This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer File: m2fIchTtmWVAcRkL688LjZ-hr04.cer (raw, json) Hash identifier: E6BVzL5ggihprpZtrG2XzhPlBopewlqsMr8/OZbawZ8= Subject key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 027EDB Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft caRepository: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Wed 17 Dec 2025 04:58:27 +0000 Certificate not after: Tue 01 Dec 2026 00:00:00 +0000 Subordinate resources: AS: 134552 IP: 103.57.120.0/22 IP: 2404:4680::/32 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163547 (0x27edb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Dec 17 04:58:27 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:62:0b:af:2c:d1:17:9a:58:40:70:ac:ea:d8: 45:31:d9:b0:45:c0:80:e3:f5:64:70:58:2c:61:25: 8c:4a:98:2d:24:e3:da:45:c1:0b:21:21:7f:de:cc: bb:44:68:d6:8b:0a:f2:df:57:aa:fc:1a:bb:fd:a3: a5:a1:75:ce:e8:a8:f8:b0:af:c2:f5:78:5f:71:f4: 17:33:a0:15:2e:28:c9:11:92:15:43:0c:36:07:b0: 97:9b:70:d8:1a:30:a0:74:1b:dd:95:7a:ac:1c:dd: 7c:9b:33:12:bb:eb:75:a0:f5:0f:d4:b6:1a:96:76: ae:52:ba:21:0d:01:11:99:bc:70:bb:53:ff:d9:13: 69:7a:23:93:64:e3:4c:77:b1:77:3f:d2:84:d3:a7: ea:01:3b:3e:9e:c6:ff:d6:f6:83:a3:56:c1:07:e4: 75:90:15:ce:f5:2f:61:66:9e:70:0e:7b:11:fb:70: 74:af:d8:9c:c8:ae:63:f5:41:0d:41:9a:ad:4f:7e: c0:a7:a3:57:d7:96:b9:50:39:5a:1b:1c:84:ca:94: bc:46:e7:5a:92:61:c8:2f:27:44:45:0e:7f:34:66: d1:6c:27:7f:1e:e9:40:9f:31:46:40:3c:4d:0f:80: 05:be:01:f5:11:6f:bd:9d:1e:2e:bc:f1:b1:43:5c: cc:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 134552 sbgp-ipAddrBlock: critical IPv4: 103.57.120.0/22 IPv6: 2404:4680::/32 Signature Algorithm: sha256WithRSAEncryption 07:6e:b3:8d:43:6f:c6:41:7c:ab:12:0e:d7:fa:e4:70:15:b1: 1c:ea:a6:23:18:de:52:94:6d:f5:44:94:b3:21:10:34:91:d5: 1a:f1:74:c7:20:5c:2f:d6:31:f6:5f:f6:cb:de:ab:a4:3d:61: a1:05:9e:e0:d6:17:ea:00:0b:a9:23:9c:d7:f9:ce:65:3c:16: e9:ee:9f:9e:37:79:97:3a:2f:27:38:23:80:21:b6:de:31:bd: dd:50:33:ea:a1:e0:9f:25:09:70:c0:bf:83:82:97:95:c7:7d: 64:cd:01:cd:8a:e1:17:20:95:32:b3:4e:37:5e:df:fb:16:99: 6c:c2:a9:e7:d1:ab:a3:3a:89:49:41:eb:ef:0d:67:63:48:8d: 44:7b:2f:21:8b:cd:c1:c0:2f:59:36:c1:47:98:dc:02:8d:47: f3:83:a7:ff:d4:15:c4:68:86:ee:c7:6f:ce:c3:93:8c:91:96: 57:65:d4:27:76:12:f6:d6:fa:d5:4b:0b:3e:e6:6b:5e:5b:b7: 8b:b3:e0:73:32:81:11:cb:e4:a3:31:3f:a7:31:59:a5:df:5c: 81:2c:51:26:17:d0:10:ea:27:cf:8c:10:87:02:62:5b:42:dc: 26:52:bd:9b:bb:ac:53:fd:a0:a4:f9:54:f8:f9:c1:18:91:6d: 82:a0:ab:4b -----BEGIN CERTIFICATE----- MIIGKTCCBRGgAwIBAgIDAn7bMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MTIxNzA0NTgyN1oXDTI2MTIwMTAwMDAwMFowRjERMA8G A1UEAxMIQTkxQ0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkw QkVCQ0YwQjhEOUZBMUFGNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgYguvLNEXmlhAcKzq2EUx2bBFwIDj9WRwWCxhJYxKmC0k49pFwQshIX/ezLtE aNaLCvLfV6r8Grv9o6Whdc7oqPiwr8L1eF9x9BczoBUuKMkRkhVDDDYHsJebcNga MKB0G92Veqwc3XybMxK763Wg9Q/UthqWdq5SuiENARGZvHC7U//ZE2l6I5Nk40x3 sXc/0oTTp+oBOz6exv/W9oOjVsEH5HWQFc71L2FmnnAOexH7cHSv2JzIrmP1QQ1B mq1PfsCno1fXlrlQOVobHITKlLxG51qSYcgvJ0RFDn80ZtFsJ38e6UCfMUZAPE0P gAW+AfURb72dHi688bFDXMzpAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUm2fIchTt mWVAcRkL688LjZ+hr04wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUNCREM4LzY2OTc2M0YwMThFMDExRUFBMEMzOEU3QkM0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTFDQkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hU dG1XVkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ oAcwBQIDAg2YMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZzl4MA0EAgAC MAcDBQAkBEaAMA0GCSqGSIb3DQEBCwUAA4IBAQAHbrONQ2/GQXyrEg7X+uRwFbEc 6qYjGN5SlG31RJSzIRA0kdUa8XTHIFwv1jH2X/bL3qukPWGhBZ7g1hfqAAupI5zX +c5lPBbp7p+eN3mXOi8nOCOAIbbeMb3dUDPqoeCfJQlwwL+DgpeVx31kzQHNiuEX IJUys043Xt/7Fplswqnn0aujOolJQevvDWdjSI1Eey8hi83BwC9ZNsFHmNwCjUfz g6f/1BXEaIbux2/Ow5OMkZZXZdQndhL21vrVSws+5mteW7eLs+BzMoERy+SjMT+n MVml31yBLFEmF9AQ6ifPjBCHAmJbQtwmUr2bu6xT/aCk+VT4+cEYkW2CoKtL -----END CERTIFICATE-----Generated at Fri Dec 19 01:58:45 2025 by rpki-client