This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer File: lFOfgqNeshWO18Ni1boVQz5-0uE.cer (raw, json) Hash identifier: FPPXufDOvJ43Lhbeq6ODFqRCnS2Tp160cJpJVJHCXU8= Subject key identifier: 94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1 Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 6F0F Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft caRepository: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Fri 28 Nov 2025 16:31:23 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: IP: 160.191.10.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28431 (0x6f0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Nov 28 16:31:23 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A9179EAE, serialNumber=94539F82A35EB2158ED7C362D5BA15433E7ED2E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4a:9e:1e:75:88:35:bf:04:33:c5:61:5f:b3: d9:94:36:85:ef:cc:3d:b2:42:74:ab:f2:9a:b7:fa: c8:a5:da:c5:5d:d1:5e:03:cc:5b:14:06:18:b7:24: 0c:1b:9b:f2:9f:9e:76:00:fe:e4:14:69:50:27:e1: 54:70:2b:f4:14:e1:60:da:7f:99:f7:b1:89:d6:09: 01:6e:1f:af:35:ec:a0:64:4c:cc:ea:f0:9c:ad:17: 7c:fd:53:79:26:72:5f:d3:12:81:bc:8b:76:c3:f4: 6e:04:92:5b:29:4e:ce:ed:b0:c9:5b:21:51:a4:6f: 51:a7:29:54:1a:30:c0:e7:75:64:d8:6b:04:72:a0: 84:59:db:22:86:05:2d:fa:d1:a2:8f:7a:e2:26:8a: 15:4e:16:be:c8:51:9c:aa:2b:5b:58:a2:4e:1b:04: 98:16:f0:98:a1:7a:cb:f5:88:e2:6a:f5:f8:a8:bc: 6e:d0:89:82:0b:87:43:95:90:1f:03:d4:85:95:cd: 48:3e:8d:f1:df:e8:37:76:b0:2e:1d:e7:cd:e4:8c: a5:da:e7:b3:8d:36:69:8c:9d:e7:88:ea:51:b9:41: 48:33:5f:59:dd:b8:8c:08:fa:17:e1:39:23:70:78: 65:1e:4f:72:56:74:5f:aa:7c:5c:33:83:c0:eb:40: 14:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1 X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.10.0/23 Signature Algorithm: sha256WithRSAEncryption 93:2c:fd:0f:6a:02:75:1b:08:db:54:77:34:a6:ab:4c:0a:e2: 2e:ce:c8:ac:92:1a:85:c0:b6:d3:e3:04:d6:13:7b:4e:a2:ff: a2:97:e6:60:14:d5:2b:d7:e1:70:af:9a:4d:b4:6a:89:6e:42: 02:d8:a3:0c:63:84:a9:2f:6f:f2:fa:d6:1a:ab:91:b6:d9:07: 97:95:33:af:05:fc:da:f8:57:b1:8c:93:c7:3a:4d:4e:8d:82: d2:34:af:ed:c8:be:a2:22:23:c5:da:f9:e5:7c:96:4d:2e:af: af:96:dd:40:80:77:b7:46:63:90:c6:c3:f8:9e:1e:ff:c8:e3: c1:5a:71:3b:cf:95:11:9e:f2:a9:82:e5:a0:f1:4f:b0:09:ad: d4:b4:82:ef:48:fc:40:85:cd:20:48:f6:00:a1:aa:55:8b:1d: 45:73:0b:ec:ab:9c:dc:55:88:dc:d9:4b:ca:09:5a:44:0b:43: e2:5d:f6:e6:99:7b:a1:7c:69:c4:cf:04:66:2f:7e:60:87:9f: 97:f8:38:4d:30:45:00:57:13:25:fd:2f:0a:6d:9d:50:81:cd: 8f:3e:bd:c7:24:89:23:8a:4c:bd:d9:6d:a1:c1:b7:06:0e:c0: 6d:38:9b:ea:07:f3:be:83:ba:28:04:3a:64:0c:73:c0:da:49: fb:db:ff:a2 -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICbw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMTI4MTYzMTIzWhcNMjcwMTMxMDAwMDAwWjBGMREwDwYD VQQDEwhBOTE3OUVBRTExMC8GA1UEBRMoOTQ1MzlGODJBMzVFQjIxNThFRDdDMzYy RDVCQTE1NDMzRTdFRDJFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALpKnh51iDW/BDPFYV+z2ZQ2he/MPbJCdKvymrf6yKXaxV3RXgPMWxQGGLckDBub 8p+edgD+5BRpUCfhVHAr9BThYNp/mfexidYJAW4frzXsoGRMzOrwnK0XfP1TeSZy X9MSgbyLdsP0bgSSWylOzu2wyVshUaRvUacpVBowwOd1ZNhrBHKghFnbIoYFLfrR oo964iaKFU4WvshRnKorW1iiThsEmBbwmKF6y/WI4mr1+Ki8btCJgguHQ5WQHwPU hZXNSD6N8d/oN3awLh3nzeSMpdrns402aYyd54jqUblBSDNfWd24jAj6F+E5I3B4 ZR5PclZ0X6p8XDODwOtAFEkCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSUU5+Co16y FY7Xw2LVuhVDPn7S4TAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlFQUUvQTQ5Q0REQjg4RDBFMTFFRkE4RkU5MzcxQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTc5RUFFL0E0OUNEREI4OEQwRTExRUZBOEZFOTM3MUM0RjlBRTAyL2xGT2ZncU5l c2hXTzE4TmkxYm9WUXo1LTB1RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/CjANBgkqhkiG9w0BAQsFAAOCAQEAkyz9D2oCdRsI21R3NKar TAriLs7IrJIahcC20+ME1hN7TqL/opfmYBTVK9fhcK+aTbRqiW5CAtijDGOEqS9v 8vrWGquRttkHl5UzrwX82vhXsYyTxzpNTo2C0jSv7ci+oiIjxdr55XyWTS6vr5bd QIB3t0ZjkMbD+J4e/8jjwVpxO8+VEZ7yqYLloPFPsAmt1LSC70j8QIXNIEj2AKGq VYsdRXML7Kuc3FWI3NlLyglaRAtD4l325pl7oXxpxM8EZi9+YIefl/g4TTBFAFcT Jf0vCm2dUIHNjz69xySJI4pMvdltocG3Bg7AbTib6gfzvoO6KAQ6ZAxzwNpJ+9v/ og== -----END CERTIFICATE-----Generated at Wed Dec 3 13:18:30 2025 by rpki-client