This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xC_x0v81KYG8X4IkDsk5TvqzEYY.cer File: xC_x0v81KYG8X4IkDsk5TvqzEYY.cer (raw, json) Hash identifier: 8q/WTotX2sS6XvIoOkfalcFzpIdtXmaEo0WT0ueYKbk= Subject key identifier: C4:2F:F1:D2:FF:35:29:81:BC:5F:82:24:0E:C9:39:4E:FA:B3:11:86 Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 0275AE Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.mft caRepository: rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Mon 17 Nov 2025 14:56:55 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: IP: 203.4.192.0/21 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161198 (0x275ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Nov 17 14:56:55 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A91814E9, serialNumber=C42FF1D2FF352981BC5F82240EC9394EFAB31186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ca:6f:86:3f:a2:77:f5:7c:4d:82:72:0a:dd: c3:01:3a:2e:09:39:0d:8f:a3:0f:05:4e:59:f7:7f: 07:6c:2e:c4:f0:c1:ba:e6:ac:3d:39:a4:53:2b:91: 8c:e7:db:af:83:3a:2e:1f:2f:5f:39:2d:53:2e:a9: 45:44:60:69:94:8c:c1:1e:0f:e0:cc:ce:ed:6e:11: 8b:ae:00:70:59:c0:b3:02:a1:f5:a5:cf:a8:0a:ce: ea:0b:f0:75:c0:65:28:b4:31:29:17:f3:ea:e3:f1: bf:22:f9:ff:50:32:9f:ac:3d:55:09:f5:c5:3f:fe: 56:08:63:2e:fc:f4:32:b2:45:9d:b2:5c:05:51:86: 45:01:ca:aa:41:49:24:df:01:65:39:ec:7c:13:b0: 3b:e7:cb:a1:ad:51:d8:04:0d:75:0a:a5:21:d0:bb: e4:d2:55:d7:37:8a:3e:88:93:2c:af:0f:3b:84:e4: 0c:0f:53:08:65:dc:1f:2d:c7:a2:09:bd:f7:f0:a6: 32:7a:09:33:a7:c8:40:50:ac:4a:7b:6d:6f:5d:20: 36:94:fc:e0:0a:bd:71:eb:e8:c0:d5:34:6e:0d:40: 7a:25:b7:12:46:d8:5d:4b:2c:50:7c:59:26:f4:58: 20:3a:b7:dd:1c:16:53:d3:cb:e2:ac:0f:ab:c7:c7: ba:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:2F:F1:D2:FF:35:29:81:BC:5F:82:24:0E:C9:39:4E:FA:B3:11:86 X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.192.0/21 Signature Algorithm: sha256WithRSAEncryption 18:89:12:ac:37:36:a1:6f:8b:40:87:80:dd:0a:35:b1:b7:c3: 62:96:39:d2:22:24:07:d3:87:df:36:aa:ab:23:b2:24:e7:6b: b4:b6:25:cb:dc:2e:bb:ff:82:f7:26:bb:2b:5a:dd:b6:1a:5c: 3b:fc:b1:35:1a:80:f4:a9:97:4f:20:4b:33:d4:5c:8a:ec:27: 59:ba:d8:9a:bd:72:ba:97:73:47:59:a0:fe:54:5b:2e:01:13: 6a:16:6d:c3:50:30:bb:04:fa:df:48:b3:54:30:81:98:c0:9d: 64:9b:3c:13:47:bb:c6:d9:9c:a9:28:cb:92:af:11:d4:17:c7: 8c:9a:ff:e0:19:67:d8:22:e9:d1:b0:74:94:db:62:24:a0:6a: 30:4b:92:00:68:67:fe:09:b3:dd:d0:ea:7e:86:9a:c4:0e:e0: 48:d4:c7:e8:7e:e1:0e:2e:1d:a6:ec:52:e2:f2:e8:11:38:54: a3:00:2d:81:c8:0c:c0:3a:34:49:29:68:a8:2e:2b:8d:81:00: fd:18:ef:2b:d7:b4:86:c8:21:2d:33:9f:57:3d:60:f9:17:25: b6:6c:6b:28:6b:15:4b:9d:07:61:d5:3d:0a:a8:b5:70:d5:ae: f1:49:91:74:26:1a:6d:cf:5b:60:d2:2e:c0:71:30:d7:b6:0b: 2e:f2:25:91 -----BEGIN CERTIFICATE----- MIIF/jCCBOagAwIBAgIDAnWuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MTExNzE0NTY1NVoXDTI3MDEzMTAwMDAwMFowRjERMA8G A1UEAxMIQTkxODE0RTkxMTAvBgNVBAUTKEM0MkZGMUQyRkYzNTI5ODFCQzVGODIy NDBFQzkzOTRFRkFCMzExODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPym+GP6J39XxNgnIK3cMBOi4JOQ2Pow8FTln3fwdsLsTwwbrmrD05pFMrkYzn 26+DOi4fL185LVMuqUVEYGmUjMEeD+DMzu1uEYuuAHBZwLMCofWlz6gKzuoL8HXA ZSi0MSkX8+rj8b8i+f9QMp+sPVUJ9cU//lYIYy789DKyRZ2yXAVRhkUByqpBSSTf AWU57HwTsDvny6GtUdgEDXUKpSHQu+TSVdc3ij6IkyyvDzuE5AwPUwhl3B8tx6IJ vffwpjJ6CTOnyEBQrEp7bW9dIDaU/OAKvXHr6MDVNG4NQHoltxJG2F1LLFB8WSb0 WCA6t90cFlPTy+KsD6vHx7oHAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQUxC/x0v81 KYG8X4IkDsk5TvqzEYYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTgxNEU5L0ZFNTdDMkJDMDgzMDExRUJCRkU0QzczMkM0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTE4MTRFOS9GRTU3QzJCQzA4MzAxMUVCQkZFNEM3MzJDNEY5QUUwMi94Q194MHY4 MUtZRzhYNElrRHNrNVR2cXpFWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAPLBMAwDQYJKoZIhvcNAQELBQADggEBABiJEqw3NqFvi0CHgN0K NbG3w2KWOdIiJAfTh982qqsjsiTna7S2JcvcLrv/gvcmuyta3bYaXDv8sTUagPSp l08gSzPUXIrsJ1m62Jq9crqXc0dZoP5UWy4BE2oWbcNQMLsE+t9Is1QwgZjAnWSb PBNHu8bZnKkoy5KvEdQXx4ya/+AZZ9gi6dGwdJTbYiSgajBLkgBoZ/4Js93Q6n6G msQO4EjUx+h+4Q4uHabsUuLy6BE4VKMALYHIDMA6NEkpaKguK42BAP0Y7yvXtIbI IS0zn1c9YPkXJbZsayhrFUudB2HVPQqotXDVrvFJkXQmGm3PW2DSLsBxMNe2Cy7y JZE= -----END CERTIFICATE-----Generated at Sun Dec 7 03:25:29 2025 by rpki-client