This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer File: yod6eu8duwRWSH9h_uaZNjdUHl0.cer (raw, json) Hash identifier: hKm4XSxlgvEaL9gvBJ0idzDCFMfpO3B/wAV8AzreTKk= Subject key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 6F3F Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft caRepository: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Mon 01 Dec 2025 23:56:34 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 160.25.228.0/24 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 07:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28479 (0x6f3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Dec 1 23:56:34 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A91AA053, serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1f:56:e4:68:60:82:21:58:e9:6e:fb:fe:03: b3:02:a4:69:9c:60:5f:a2:74:cc:47:d7:bc:82:9c: e0:a2:6a:26:29:ad:c5:b5:86:45:7a:aa:d8:ab:3b: 4c:d3:2b:fa:ee:ca:cb:be:a4:fc:c3:01:0c:d6:e5: 3a:70:2f:b2:b5:7e:6d:d8:e1:13:ce:9a:d9:4a:02: 33:c5:a1:9a:a3:4e:30:29:5d:1c:a1:8b:c4:ef:63: 92:e3:02:cd:81:b0:70:7b:d5:d3:66:ab:23:67:22: c8:14:2a:f3:d8:a4:50:c8:e7:6f:2b:07:81:29:9c: 76:7a:43:d1:9b:3d:49:85:f6:ea:89:68:af:c2:92: 02:15:8a:6d:81:3d:d7:db:23:7d:40:b2:ff:59:d0: bf:57:42:5d:06:3d:9e:84:c9:69:d0:d3:00:79:76: ee:8d:b9:d9:93:9c:aa:13:cc:b5:e7:78:73:28:5a: 70:6c:86:8e:7d:62:1f:fb:2e:54:8b:af:b4:a4:5a: 6a:72:88:2b:60:f2:78:a9:b9:e1:a9:06:97:f8:31: c1:7a:0c:2f:25:89:46:da:be:41:d6:97:eb:cf:dd: df:5b:12:85:23:a8:53:b4:df:fb:db:c5:d1:ac:84: 7c:4e:96:ac:42:46:0d:98:ae:c2:fb:a0:cf:37:72: 59:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.228.0/24 Signature Algorithm: sha256WithRSAEncryption 52:40:79:33:8e:5b:0c:11:ad:0c:96:3f:59:8c:81:52:3a:c9: 03:a9:96:46:6c:bc:1d:f2:4e:fe:25:71:d1:e8:f7:dd:a9:4f: 9d:7f:5f:6a:6b:d8:33:49:23:67:1f:4b:1d:08:47:de:69:21: 84:e7:64:a9:48:d2:4c:2c:91:2b:d1:35:a9:eb:f6:3b:80:64: 4a:f0:73:91:04:41:00:1f:ec:f3:74:03:09:a5:5a:a8:c7:9b: a8:ff:51:d2:6e:65:44:e4:f8:17:43:c2:6d:a0:e9:25:9a:4b: 29:10:eb:47:24:5f:5b:fb:52:2c:0c:b1:e3:db:7b:27:f8:a7: 86:57:0f:15:17:a3:e0:cb:44:7f:18:76:fb:8d:67:c8:d5:90: e2:12:89:2a:a6:5b:84:08:e5:a2:0e:02:23:d4:c3:16:5b:9a: 10:b0:a7:d3:d9:8e:c0:5c:d3:b7:c8:c3:e9:fa:9e:01:a4:f4: 8e:ab:31:8d:4a:05:a8:e8:f3:8a:41:19:7f:b4:f8:30:de:cc: 5e:69:25:02:f1:f7:05:57:38:05:52:10:28:ba:8c:1d:c5:35: fa:ee:d3:f9:fd:7f:2d:36:ab:fd:af:08:a6:e7:4c:30:40:21: c0:cc:86:01:30:09:c5:24:85:07:69:6f:3d:23:f0:a2:7c:3e: c2:b8:c6:f9 -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICbz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMjAxMjM1NjM0WhcNMjcwMzAyMDAwMDAwWjBGMREwDwYD VQQDEwhBOTFBQTA1MzExMC8GA1UEBRMoQ0E4NzdBN0FFRjFEQkIwNDU2NDg3RjYx RkVFNjk5MzYzNzU0MUU1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALofVuRoYIIhWOlu+/4DswKkaZxgX6J0zEfXvIKc4KJqJimtxbWGRXqq2Ks7TNMr +u7Ky76k/MMBDNblOnAvsrV+bdjhE86a2UoCM8WhmqNOMCldHKGLxO9jkuMCzYGw cHvV02arI2ciyBQq89ikUMjnbysHgSmcdnpD0Zs9SYX26olor8KSAhWKbYE919sj fUCy/1nQv1dCXQY9noTJadDTAHl27o252ZOcqhPMted4cyhacGyGjn1iH/suVIuv tKRaanKIK2DyeKm54akGl/gxwXoMLyWJRtq+QdaX68/d31sShSOoU7Tf+9vF0ayE fE6WrEJGDZiuwvugzzdyWdcCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBTKh3p67x27 BFZIf2H+5pk2N1QeXTAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUEwNTMvODcyMDMwNUU0NDk5MTFFRkJBQzY3MTUzQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUFBMDUzLzg3MjAzMDVFNDQ5OTExRUZCQUM2NzE1M0M0RjlBRTAyL3lvZDZldThk dXdSV1NIOWhfdWFaTmpkVUhsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKAZ5DANBgkqhkiG9w0BAQsFAAOCAQEAUkB5M45bDBGtDJY/WYyB UjrJA6mWRmy8HfJO/iVx0ej33alPnX9famvYM0kjZx9LHQhH3mkhhOdkqUjSTCyR K9E1qev2O4BkSvBzkQRBAB/s83QDCaVaqMebqP9R0m5lROT4F0PCbaDpJZpLKRDr RyRfW/tSLAyx49t7J/inhlcPFRej4MtEfxh2+41nyNWQ4hKJKqZbhAjlog4CI9TD FluaELCn09mOwFzTt8jD6fqeAaT0jqsxjUoFqOjzikEZf7T4MN7MXmklAvH3BVc4 BVIQKLqMHcU1+u7T+f1/LTar/a8IpudMMEAhwMyGATAJxSSFB2lvPSPwonw+wrjG +Q== -----END CERTIFICATE-----Generated at Wed Dec 3 13:59:56 2025 by rpki-client