This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer File: Ul6ia2phflqvwFQjzOWI3hnsWEc.cer (raw, json) Hash identifier: tPIJaBtsMQeefEvH+VfjJ7TsycLFfiEOimgt5xXQIzY= Subject key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 02806C Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft caRepository: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Tue 23 Dec 2025 13:44:35 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: AS: 149027 IP: 103.176.226.0/24 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 09:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163948 (0x2806c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Dec 23 13:44:35 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2a:f3:08:42:83:8d:69:9a:68:31:ba:c1:58: 56:69:f4:db:9c:44:d8:07:06:1a:99:f9:3f:76:6d: 64:43:97:c0:ac:ff:c4:c1:0f:4d:85:de:1c:36:d0: eb:1d:21:fe:fc:af:6a:30:c4:a8:46:0d:1c:54:b2: 0d:dd:22:5c:a8:be:d2:6d:4f:8d:10:0d:dc:f0:52: fc:88:f9:1a:e9:4e:a2:f3:80:56:9e:96:15:c6:92: df:11:99:55:a8:4a:3f:bb:b6:80:af:6c:96:3c:6c: b7:ff:3f:dd:a9:a7:f6:8a:9c:7a:63:c7:b9:f8:c5: 97:1f:de:3b:81:e6:3e:0f:0b:bd:5e:c3:39:1d:e5: ed:a5:12:d6:50:67:ce:8f:90:ed:21:92:34:01:69: 19:38:69:0a:43:d4:78:00:bb:f4:b3:10:8d:6c:8e: 57:65:ff:1e:31:45:9d:72:45:a3:ea:74:3d:df:ef: bf:5a:f1:05:cd:64:1b:36:0b:c2:d0:ad:97:87:a0: b2:c7:0e:1c:27:bd:14:f6:70:62:fa:4e:ba:c5:8f: fa:70:68:85:10:52:0e:0f:12:a6:a8:c0:f9:c6:99: ca:e0:eb:db:2c:41:86:cb:50:63:21:90:1c:4f:8e: 0a:95:da:0a:1d:03:55:15:7a:e0:17:62:31:d3:a1: 54:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 149027 sbgp-ipAddrBlock: critical IPv4: 103.176.226.0/24 Signature Algorithm: sha256WithRSAEncryption ad:fb:90:9d:8d:04:1d:e9:a4:ae:70:99:c2:93:7b:b7:40:fa: de:9c:4a:e3:69:fc:41:28:b1:aa:f8:26:4a:bf:7b:96:11:da: 0d:c1:20:e9:e2:73:02:c5:02:c8:28:3a:98:95:24:61:9e:5d: 07:1a:ae:88:f0:4c:92:0a:e8:36:17:3c:5e:6d:ea:98:65:3d: 4e:a3:6b:1c:50:8c:8d:7f:7e:52:8b:68:7b:80:49:ab:a7:07: 14:44:72:c2:2f:79:28:0c:85:fc:0a:fe:45:45:8a:ae:db:e9: 56:b1:5d:92:64:3f:89:f0:a1:24:0b:86:e9:6f:9e:ef:7e:69: d1:68:9e:3a:8f:b3:fa:ac:27:9e:fd:9a:d5:95:7a:ff:9a:b2: 53:73:d9:2a:4b:67:ff:b5:48:64:aa:3f:24:e0:0c:1b:3e:92: 85:88:26:40:aa:7c:78:a0:98:dd:0c:93:2d:86:b3:be:0d:4d: 64:fc:35:43:e5:57:7f:5b:6f:e5:5e:39:7f:09:97:f8:ad:86: c6:0c:6c:a3:a0:ee:63:b1:96:15:8f:cd:b7:ae:ed:fb:ec:01: 6b:41:40:b4:64:14:96:27:66:a1:b5:9f:9c:dc:41:3e:bb:ed: 80:06:4f:d6:61:76:86:94:8f:11:f1:83:55:40:5a:cb:bd:97: b4:0f:44:a3 -----BEGIN CERTIFICATE----- MIIGGjCCBQKgAwIBAgIDAoBsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MTIyMzEzNDQzNVoXDTI3MDEzMTAwMDAwMFowRjERMA8G A1UEAwwIQTkxOTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQy M0NDRTU4OERFMTlFQzU4NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIKvMIQoONaZpoMbrBWFZp9NucRNgHBhqZ+T92bWRDl8Cs/8TBD02F3hw20Osd If78r2owxKhGDRxUsg3dIlyovtJtT40QDdzwUvyI+RrpTqLzgFaelhXGkt8RmVWo Sj+7toCvbJY8bLf/P92pp/aKnHpjx7n4xZcf3juB5j4PC71ewzkd5e2lEtZQZ86P kO0hkjQBaRk4aQpD1HgAu/SzEI1sjldl/x4xRZ1yRaPqdD3f779a8QXNZBs2C8LQ rZeHoLLHDhwnvRT2cGL6TrrFj/pwaIUQUg4PEqaowPnGmcrg69ssQYbLUGMhkBxP jgqV2godA1UVeuAXYjHToVTnAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUUl6ia2ph flqvwFQjzOWI3hnsWEcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTk3NUYxL0NCNjYzMzBBRUUyQzExRUM5NTZCMkM0RkM0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTE5NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJw aGZscXZ3RlFqek9XSTNobnNXRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ oAcwBQIDAkYjMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7DiMA0GCSqG SIb3DQEBCwUAA4IBAQCt+5CdjQQd6aSucJnCk3u3QPrenErjafxBKLGq+CZKv3uW EdoNwSDp4nMCxQLIKDqYlSRhnl0HGq6I8EySCug2FzxebeqYZT1Oo2scUIyNf35S i2h7gEmrpwcURHLCL3koDIX8Cv5FRYqu2+lWsV2SZD+J8KEkC4bpb57vfmnRaJ46 j7P6rCee/ZrVlXr/mrJTc9kqS2f/tUhkqj8k4AwbPpKFiCZAqnx4oJjdDJMthrO+ DU1k/DVD5Vd/W2/lXjl/CZf4rYbGDGyjoO5jsZYVj823ru377AFrQUC0ZBSWJ2ah tZ+c3EE+u+2ABk/WYXaGlI8R8YNVQFrLvZe0D0Sj -----END CERTIFICATE-----Generated at Wed Dec 24 12:22:47 2025 by rpki-client