This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FQft3ll3hSln57yM94Z-SBfX5g.cer File: 9FQft3ll3hSln57yM94Z-SBfX5g.cer (raw, json) Hash identifier: ZmnmMkuZSEiuAFeZFtfmgDxxKCH0nyhZ8lCXXTNW5HY= Subject key identifier: F4:54:1F:B7:79:65:DE:14:A5:9F:9E:F2:33:DE:19:F9:20:5F:5F:98 Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 028293 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/9FQft3ll3hSln57yM94Z-SBfX5g.mft caRepository: rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Wed 31 Dec 2025 20:58:16 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 38230 AS: 137490 AS: 137509 AS: 139308 AS: 141703 AS: 142289 AS: 142419 AS: 142597 IP: 103.158.222.0/23 IP: 2001:df5:6880::/48 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Feb 2026 14:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164499 (0x28293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Dec 31 20:58:16 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A9137917, serialNumber=F4541FB77965DE14A59F9EF233DE19F9205F5F98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:36:5c:13:a0:42:44:65:d7:8a:49:9e:41:e1: 53:0d:38:c7:3c:4e:f4:23:4f:5b:31:12:20:c4:52: 11:bc:28:44:80:22:b1:f1:a2:a2:a2:b1:ad:f9:22: 98:8b:92:45:32:5f:41:88:f6:2d:6d:cd:79:29:2c: 46:63:06:20:f6:d8:be:b8:82:85:17:49:54:f0:de: 60:f7:9b:92:fd:a0:6f:e5:64:ca:da:e1:35:17:d3: 2e:08:41:0f:0a:b9:9c:21:49:3e:3d:c5:e3:f4:4f: 88:1f:16:25:83:0e:a7:78:65:09:1d:45:36:c3:f7: b3:77:f8:44:08:ae:3e:a5:45:cd:1b:9e:a7:0f:8c: 2d:fc:c3:c4:18:ce:c6:f2:6a:5b:e0:57:60:f0:1f: c8:d5:82:9d:53:91:4f:7b:7d:11:05:e2:73:c5:5c: f4:78:fb:50:79:a1:f4:86:3a:10:4a:9e:3e:9f:df: 79:d5:52:3d:c6:6d:46:82:89:63:82:d0:d9:b8:27: d0:38:d1:ab:17:62:44:f3:8f:4b:d9:b0:63:c0:66: 20:85:34:b6:4c:76:7c:05:3b:99:cd:87:22:1c:77: 30:05:53:02:34:15:fa:aa:03:1c:99:ac:1f:e7:77: 95:f5:6c:8a:0d:74:c2:2f:87:55:f9:30:b7:05:c4: b3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:54:1F:B7:79:65:DE:14:A5:9F:9E:F2:33:DE:19:F9:20:5F:5F:98 X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/9FQft3ll3hSln57yM94Z-SBfX5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 38230 137490 137509 139308 141703 142289 142419 142597 sbgp-ipAddrBlock: critical IPv4: 103.158.222.0/23 IPv6: 2001:df5:6880::/48 Signature Algorithm: sha256WithRSAEncryption 0a:4d:30:72:b1:1f:81:f4:a4:23:bb:13:93:f0:ae:06:40:f0: 