4c:e8:e8:89:a5:df:1d:e7:5f:56:0d:9b:ab:f2: 0b:36:fe:91:bc:f0:97:fb:0d:92:83:4d:1e:f9:8c: 6c:96:41:21:53:bd:cd:15:ac:7a:17:bf:2b:65:a8: b8:7b:0f:e6:15:22:cd:39:a2:59:f7:1d:11:fc:57: 57:0c:8d:52:4c:54:5c:6e:e7:ca:b2:6d:b9:ae:56: 5b:99:7d:c0:b6:f2:0a:f7:4a:ae:23:7b:18:67:2c: 54:c1:a7:f6:b8:d8:14:14:c3:ea:70:2e:98:ec:e7: 1c:fd:9a:81:4d:39:76:2c:6f:64:a4:b5:4c:4b:39: 33:b8:c2:e5:a7:5d:d4:17:f4:45:af:2b:c9:65:94: 40:c4:2f:25:92:7a:13:4a:31:d8:02:a4:75:ce:0e: 13:58:c9:72:86:9d:fc:62:8a:19:9f:91:19:c5:58: fa:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.38.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:38:c8:82:1b:71:a7:51:89:4d:5d:7e:8e:7d:59:21:69:79: 28:f0:04:62:06:72:63:cc:ad:a4:f7:00:0e:e3:3e:8f:01:27: e8:ef:45:10:6d:17:e6:29:02:d3:c7:65:05:b9:5f:97:4a:fc: 05:5f:63:13:68:26:91:08:91:bb:75:2b:8c:95:69:3f:f7:de: 86:f4:c9:84:d1:88:14:5e:d9:4f:05:c2:1f:b7:93:67:88:4b: d0:14:7d:a7:c6:1d:5d:1b:94:93:25:6f:63:bd:26:ae:87:6f: e2:8e:95:86:70:5d:f3:d2:46:c8:2e:5c:52:f7:a7:74:1b:0a: b0:48:77:3d:88:bb:b7:03:b3:8f:85:fa:fb:3a:9d:83:ee:3a: ab:2e:5b:a2:0f:cf:d8:a3:70:66:53:44:5d:02:57:6f:44:1b: 63:2f:74:ab:d8:d6:cb:bf:07:3f:26:0d:55:8f:08:23:0d:5e: f2:39:ac:c4:29:4d:a0:4c:3e:40:1f:b8:6c:12:83:ab:c6:5e: cc:24:68:09:a6:a0:dd:87:41:76:3e:ea:2b:44:8f:38:b3:b7: bb:e3:8c:13:89:42:aa:71:3f:64:3e:fc:94:d0:61:17:4d:19: 5a:04:be:f8:c5:95:1c:e3:3c:64:69:d1:dc:27:84:5d:51:db: 24:41:ed:40 -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICcmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjYwMTE2MTMxNjU3WhcNMjcwMzMxMDAwMDAwWjBGMREwDwYD VQQDDAhBOTE3MUQxNjExMC8GA1UEBRMoNzA4RjFFMDcxMzM4NTVDODA3NEVFRDVG OEM4M0I0NDY2QTYwN0FDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB APXvvH9cyikFzyzk6FUeMunJThreXUXj4QZzYPszKqiHf/RJRW5WfuglVF/8X6zC a6bTZN40lJ0pJ7vfFjqWAfzrrLuWcN2mTSWt8KWlkdE6XgmwPqZqTUtf90zo6Iml 3x3nX1YNm6vyCzb+kbzwl/sNkoNNHvmMbJZBIVO9zRWsehe/K2WouHsP5hUizTmi WfcdEfxXVwyNUkxUXG7nyrJtua5WW5l9wLbyCvdKriN7GGcsVMGn9rjYFBTD6nAu mOznHP2agU05dixvZKS1TEs5M7jC5add1Bf0Ra8ryWWUQMQvJZJ6E0ox2AKkdc4O E1jJcoad/GKKGZ+RGcVY+lUCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBRwjx4HEzhV yAdO7V+Mg7RGamB6wjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEMTYvNjU2RDE3QThBRTlDMTFFRTkxMUFGQjYzQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTcxRDE2LzY1NkQxN0E4QUU5QzExRUU5MTFBRkI2M0M0RjlBRTAyL2NJOGVCeE00 VmNnSFR1MWZqSU8wUm1wZ2VzSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0KJjANBgkqhkiG9w0BAQsFAAOCAQEAfzjIghtxp1GJTV1+jn1Z IWl5KPAEYgZyY8ytpPcADuM+jwEn6O9FEG0X5ikC08dlBblfl0r8BV9jE2gmkQiR u3UrjJVpP/fehvTJhNGIFF7ZTwXCH7eTZ4hL0BR9p8YdXRuUkyVvY70mrodv4o6V hnBd89JGyC5cUvendBsKsEh3PYi7twOzj4X6+zqdg+46qy5bog/P2KNwZlNEXQJX b0QbYy90q9jWy78HPyYNVY8IIw1e8jmsxClNoEw+QB+4bBKDq8ZezCRoCaag3YdB dj7qK0SPOLO3u+OME4lCqnE/ZD78lNBhF00ZWgS++MWVHOM8ZGnR3CeEXVHbJEHt QA== -----END CERTIFICATE-----Generated at Sun Jan 18 01:52:10 2026 by rpki-client