This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer File: y-xvGDkFSHUhx5R7T3v9bLeNpHk.cer (raw, json) Hash identifier: ls8x/O8jJfgqHCj2MN4hS1lyNdauCNGyCBn6XOLFERU= Subject key identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 0282C7 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft caRepository: rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:58:01 +0000 Certificate not after: Fri 01 May 2026 00:00:00 +0000 Subordinate resources: AS: 151968 IP: 103.67.62.0/23 IP: 2401:4820::/32 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 15:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164551 (0x282c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Jan 1 02:58:01 2026 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=A9159FAF, serialNumber=CBEC6F183905487521C7947B4F7BFD6CB78DA479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:73:5f:eb:bc:b9:3a:b4:5f:89:dd:de:67:ea: fc:6b:53:25:b8:13:21:7a:09:b9:d6:2a:0e:3f:ec: 59:5d:a6:dd:ec:8b:f3:95:87:b9:99:c4:8b:64:1a: 7d:36:b1:05:a4:28:34:da:61:11:95:f3:f5:2d:41: 46:fb:7f:1e:30:0b:28:24:5a:70:c7:12:9a:28:aa: 0f:eb:9f:85:10:53:22:c9:29:28:71:5b:09:e5:74: f5:9d:9f:02:35:27:26:bb:95:ad:8a:a0:af:23:73: 51:e8:37:a3:4d:03:6b:df:0b:99:cb:cf:60:27:99: a2:9e:f0:bc:f4:99:7a:3c:25:af:af:5d:6a:1b:98: fe:25:fc:89:b4:24:0b:bb:3f:48:10:38:1e:c1:e4: 5f:60:f2:6f:cf:c4:2c:13:e5:8d:fe:ef:a7:0e:cf: 7b:8a:e5:ce:b9:54:af:5d:55:61:9a:46:a6:d5:f8: 64:ca:e4:4d:75:48:8c:72:59:e4:68:15:d4:5b:f8: 06:f8:ef:bc:a1:fc:8e:8f:ad:5f:3c:26:b9:64:92: 96:81:37:3b:bd:82:9b:71:db:67:bf:68:46:3d:ef: 2f:b0:8a:4d:d4:a9:12:02:96:34:0d:57:2d:e7:98: 1f:60:6b:26:75:4c:0b:d0:bc:77:bb:0a:cd:0c:12: aa:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:EC:6F:18:39:05:48:75:21:C7:94:7B:4F:7B:FD:6C:B7:8D:A4:79 X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9159FAF/129575C46E4211EEAB4C9C6CC4F9AE02/y-xvGDkFSHUhx5R7T3v9bLeNpHk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151968 sbgp-ipAddrBlock: critical IPv4: 103.67.62.0/23 IPv6: 2401:4820::/32 Signature Algorithm: sha256WithRSAEncryption 78:d7:91:5b:73:46:d6:bc:e4:88:14:ee:4b:1c:74:44:43:19: 3a:a6:30:76:50:1f:c6:16:4c:41:c9:3f:2f:35:a8:ba:f8:46: 1c:8c:d9:00:ad:65:1f:62:d0:1c:d7:79:cf:f5:a7:c7:0a:7d: 22:8d:26:ac:1f:a5:8c:be:7a:dc:e0:23:3b:6c:7f:a9:0c:c6: a7:ab:8f:8e:9c:3a:99:e5:00:63:b6:3c:d5:ab:95:90:9d:d2: c5:49:25:87:8f:6b:d4:01:77:09:56:76:79:63:0f:16:6d:69: d0:07:6f:87:2b:d0:5b:75:e8:34:94:7a:79:43:5c:e0:23:9b: 3f:66:f2:fc:1f:32:b3:5d:b4:26:e5:10:09:fd:c7:c8:a3:8f: 64:0b:ae:1c:96:ba:36:9c:4b:80:6f:a6:55:03:97:46:f2:0e: 22:50:96:31:26:af:c3:22:9f:bc:0f:d6:9d:46:23:45:88:ca: 43:d5:04:90:95:39:52:b2:69:1a:b3:bc:80:65:c8:64:7a:6b: 78:d1:73:d7:46:68:ae:7c:65:a5:0c:e6:2b:5c:78:dc:3a:ec: 0e:13:3a:13:76:26:f6:99:bb:5b:e5:57:7d:e8:d8:4f:32:73: 21:3d:91:44:5e:b0:9e:9f:6c:5b:17:5d:29:2e:19:ad:e8:c3: 02:aa:50:ef -----BEGIN CERTIFICATE----- MIIGKTCCBRGgAwIBAgIDAoLHMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI2MDEwMTAyNTgwMVoXDTI2MDUwMTAwMDAwMFowRjERMA8G A1UEAwwIQTkxNTlGQUYxMTAvBgNVBAUTKENCRUM2RjE4MzkwNTQ4NzUyMUM3OTQ3 QjRGN0JGRDZDQjc4REE0NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLc1/rvLk6tF+J3d5n6vxrUyW4EyF6CbnWKg4/7Fldpt3si/OVh7mZxItkGn02 sQWkKDTaYRGV8/UtQUb7fx4wCygkWnDHEpooqg/rn4UQUyLJKShxWwnldPWdnwI1 Jya7la2KoK8jc1HoN6NNA2vfC5nLz2AnmaKe8Lz0mXo8Ja+vXWobmP4l/Im0JAu7 P0gQOB7B5F9g8m/PxCwT5Y3+76cOz3uK5c65VK9dVWGaRqbV+GTK5E11SIxyWeRo FdRb+Ab477yh/I6PrV88JrlkkpaBNzu9gptx22e/aEY97y+wik3UqRICljQNVy3n mB9gayZ1TAvQvHe7Cs0MEqqZAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUy+xvGDkF SHUhx5R7T3v9bLeNpHkwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTU5RkFGLzEyOTU3NUM0NkU0MjExRUVBQjRDOUM2Q0M0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTE1OUZBRi8xMjk1NzVDNDZFNDIxMUVFQUI0QzlDNkNDNEY5QUUwMi95LXh2R0Rr RlNIVWh4NVI3VDN2OWJMZU5wSGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ oAcwBQIDAlGgMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ0M+MA0EAgAC MAcDBQAkAUggMA0GCSqGSIb3DQEBCwUAA4IBAQB415Fbc0bWvOSIFO5LHHREQxk6 pjB2UB/GFkxByT8vNai6+EYcjNkArWUfYtAc13nP9afHCn0ijSasH6WMvnrc4CM7 bH+pDManq4+OnDqZ5QBjtjzVq5WQndLFSSWHj2vUAXcJVnZ5Yw8WbWnQB2+HK9Bb deg0lHp5Q1zgI5s/ZvL8HzKzXbQm5RAJ/cfIo49kC64clro2nEuAb6ZVA5dG8g4i UJYxJq/DIp+8D9adRiNFiMpD1QSQlTlSsmkas7yAZchkemt40XPXRmiufGWlDOYr XHjcOuwOEzoTdib2mbtb5Vd96NhPMnMhPZFEXrCen2xbF10pLhmt6MMCqlDv -----END CERTIFICATE-----Generated at Tue Jan 27 17:50:24 2026 by rpki-client