This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer File: Df2AHulmIu0X31XXqqZMce_5t70.cer (raw, json) Hash identifier: 3UC5FcZEMNZyWzFsZJiewT5gEVVzJ3u3Q2BK+2Q743Y= Subject key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 027E17 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft caRepository: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Sun 14 Dec 2025 16:27:44 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 139813 IP: 103.145.134.0/23 IP: 2405:87c0::/32 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163351 (0x27e17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Dec 14 16:27:44 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0c:02:dd:e5:10:33:f4:86:07:d1:c5:b3:0e: 34:a7:ba:a0:61:39:91:88:4d:11:68:32:1f:f7:2d: 5d:52:44:4b:c0:3c:48:09:fb:a4:ff:1e:99:96:8d: 14:3a:7b:f6:4e:06:7f:39:c2:05:aa:b4:88:af:43: 5d:d7:63:98:2b:fa:73:70:97:d2:14:84:07:85:de: c0:dd:dc:fe:ee:d2:10:9c:9b:22:97:e3:2d:41:01: 5d:fc:33:74:c0:da:48:bb:dd:d3:30:11:78:17:98: 9f:3b:c7:d4:c7:54:90:70:4f:9d:4c:ad:42:8c:bb: fb:d0:70:8b:49:fd:fe:3d:b3:c9:7a:4a:c5:9a:1e: b8:70:2e:59:9d:2e:59:26:2b:7a:ff:12:c5:c0:e5: 19:e6:09:c8:e6:33:f0:5e:2c:5d:c3:ac:e0:46:6f: 44:13:0f:5b:ed:a5:72:f4:5e:89:6e:66:d9:4c:6e: ea:f4:7d:57:c8:ae:9f:17:eb:53:28:a3:a7:7a:7b: 03:df:d1:5c:0d:73:cd:c2:82:95:17:35:24:a3:e1: 70:e4:b6:86:ee:c7:01:d4:73:c5:f2:70:cd:a0:0c: a2:5e:99:5d:0c:15:44:04:4e:db:02:b4:ab:c8:83: 4c:ed:48:c3:1a:83:51:97:8d:46:28:23:c3:c7:e0: fe:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 139813 sbgp-ipAddrBlock: critical IPv4: 103.145.134.0/23 IPv6: 2405:87c0::/32 Signature Algorithm: sha256WithRSAEncryption 3b:63:a0:b2:1b:79:09:70:9d:98:c7:9a:6c:10:5a:f6:7f:af: e2:41:03:c3:4d:18:21:18:e1:1b:04:21:3e:3c:52:b4:40:34: 19:21:1d:b8:28:2c:0a:b8:57:46:52:db:09:eb:eb:af:91:44: f9:fe:b6:c1:1a:48:c3:7c:85:ae:77:4d:b8:21:89:de:26:08: 50:0a:a2:82:9f:57:26:06:d6:64:e3:30:3c:56:d2:0f:75:1b: 94:7a:42:11:20:d0:21:e6:62:33:c8:56:c0:6a:de:ef:35:8c: 15:42:9c:bd:e6:b6:e9:5b:3e:38:f2:e1:a4:45:3a:01:13:6f: bf:7f:98:00:59:c0:7f:43:c9:6a:5b:54:af:da:8f:b0:65:fd: b7:c5:43:c6:43:8a:be:0b:0e:e7:e1:5a:8a:14:7e:04:98:67: a2:97:02:dd:e5:61:8c:25:c8:df:da:1a:be:3e:1d:8f:93:49: 8d:43:cd:bf:e8:4a:0d:f5:7c:08:7d:2f:64:0a:3e:66:5f:f4: 9c:ea:ac:07:3d:af:07:10:1e:5a:82:ad:2c:43:13:11:07:19: ac:01:32:b6:4a:ef:8c:f5:2a:82:6c:b8:5f:45:f9:cf:82:72: 71:7d:97:eb:98:8d:24:81:b7:88:b3:fd:ec:ee:10:d5:09:d2: 5b:48:a2:e6 -----BEGIN CERTIFICATE----- MIIGKTCCBRGgAwIBAgIDAn4XMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MTIxNDE2Mjc0NFoXDTI3MDMwMjAwMDAwMFowRjERMA8G A1UEAxMIQTkxRjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVE N0FBQTY0QzcxRUZGOUI3QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEDALd5RAz9IYH0cWzDjSnuqBhOZGITRFoMh/3LV1SREvAPEgJ+6T/HpmWjRQ6 e/ZOBn85wgWqtIivQ13XY5gr+nNwl9IUhAeF3sDd3P7u0hCcmyKX4y1BAV38M3TA 2ki73dMwEXgXmJ87x9THVJBwT51MrUKMu/vQcItJ/f49s8l6SsWaHrhwLlmdLlkm K3r/EsXA5RnmCcjmM/BeLF3DrOBGb0QTD1vtpXL0XoluZtlMbur0fVfIrp8X61Mo o6d6ewPf0VwNc83CgpUXNSSj4XDktobuxwHUc8XycM2gDKJemV0MFUQETtsCtKvI g0ztSMMag1GXjUYoI8PH4P7BAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUDf2AHulm Iu0X31XXqqZMce/5t70wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUY0RTg5L0M1MzNENzI0MkFGNDExRUFBNDhGMTU0MUM0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTFGNEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVs bUl1MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ oAcwBQIDAiIlMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ5GGMA0EAgAC MAcDBQAkBYfAMA0GCSqGSIb3DQEBCwUAA4IBAQA7Y6CyG3kJcJ2Yx5psEFr2f6/i QQPDTRghGOEbBCE+PFK0QDQZIR24KCwKuFdGUtsJ6+uvkUT5/rbBGkjDfIWud024 IYneJghQCqKCn1cmBtZk4zA8VtIPdRuUekIRINAh5mIzyFbAat7vNYwVQpy95rbp Wz448uGkRToBE2+/f5gAWcB/Q8lqW1Sv2o+wZf23xUPGQ4q+Cw7n4VqKFH4EmGei lwLd5WGMJcjf2hq+Ph2Pk0mNQ82/6EoN9XwIfS9kCj5mX/Sc6qwHPa8HEB5agq0s QxMRBxmsATK2Su+M9SqCbLhfRfnPgnJxfZfrmI0kgbeIs/3s7hDVCdJbSKLm -----END CERTIFICATE-----Generated at Tue Dec 23 09:41:20 2025 by rpki-client