This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r0YdV6kKM1svp3p6rsFnNJVJI7E.cer File: r0YdV6kKM1svp3p6rsFnNJVJI7E.cer (raw, json) Hash identifier: 0cGS7wE934TLLbRkMHBxy2dN8l75kWQ1mZtesdV3g34= Subject key identifier: AF:46:1D:57:A9:0A:33:5B:2F:A7:7A:7A:AE:C1:67:34:95:49:23:B1 Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 6F2C Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.mft caRepository: rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Mon 01 Dec 2025 04:36:38 +0000 Certificate not after: Sat 31 Mar 2029 00:00:00 +0000 Subordinate resources: IP: 161.248.120.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28460 (0x6f2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Dec 1 04:36:38 2025 GMT Not After : Mar 31 00:00:00 2029 GMT Subject: CN=A9114EF6, serialNumber=AF461D57A90A335B2FA77A7AAEC16734954923B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ec:94:6f:fc:cc:8e:d2:8e:44:98:e6:50:9a: eb:f5:cd:3a:12:b8:6d:79:f2:69:48:fb:69:66:fb: 9e:c7:59:18:b2:19:f7:ea:91:76:d5:b2:0a:d3:ad: a6:db:8d:ae:f2:da:10:bb:dc:83:62:94:c8:cb:f7: 5f:2c:c9:3f:b0:a8:b1:b3:c2:ea:2c:ac:21:5d:65: fe:a7:0a:4e:c7:22:d2:40:e2:42:f6:14:87:9d:f3: f2:f8:d6:89:07:95:f2:6d:aa:a1:9e:d6:5f:26:a9: 91:77:e3:7e:c9:a6:3c:dc:29:0f:b9:d3:86:9a:39: 0c:ff:c6:0b:94:cf:73:bb:6f:ae:cf:f0:44:f3:c8: 5a:a8:4a:5e:c2:25:5e:aa:12:0b:f9:ec:4a:f7:79: 96:f8:a3:d7:a0:13:4f:56:e2:61:09:29:85:2a:d5: dc:ba:22:f2:33:ed:72:77:8a:4b:5a:f7:f5:48:d7: 0c:a1:d5:70:16:b9:b6:8a:b0:42:f1:ec:65:d0:b6: 1f:15:e6:fb:0f:05:2f:d2:4e:e2:77:5c:31:64:d7: 8a:1e:1e:51:15:e1:63:09:58:16:2f:77:17:9c:20: 3b:dd:22:4e:52:98:4b:8f:b8:61:48:99:41:68:2f: c4:14:d6:b7:af:99:4b:a8:ee:cf:d8:87:73:05:37: 46:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:46:1D:57:A9:0A:33:5B:2F:A7:7A:7A:AE:C1:67:34:95:49:23:B1 X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.120.0/23 Signature Algorithm: sha256WithRSAEncryption 50:05:b8:45:b2:32:09:84:a7:27:42:3f:60:41:d9:16:29:13: bd:f3:af:ee:bc:fb:43:26:72:2a:81:3e:96:3b:26:7b:0f:3a: 3e:d1:64:56:18:ec:a6:0a:b8:45:39:46:72:ad:32:bc:f9:59: 39:7c:14:18:da:29:5a:cf:7c:e4:35:4b:4c:d9:28:b5:ca:37: 37:42:93:cd:25:2b:f0:a7:4d:11:8b:b2:61:1e:26:eb:09:85: 56:0f:f2:ff:15:91:fe:e9:75:ba:d9:ca:8a:59:cd:10:a1:56: e6:74:20:5b:af:e2:f8:e1:19:0d:47:47:39:f3:2b:f5:07:d9: 65:8f:e3:c9:ab:54:44:74:57:46:15:47:e2:b0:98:19:20:0b: ee:b7:e0:e0:fe:b4:d9:41:50:3a:ae:9e:7f:d3:64:2d:b0:b2: 0b:75:12:a7:e0:a2:e1:2e:b0:44:98:14:34:59:a9:a2:6e:17: 26:0f:13:a2:74:03:11:b1:b7:44:a0:57:10:5d:8d:ab:75:8d: 8d:e9:13:ca:a4:e0:03:ef:cb:37:c7:de:2b:54:89:95:03:44: 9c:e8:66:27:5f:a9:b4:32:a7:2a:c9:87:b9:06:40:c3:4b:4e: df:51:d9:f9:6f:fc:e1:0e:8d:66:0b:c8:b2:91:bc:74:53:dd: 4b:a8:89:68 -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICbywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMjAxMDQzNjM4WhcNMjkwMzMxMDAwMDAwWjBGMREwDwYD VQQDEwhBOTExNEVGNjExMC8GA1UEBRMoQUY0NjFENTdBOTBBMzM1QjJGQTc3QTdB QUVDMTY3MzQ5NTQ5MjNCMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AKrslG/8zI7SjkSY5lCa6/XNOhK4bXnyaUj7aWb7nsdZGLIZ9+qRdtWyCtOtptuN rvLaELvcg2KUyMv3XyzJP7CosbPC6iysIV1l/qcKTsci0kDiQvYUh53z8vjWiQeV 8m2qoZ7WXyapkXfjfsmmPNwpD7nThpo5DP/GC5TPc7tvrs/wRPPIWqhKXsIlXqoS C/nsSvd5lvij16ATT1biYQkphSrV3Loi8jPtcneKS1r39UjXDKHVcBa5toqwQvHs ZdC2HxXm+w8FL9JO4ndcMWTXih4eURXhYwlYFi93F5wgO90iTlKYS4+4YUiZQWgv xBTWt6+ZS6juz9iHcwU3RqcCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSvRh1XqQoz Wy+nenquwWc0lUkjsTAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTRFRjYvOERBRTA1QTBEMEQ0MTFFRkJDRDUxMjNFQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTE0RUY2LzhEQUUwNUEwRDBENDExRUZCQ0Q1MTIzRUM0RjlBRTAyL3IwWWRWNmtL TTFzdnAzcDZyc0ZuTkpWSkk3RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaH4eDANBgkqhkiG9w0BAQsFAAOCAQEAUAW4RbIyCYSnJ0I/YEHZ FikTvfOv7rz7QyZyKoE+ljsmew86PtFkVhjspgq4RTlGcq0yvPlZOXwUGNopWs98 5DVLTNkotco3N0KTzSUr8KdNEYuyYR4m6wmFVg/y/xWR/ul1utnKilnNEKFW5nQg W6/i+OEZDUdHOfMr9QfZZY/jyatURHRXRhVH4rCYGSAL7rfg4P602UFQOq6ef9Nk LbCyC3USp+Ci4S6wRJgUNFmpom4XJg8TonQDEbG3RKBXEF2Nq3WNjekTyqTgA+/L N8feK1SJlQNEnOhmJ1+ptDKnKsmHuQZAw0tO31HZ+W/84Q6NZgvIspG8dFPdS6iJ aA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:59 2025 by rpki-client