This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/evNKJg5qKenXvIqxrCZW4Ue4iiI.cer File: evNKJg5qKenXvIqxrCZW4Ue4iiI.cer (raw, json) Hash identifier: IOkO1kU5+eOr/AG1sP3GbGWZR3trl/Oa1jWXEBGb+mM= Subject key identifier: 7A:F3:4A:26:0E:6A:29:E9:D7:BC:8A:B1:AC:26:56:E1:47:B8:8A:22 Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 027C86 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/evNKJg5qKenXvIqxrCZW4Ue4iiI.mft caRepository: rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Sun 07 Dec 2025 00:24:22 +0000 Certificate not after: Tue 02 Mar 2027 00:00:00 +0000 Subordinate resources: AS: 150435 IP: 103.41.94.0/23 IP: 2001:df1:8d40::/48 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 07:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162950 (0x27c86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Dec 7 00:24:22 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=A91A4D1F, serialNumber=7AF34A260E6A29E9D7BC8AB1AC2656E147B88A22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:81:df:e5:99:28:fd:62:b9:a8:55:57:71:c0: 33:7e:8b:ee:96:33:09:1c:9a:66:1f:0e:2f:5e:e2: bb:7a:5a:01:47:8f:78:f2:7e:d7:85:ad:6f:c6:e7: dd:f7:2f:c4:1e:27:7a:a6:33:47:87:b3:8d:9b:7e: c3:be:2d:07:fc:c3:e3:63:be:0c:8e:ec:02:fb:90: 7b:bb:34:df:33:5d:43:79:b4:89:bd:4b:81:82:bf: df:2a:3c:8c:ec:a9:6b:9b:20:34:4b:c6:9c:6c:d2: 1a:07:9b:bd:9e:9e:34:fa:78:2c:bc:72:86:dc:c6: 63:b0:93:e2:83:b9:09:75:95:c7:0d:e2:e3:73:6f: 3c:0c:ef:22:86:2d:da:4a:17:99:36:fd:ba:51:59: 6f:61:e5:cf:3e:2f:53:ca:ce:00:f0:1c:63:11:eb: 44:dc:7d:13:f3:31:45:d3:24:30:4f:88:72:9e:4b: c8:3a:bd:44:7a:0a:3b:9c:81:c7:55:4f:d1:f0:63: 5d:2f:fe:c2:0f:e2:51:36:a7:7d:92:e6:b9:bd:1a: 24:32:2c:b1:d8:4d:68:81:fb:a0:d9:eb:23:9a:bb: 87:cc:4b:4f:97:ab:5a:ea:20:a2:b2:0c:14:18:05: 34:65:54:b6:58:b7:24:ef:97:e4:2c:30:04:b1:7c: 70:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F3:4A:26:0E:6A:29:E9:D7:BC:8A:B1:AC:26:56:E1:47:B8:8A:22 X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/evNKJg5qKenXvIqxrCZW4Ue4iiI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 150435 sbgp-ipAddrBlock: critical IPv4: 103.41.94.0/23 IPv6: 2001:df1:8d40::/48 Signature Algorithm: sha256WithRSAEncryption 2b:00:57:83:24:e9:02:04:9f:cd:5e:65:73:26:5b:3b:6a:0b: be:ba:7f:91:85:46:ab:1f:64:33:49:75:1a:5d:94:ce:43:59: bb:da:c3:b6:31:1c:88:08:7f:95:7a:18:c0:2e:b1:a3:60:95: b2:6c:9e:f8:ca:bb:e6:c8:1b:bd:b9:5b:94:fd:d1:f4:63:6a: 35:41:e7:64:47:09:47:b6:ec:1f:d0:9f:e8:22:69:2e:97:a1: 18:7b:d3:b9:42:f8:40:2a:df:59:8a:4f:72:52:16:c7:5b:e2: 81:8e:e6:0a:7b:14:47:0a:b7:93:25:7b:cf:1f:66:fc:f6:75: 0f:1f:ed:f9:69:86:fe:54:e6:c7:58:39:06:a7:9f:67:58:9f: 5f:37:53:9f:b9:f9:02:a4:b4:db:aa:1d:5a:18:20:d9:7e:62: 12:0d:5c:27:92:80:67:b5:bf:35:8a:87:37:67:85:0c:6f:cd: a4:d7:39:4a:2a:b1:e6:62:a2:33:82:0a:0f:c8:e5:b8:0b:52: a7:38:e9:d1:b1:a4:c2:7e:35:d6:04:fb:6b:8f:07:27:b6:4e: 01:8d:48:97:46:e9:2d:27:84:be:da:d1:59:99:94:9a:ea:a2: a2:e8:ab:a5:8d:8a:a7:b2:e5:51:5d:1f:cd:7b:d4:08:cd:54: 52:a8:59:d7 -----BEGIN CERTIFICATE----- MIIGKzCCBROgAwIBAgIDAnyGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MTIwNzAwMjQyMloXDTI3MDMwMjAwMDAwMFowRjERMA8G A1UEAxMIQTkxQTREMUYxMTAvBgNVBAUTKDdBRjM0QTI2MEU2QTI5RTlEN0JDOEFC MUFDMjY1NkUxNDdCODhBMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDggd/lmSj9YrmoVVdxwDN+i+6WMwkcmmYfDi9e4rt6WgFHj3jyfteFrW/G5933 L8QeJ3qmM0eHs42bfsO+LQf8w+NjvgyO7AL7kHu7NN8zXUN5tIm9S4GCv98qPIzs qWubIDRLxpxs0hoHm72enjT6eCy8cobcxmOwk+KDuQl1lccN4uNzbzwM7yKGLdpK F5k2/bpRWW9h5c8+L1PKzgDwHGMR60TcfRPzMUXTJDBPiHKeS8g6vUR6CjucgcdV T9HwY10v/sIP4lE2p32S5rm9GiQyLLHYTWiB+6DZ6yOau4fMS0+Xq1rqIKKyDBQY BTRlVLZYtyTvl+QsMASxfHA9AgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUevNKJg5q KenXvIqxrCZW4Ue4iiIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUE0RDFGLzQ5MTUyQTQ0NjgwNDExRURBMkQyQkQzQ0M0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTFBNEQxRi80OTE1MkE0NDY4MDQxMUVEQTJEMkJEM0NDNEY5QUUwMi9ldk5LSmc1 cUtlblh2SXF4ckNaVzRVZTRpaUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ oAcwBQIDAkujMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZyleMA8EAgAC MAkDBwAgAQ3xjUAwDQYJKoZIhvcNAQELBQADggEBACsAV4Mk6QIEn81eZXMmWztq C766f5GFRqsfZDNJdRpdlM5DWbvaw7YxHIgIf5V6GMAusaNglbJsnvjKu+bIG725 W5T90fRjajVB52RHCUe27B/Qn+giaS6XoRh707lC+EAq31mKT3JSFsdb4oGO5gp7 FEcKt5Mle88fZvz2dQ8f7flphv5U5sdYOQann2dYn183U5+5+QKktNuqHVoYINl+ YhINXCeSgGe1vzWKhzdnhQxvzaTXOUoqseZiojOCCg/I5bgLUqc46dGxpMJ+NdYE +2uPBye2TgGNSJdG6S0nhL7a0VmZlJrqoqLoq6WNiqey5VFdH8171AjNVFKoWdc= -----END CERTIFICATE-----Generated at Fri Dec 19 12:23:18 2025 by rpki-client