02:19:ff:92:67:dc:3d:1e:8b:03:5c:b0:43:b5:4a:84:81:8f: 89:d8:1b:d8:70:ff:7c:7d:db:31:28:95:f9:b2:ea:84:95:ec: 6c:fe:ee:c2:12:f9:85:56:84:9b:89:1e:1c:e2:fb:6e:5c:d8: cc:dc:54:f4:12:29:07:4f:b1:a4:91:54:9b:1b:a3:54:d3:d0: 29:48:4c:6e:52:e1:5a:b6:de:db:5a:86:f0:f6:d4:15:05:77: e2:0e:b4:c5:81:9d:d7:2f:49:a9:fb:06:2f:b1:1b:61:40:15: 96:cc:83:21:1c:63:73:00:6b:a5:c5:95:76:80:99:7a:90:7a: 64:fe:bd:9a:27:a2:61:41:87:37:8e:dc:bd:ca:ca:29:0a:2d: c3:9e:a5:eb:ef:00:c2:a7:89:b6:7c:eb:79:10:69:7c:a7:84: 08:14:2a:ae:f1:d8:03:8b:41:72:fc:2b:5e:f2:f8:c1:bf:29: 18:e3:40:f3:17:7a:7a:2e:b1:ae:09:eb:02:c8:46:fd:64:e0: 9c:7d:d8:a5:ff:02:68:58:f8:bf:75:17:30:9f:56:30:fb:57: c2:ef:8c:d2:fb:fb:5a:da:d8:b3:b8:94:f4:3f:2b:4f:c9:3c: a6:7b:64:46 -----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgIDAoKTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MTIzMTIwNTgxNloXDTI3MDMwMjAwMDAwMFowRjERMA8G A1UEAwwIQTkxMzc5MTcxMTAvBgNVBAUTKEY0NTQxRkI3Nzk2NURFMTRBNTlGOUVG MjMzREUxOUY5MjA1RjVGOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCNlwToEJEZdeKSZ5B4VMNOMc8TvQjT1sxEiDEUhG8KESAIrHxoqKisa35IpiL kkUyX0GI9i1tzXkpLEZjBiD22L64goUXSVTw3mD3m5L9oG/lZMra4TUX0y4IQQ8K uZwhST49xeP0T4gfFiWDDqd4ZQkdRTbD97N3+EQIrj6lRc0bnqcPjC38w8QYzsby alvgV2DwH8jVgp1TkU97fREF4nPFXPR4+1B5ofSGOhBKnj6f33nVUj3GbUaCiWOC 0Nm4J9A40asXYkTzj0vZsGPAZiCFNLZMdnwFO5nNhyIcdzAFUwI0FfqqAxyZrB/n d5X1bIoNdMIvh1X5MLcFxLOLAgMBAAGjggNDMIIDPzAdBgNVHQ4EFgQU9FQft3ll 3hSln57yM94Z+SBfX5gwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTM3OTE3LzQ5MkFCNTk0MkEwMzExRUJBNjlEREQyREM0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTEzNzkxNy80OTJBQjU5NDJBMDMxMUVCQTY5REREMkRDNEY5QUUwMi85RlFmdDNs bDNoU2xuNTd5TTk0Wi1TQmZYNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQgBAf8ELjAs oCowKAIDAJVWAgMCGRICAwIZJQIDAiAsAgMCKYcCAwIr0QIDAixTAgMCLQUwMAYI KwYBBQUHAQcBAf8EITAfMAwEAgABMAYDBAFnnt4wDwQCAAIwCQMHACABDfVogDAN BgkqhkiG9w0BAQsFAAOCAQEACk0wcrEfgfSkI7sTk/CuBkDwAhn/kmfcPR6LA1yw Q7VKhIGPidgb2HD/fH3bMSiV+bLqhJXsbP7uwhL5hVaEm4keHOL7blzYzNxU9BIp B0+xpJFUmxujVNPQKUhMblLhWrbe21qG8PbUFQV34g60xYGd1y9JqfsGL7EbYUAV lsyDIRxjcwBrpcWVdoCZepB6ZP69mieiYUGHN47cvcrKKQotw56l6+8AwqeJtnzr eRBpfKeECBQqrvHYA4tBcvwrXvL4wb8pGONA8xd6ei6xrgnrAshG/WTgnH3Ypf8C aFj4v3UXMJ9WMPtXwu+M0vv7WtrYs7iU9D8rT8k8pntkRg== -----END CERTIFICATE-----Generated at Mon Feb 2 15:57:54 2026 by rpki-client