This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/GHL5iLZXI3g3mSN-VU28xuSdFLA.cer File: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (raw, json) Hash identifier: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY= Subject key identifier: 18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4958 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Manifest: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft caRepository: rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Tue 09 Dec 2025 16:16:46 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: IP: 154.8.64.0/18 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18776 (0x4958) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Dec 9 16:16:46 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A919986F, serialNumber=1872F988B65723783799237E554DBCC6E49D14B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:86:e6:5e:79:19:0c:eb:25:43:58:a4:6c:69: 3c:1b:b1:76:40:04:59:1b:10:96:c5:9a:ff:38:6a: 00:ac:27:6a:42:e0:1e:31:62:32:bf:a5:0a:16:c6: ae:fd:f1:21:70:77:4a:aa:76:51:5e:05:59:e0:5d: c7:bd:9e:f3:c2:b7:a3:dd:f4:2a:ce:6c:b9:dd:0d: 4e:91:28:62:6a:4d:42:0a:62:da:f9:da:68:2b:dd: f7:3a:e7:c6:c9:4d:d7:96:22:7c:60:66:18:92:0e: ba:d9:5f:b9:c9:87:86:90:5d:1d:b7:0f:cd:f2:8f: 36:50:56:fe:07:bc:ca:13:8f:4c:68:9f:2c:44:c5: ac:06:6c:3e:d4:10:a0:2c:2d:e8:f7:87:0a:31:c3: 3a:bb:56:45:a7:96:06:32:9a:42:3a:b0:7e:bd:fa: 6e:d3:53:2d:01:9d:70:d9:13:fe:86:9d:6a:85:72: 4a:8d:54:5e:64:74:63:1c:25:5f:9a:d1:57:67:8c: 5e:37:f9:67:00:ef:e4:77:28:a4:ad:c7:d0:d7:f8: c0:40:9e:a5:95:4a:c6:97:4d:c5:f2:9a:ea:db:42: 27:86:c6:dd:ad:97:f9:c0:5f:59:c0:e9:af:3e:2a: 5e:94:1d:ec:be:ef:7d:ab:84:29:b3:77:3f:0f:4c: 79:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:72:F9:88:B6:57:23:78:37:99:23:7E:55:4D:BC:C6:E4:9D:14:B0 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919986F/A61DF1DA466A11EAA007EF1FC4F9AE02/GHL5iLZXI3g3mSN-VU28xuSdFLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 154.8.64.0/18 Signature Algorithm: sha256WithRSAEncryption 0b:a9:f1:77:8c:3e:40:7c:a9:b6:48:f7:f3:08:6d:12:03:c7: 7f:66:ca:16:5f:f5:b2:f1:33:52:cc:42:ca:03:87:84:1a:8c: fc:81:09:b5:d6:1c:e2:63:3b:09:48:ca:ab:1f:ea:01:d2:e6: 55:0e:25:4a:70:36:e3:9b:77:dc:2b:a8:0c:6c:73:6b:ff:0d: 88:1e:64:b8:20:fe:2d:85:84:c3:8c:92:ba:e2:6a:1a:e5:a0: 4b:2f:15:b3:27:5e:c0:52:c1:cc:66:02:88:1d:bc:23:14:11: 30:9d:d8:96:dd:ff:ed:3e:06:82:62:d5:2b:9f:df:f1:ad:be: 6c:bf:7a:06:b4:6f:41:d9:c8:67:a5:33:c4:8d:17:2c:89:34: ad:28:09:7e:3f:3d:c3:78:eb:be:c3:70:35:a7:9e:2a:28:1b: 39:9d:8b:a3:ba:6f:ee:1f:0e:bd:e4:e7:aa:89:3c:f0:65:4f: 6b:06:f7:a5:eb:c9:91:d1:80:d0:0c:4c:6a:94:cc:73:d2:e0: fc:ae:da:c5:4b:ba:33:f6:39:8f:fb:40:c5:cb:14:48:d2:d5: 57:e5:86:ed:76:36:c3:14:d6:3d:3d:a2:92:e7:a0:21:3d:e3: 0a:c8:85:3b:45:fe:e6:ac:3b:58:07:58:b6:56:a3:b7:96:53: bf:1a:a2:4e -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICSVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMjA5MTYxNjQ2WhcNMjcwMTMxMDAwMDAwWjBGMREwDwYD VQQDEwhBOTE5OTg2RjExMC8GA1UEBRMoMTg3MkY5ODhCNjU3MjM3ODM3OTkyMzdF NTU0REJDQzZFNDlEMTRCMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANeG5l55GQzrJUNYpGxpPBuxdkAEWRsQlsWa/zhqAKwnakLgHjFiMr+lChbGrv3x IXB3Sqp2UV4FWeBdx72e88K3o930Ks5sud0NTpEoYmpNQgpi2vnaaCvd9zrnxslN 15YifGBmGJIOutlfucmHhpBdHbcPzfKPNlBW/ge8yhOPTGifLETFrAZsPtQQoCwt 6PeHCjHDOrtWRaeWBjKaQjqwfr36btNTLQGdcNkT/oadaoVySo1UXmR0YxwlX5rR V2eMXjf5ZwDv5HcopK3H0Nf4wECepZVKxpdNxfKa6ttCJ4bG3a2X+cBfWcDprz4q XpQd7L7vfauEKbN3Pw9Mea8CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQYcvmItlcj eDeZI35VTbzG5J0UsDAfBgNVHSMEGDAWgBQ0j5ubkqcsz9NvPHDzVnVzPMjqIjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2 MTFFMkE2MkY4NzdDNzJGRDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJ LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk4NkYvQTYxREYxREE0NjZBMTFFQUEwMDdFRjFGQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTk5ODZGL0E2MURGMURBNDY2QTExRUFBMDA3RUYxRkM0RjlBRTAyL0dITDVpTFpY STNnM21TTi1WVTI4eHVTZEZMQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBpoIQDANBgkqhkiG9w0BAQsFAAOCAQEAC6nxd4w+QHyptkj38wht EgPHf2bKFl/1svEzUsxCygOHhBqM/IEJtdYc4mM7CUjKqx/qAdLmVQ4lSnA245t3 3CuoDGxza/8NiB5kuCD+LYWEw4ySuuJqGuWgSy8VsydewFLBzGYCiB28IxQRMJ3Y lt3/7T4GgmLVK5/f8a2+bL96BrRvQdnIZ6UzxI0XLIk0rSgJfj89w3jrvsNwNaee KigbOZ2Lo7pv7h8OveTnqok88GVPawb3pevJkdGA0AxMapTMc9Lg/K7axUu6M/Y5 j/tAxcsUSNLVV+WG7XY2wxTWPT2ikuegIT3jCsiFO0X+5qw7WAdYtlajt5ZTvxqi Tg== -----END CERTIFICATE-----Generated at Thu Dec 18 08:53:16 2025 by rpki-client