This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer File: GF_2ZH4elndQE3e1UVR5uelGEGc.cer (raw, json) Hash identifier: 4tM23fbdNrrkfFT8x11p1T89/GZXY4JPvcP2Hu5E1/k= Subject key identifier: 18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 027FE7 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft caRepository: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Sun 21 Dec 2025 13:34:12 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 103.127.4.0/22 IP: 2404:1740::/32 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 09:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163815 (0x27fe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Dec 21 13:34:12 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A9193C85, serialNumber=185FF6647E1E9677501377B5515479B9E9461067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:98:4e:8c:59:f7:8a:a6:66:63:03:64:b7:1b: d8:5e:bd:07:4e:a8:52:86:62:5e:3e:83:5d:40:44: 5f:c9:7b:f2:df:07:e4:0a:4f:3d:4d:35:54:a9:f0: 12:51:c5:42:4d:1c:ca:b2:5c:de:6c:47:38:af:c1: d0:22:bb:19:56:fb:df:bb:80:4a:45:3a:0b:66:96: 6c:ae:9f:5d:09:43:2a:33:a6:c3:16:1f:51:b1:bc: ea:4b:4e:e0:07:ad:48:b4:a1:0b:65:ea:3e:20:ed: f9:4d:2b:d1:e2:29:c6:05:09:bf:e4:20:cd:05:cc: 8f:8e:5b:ec:e9:1f:62:b3:87:b8:4b:dc:5a:2e:03: 98:05:3c:de:60:e3:83:2b:3b:77:8e:65:2c:fa:20: 29:d9:31:f0:18:07:de:4c:b1:a9:a7:75:39:78:7a: 60:8b:6f:95:d9:86:c9:80:7b:29:3e:36:7f:1b:76: bf:42:c5:00:a5:cd:1d:66:92:76:d3:95:79:e7:6d: 1c:f1:05:e8:1b:38:ab:60:64:b6:85:6b:10:5a:48: a6:b2:6d:83:19:88:70:49:03:ad:9c:dd:a6:8c:be: 54:dd:19:f6:ff:26:64:54:79:87:3c:91:d1:f5:6f: ba:91:5e:cd:9f:75:06:c0:17:e7:82:5b:ca:5e:9b: ea:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67 X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.4.0/22 IPv6: 2404:1740::/32 Signature Algorithm: sha256WithRSAEncryption 76:5d:cc:86:f6:d6:b4:54:c6:93:2a:ab:ab:74:13:ba:df:bf: a3:eb:27:f9:da:df:54:09:18:26:76:35:7c:e5:7f:ff:ec:82: f1:ff:3f:c8:cc:57:1c:85:65:5a:84:87:89:bf:8c:6c:db:2b: 29:cd:74:12:0a:3c:6d:01:93:5a:5d:0e:b8:ba:aa:29:e8:c6: 43:92:3f:d8:02:0e:1e:00:83:0d:ca:6e:ff:fa:22:46:5f:fc: cf:6f:ec:6d:41:9f:b3:79:b8:ef:72:a0:78:a0:50:71:ce:03: 7d:c3:14:a9:bc:f9:e5:bf:68:ff:de:d2:ff:f4:99:0b:49:c4: f4:be:3b:1c:57:5c:69:06:8b:1e:a9:12:dd:f5:29:eb:83:ad: f8:51:34:ed:be:e2:99:b4:42:75:63:f3:86:c5:34:59:f0:30: 15:a2:2b:1a:bc:4e:3a:5b:5a:ea:12:ea:29:7c:81:d4:25:c4: cd:1f:86:87:74:a5:a7:1b:18:77:6e:29:43:c9:e2:03:ee:f9: c0:4c:ac:fc:61:a0:94:e2:a2:0f:99:25:69:c9:08:9c:3b:c2: f5:4e:89:52:7d:ea:cd:b3:b9:ac:19:59:d7:59:e3:40:3f:08: 27:8c:db:25:44:07:1c:9d:a7:f9:0b:7e:c7:6a:9c:38:39:b3: c5:ea:c2:27 -----BEGIN CERTIFICATE----- MIIGDTCCBPWgAwIBAgIDAn/nMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MTIyMTEzMzQxMloXDTI3MDMwMjAwMDAwMFowRjERMA8G A1UEAwwIQTkxOTNDODUxMTAvBgNVBAUTKDE4NUZGNjY0N0UxRTk2Nzc1MDEzNzdC NTUxNTQ3OUI5RTk0NjEwNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQComE6MWfeKpmZjA2S3G9hevQdOqFKGYl4+g11ARF/Je/LfB+QKTz1NNVSp8BJR xUJNHMqyXN5sRzivwdAiuxlW+9+7gEpFOgtmlmyun10JQyozpsMWH1GxvOpLTuAH rUi0oQtl6j4g7flNK9HiKcYFCb/kIM0FzI+OW+zpH2Kzh7hL3FouA5gFPN5g44Mr O3eOZSz6ICnZMfAYB95MsamndTl4emCLb5XZhsmAeyk+Nn8bdr9CxQClzR1mknbT lXnnbRzxBegbOKtgZLaFaxBaSKaybYMZiHBJA62c3aaMvlTdGfb/JmRUeYc8kdH1 b7qRXs2fdQbAF+eCW8pem+prAgMBAAGjggMCMIIC/jAdBgNVHQ4EFgQUGF/2ZH4e lndQE3e1UVR5uelGEGcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTkzQzg1LzRGRjRDQjcyRkRFMDExRTg4RURFNDUxM0M0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTE5M0M4NS80RkY0Q0I3MkZERTAxMUU4OEVERTQ1MTNDNEY5QUUwMi9HRl8yWkg0 ZWxuZFFFM2UxVVZSNXVlbEdFR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8EHzAd MAwEAgABMAYDBAJnfwQwDQQCAAIwBwMFACQEF0AwDQYJKoZIhvcNAQELBQADggEB AHZdzIb21rRUxpMqq6t0E7rfv6PrJ/na31QJGCZ2NXzlf//sgvH/P8jMVxyFZVqE h4m/jGzbKynNdBIKPG0Bk1pdDri6qinoxkOSP9gCDh4Agw3Kbv/6IkZf/M9v7G1B n7N5uO9yoHigUHHOA33DFKm8+eW/aP/e0v/0mQtJxPS+OxxXXGkGix6pEt31KeuD rfhRNO2+4pm0QnVj84bFNFnwMBWiKxq8TjpbWuoS6il8gdQlxM0fhod0pacbGHdu KUPJ4gPu+cBMrPxhoJTiog+ZJWnJCJw7wvVOiVJ96s2zuawZWddZ40A/CCeM2yVE Bxydp/kLfsdqnDg5s8Xqwic= -----END CERTIFICATE-----Generated at Wed Dec 24 12:19:11 2025 by rpki-client