This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer File: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer (raw, json) Hash identifier: /2UIroA7hhUKtHw5BnUiw4LRodPFEolN1ljkqH0RWnY= Subject key identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 027FBF Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft caRepository: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Sat 20 Dec 2025 13:21:41 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 136004 IP: 103.79.117.0/24 IP: 103.99.176.0/23 IP: 103.120.110.0/24 IP: 2403:46c0::/32 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 09:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163775 (0x27fbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Dec 20 13:21:41 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A9173C8A, serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2b:90:5f:a4:41:1d:34:b4:63:ef:ba:78:43: e2:a7:31:34:03:83:ec:70:fb:52:e5:90:36:13:b3: fa:e5:7f:c2:b7:0d:59:04:cb:99:d7:45:2c:6a:5a: d0:ae:14:8c:b5:fa:4e:77:2f:1d:b6:69:a5:1f:5a: ae:46:74:da:60:51:51:e7:0d:27:57:f5:9a:c4:07: ee:d9:0f:6d:8d:c5:01:0f:62:62:06:e1:97:e9:d2: 2a:57:c0:bb:5b:4f:6f:03:a9:03:7c:d7:25:13:0d: a6:91:6c:65:d9:78:25:25:4d:93:da:f6:22:59:f9: c1:3d:07:cf:d2:6f:cc:2d:34:e2:8c:41:d4:ef:96: c5:32:69:31:e4:d0:51:c6:1a:c0:e9:74:24:22:82: ae:1d:a9:d6:e0:20:7b:04:f7:88:3f:17:7b:aa:3b: 63:ea:fa:df:5b:dc:b1:25:fa:08:0b:28:c1:c4:9f: 39:a4:07:70:34:fb:e7:64:73:de:74:aa:4e:f3:9c: 14:4f:46:f6:57:66:b4:5d:9b:de:4e:d5:bd:3f:d4: d8:32:14:91:5d:ac:fc:bb:36:bf:68:88:e9:5b:ac: 53:b8:c5:a1:73:d1:64:4e:3d:78:78:41:8f:3d:52: ee:ec:42:1d:0b:a9:c2:ab:12:9d:bf:f8:d2:77:cc: 16:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 136004 sbgp-ipAddrBlock: critical IPv4: 103.79.117.0/24 103.99.176.0/23 103.120.110.0/24 IPv6: 2403:46c0::/32 Signature Algorithm: sha256WithRSAEncryption 12:46:35:ee:e7:a0:bc:22:90:df:cc:a6:f4:cb:26:1e:22:01: 7d:79:22:f2:cc:11:5f:1b:da:1b:07:f0:e2:fa:9e:83:ae:10: 1b:4f:ad:0a:cf:7f:8b:ce:3c:7e:07:fd:e5:60:a5:9a:67:64: d6:66:71:5b:04:22:5c:13:61:86:8a:7e:5b:d7:36:b4:5f:c1: ea:88:ef:64:f3:fe:67:42:c5:33:09:46:b0:04:6c:05:04:bc: 0b:e0:64:f6:e3:91:7a:b0:73:92:0a:8f:6b:19:50:77:4d:d7: d1:4a:ef:d4:97:57:dd:a4:7f:8d:fe:91:5b:29:37:ec:11:c0: b0:c0:14:fb:5f:77:08:e4:2c:18:45:8b:67:58:31:3a:7c:76: 66:23:16:ab:de:51:bc:29:31:03:d3:3f:eb:ed:b0:4e:82:de: a9:e5:b5:d7:68:0f:b2:ee:09:ab:d1:28:60:fd:40:f8:df:72: 60:77:2f:a8:fc:92:29:97:d8:62:7e:c4:e6:ae:02:2f:c5:e1: bf:31:64:21:b2:04:d8:78:6c:00:7c:29:3d:2a:49:41:86:49: 24:90:60:23:52:59:58:4b:9b:d6:d0:13:33:b1:28:b8:ef:2f: 05:76:d5:e0:1c:04:dd:82:0b:f7:c5:f1:7f:e5:1c:05:dc:cf: 1c:62:67:13 -----BEGIN CERTIFICATE----- MIIGNTCCBR2gAwIBAgIDAn+/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MTIyMDEzMjE0MVoXDTI3MDMwMjAwMDAwMFowRjERMA8G A1UEAwwIQTkxNzNDOEExMTAvBgNVBAUTKDRFMkIyMEQ5NTM3MzJCNzVFRUQxMkYx Mjk5MjFBMEIxQjVFQjE1OEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXK5BfpEEdNLRj77p4Q+KnMTQDg+xw+1LlkDYTs/rlf8K3DVkEy5nXRSxqWtCu FIy1+k53Lx22aaUfWq5GdNpgUVHnDSdX9ZrEB+7ZD22NxQEPYmIG4Zfp0ipXwLtb T28DqQN81yUTDaaRbGXZeCUlTZPa9iJZ+cE9B8/Sb8wtNOKMQdTvlsUyaTHk0FHG GsDpdCQigq4dqdbgIHsE94g/F3uqO2Pq+t9b3LEl+ggLKMHEnzmkB3A0++dkc950 qk7znBRPRvZXZrRdm95O1b0/1NgyFJFdrPy7Nr9oiOlbrFO4xaFz0WROPXh4QY89 Uu7sQh0LqcKrEp2/+NJ3zBYdAgMBAAGjggMqMIIDJjAdBgNVHQ4EFgQUTisg2VNz K3Xu0S8SmSGgsbXrFY4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTczQzhBL0U3RkZDNUY0ODZGNzExRTc4NjM0RUM3RUM0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTE3M0M4QS9FN0ZGQzVGNDg2RjcxMUU3ODYzNEVDN0VDNEY5QUUwMi9UaXNnMlZO ekszWHUwUzhTbVNHZ3NiWHJGWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ oAcwBQIDAhNEMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQAZ091AwQBZ2Ow AwQAZ3huMA0EAgACMAcDBQAkA0bAMA0GCSqGSIb3DQEBCwUAA4IBAQASRjXu56C8 IpDfzKb0yyYeIgF9eSLyzBFfG9obB/Di+p6DrhAbT60Kz3+Lzjx+B/3lYKWaZ2TW ZnFbBCJcE2GGin5b1za0X8HqiO9k8/5nQsUzCUawBGwFBLwL4GT245F6sHOSCo9r GVB3TdfRSu/Ul1fdpH+N/pFbKTfsEcCwwBT7X3cI5CwYRYtnWDE6fHZmIxar3lG8 KTED0z/r7bBOgt6p5bXXaA+y7gmr0Shg/UD433Jgdy+o/JIpl9hifsTmrgIvxeG/ MWQhsgTYeGwAfCk9KklBhkkkkGAjUllYS5vW0BMzsSi47y8FdtXgHATdggv3xfF/ 5RwF3M8cYmcT -----END CERTIFICATE-----Generated at Wed Dec 24 12:25:40 2025 by rpki-client