This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CQZ4gs3AIDSRYeCTvzRzGz-CK9c.cer File: CQZ4gs3AIDSRYeCTvzRzGz-CK9c.cer (raw, json) Hash identifier: utU4kpmE2TNt0hiO4bP305LBbTb4nYhz70YOl9G5Ry4= Subject key identifier: 09:06:78:82:CD:C0:20:34:91:61:E0:93:BF:34:73:1B:3F:82:2B:D7 Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 701D Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A91A7273/F3D22C2CE77111EF9DFBDD50C4F9AE02/CQZ4gs3AIDSRYeCTvzRzGz-CK9c.mft caRepository: rsync://rpki.apnic.net/member_repository/A91A7273/F3D22C2CE77111EF9DFBDD50C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Fri 12 Dec 2025 16:39:04 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: IP: 160.191.60.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 21:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28701 (0x701d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Dec 12 16:39:04 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A91A7273, serialNumber=09067882CDC020349161E093BF34731B3F822BD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:22:48:59:8d:36:9a:c8:81:b8:b1:ab:b5:5d: a3:3e:2d:1b:0e:78:0d:75:68:7f:8a:d3:44:38:a8: 84:3e:4d:02:81:95:f8:c6:77:3f:14:c9:81:ea:09: 70:0e:29:76:9f:c1:65:ca:3c:61:e6:fd:9f:40:69: 11:1c:0f:4e:28:2e:83:88:37:17:9c:b7:79:8e:fe: a7:06:fd:5e:ba:5a:bc:7a:e5:a0:0a:fa:4d:e9:c9: 1b:99:f3:7b:2a:f5:57:29:5b:05:6a:e8:3d:82:b3: ec:15:55:19:ea:d4:cc:d8:40:31:85:ff:ce:7d:37: 62:59:c4:06:04:77:4c:c3:e8:31:61:a0:77:55:af: 19:e5:54:d9:b5:22:39:34:d7:4d:6d:dd:f1:15:25: f6:87:fa:a0:83:7a:27:e0:ce:e4:38:ee:21:49:ee: 0f:13:86:42:fc:d5:9a:c4:e1:f4:8c:7a:6e:2f:ab: 67:fd:68:51:c5:78:e0:6c:8e:ef:63:ca:29:45:f3: 36:f0:11:7d:85:ec:49:e2:37:09:d3:f0:67:ab:f2: e5:00:7a:89:f0:69:16:f1:eb:16:62:4f:17:42:6d: ac:6f:2b:6c:af:12:62:d9:48:44:04:91:e0:a6:71: 6a:58:4c:cf:72:19:b0:b1:84:5f:b2:26:6a:ec:2c: 66:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:06:78:82:CD:C0:20:34:91:61:E0:93:BF:34:73:1B:3F:82:2B:D7 X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A7273/F3D22C2CE77111EF9DFBDD50C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A7273/F3D22C2CE77111EF9DFBDD50C4F9AE02/CQZ4gs3AIDSRYeCTvzRzGz-CK9c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.60.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:7c:24:f5:e6:06:d3:ea:67:f7:5e:01:33:0d:5d:51:bf:fb: e9:14:ae:bd:34:1c:4a:a0:0d:c6:94:c1:b9:d8:6d:09:76:4c: d9:83:bf:08:af:bd:91:94:11:ae:e7:8b:a3:17:21:b7:7a:8a: 7b:5a:04:d9:2e:cc:de:4e:dc:c9:b2:68:c9:4e:2f:f0:df:55: ba:c1:78:c4:92:1a:f0:c6:26:f9:eb:5e:d3:ac:cd:89:e7:24: cb:5a:f7:5d:24:ce:36:b6:d9:60:cf:fb:01:02:84:9f:b1:20: 86:51:fb:76:a0:d5:32:2d:f7:35:53:df:ed:1e:0e:3f:64:9d: d9:03:23:60:9b:60:56:5d:62:64:03:9e:8b:b3:f0:40:5a:9d: 46:24:10:80:f2:3e:91:d6:5c:8c:5d:8d:69:48:ff:a1:06:00: df:df:ae:47:ab:cd:a6:b8:3a:3c:51:70:6f:29:11:3d:86:3e: ba:3a:37:4b:98:68:af:15:be:29:f2:4c:f8:43:76:2a:ea:55: 67:29:04:00:4a:cf:b4:1f:5c:a0:6e:90:32:ba:ad:30:3a:74: 4a:e6:a9:c5:c9:ca:c3:36:e5:10:b4:86:25:63:ac:d9:ce:6f: 23:d3:30:04:cb:f3:77:c0:db:62:58:bf:ad:c4:96:44:4e:f6: 0b:00:79:8c -----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgICcB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjUxMjEyMTYzOTA0WhcNMjcwMTMxMDAwMDAwWjBGMREwDwYD VQQDEwhBOTFBNzI3MzExMC8GA1UEBRMoMDkwNjc4ODJDREMwMjAzNDkxNjFFMDkz QkYzNDczMUIzRjgyMkJENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AL0iSFmNNprIgbixq7Vdoz4tGw54DXVof4rTRDiohD5NAoGV+MZ3PxTJgeoJcA4p dp/BZco8Yeb9n0BpERwPTigug4g3F5y3eY7+pwb9XrpavHrloAr6TenJG5nzeyr1 VylbBWroPYKz7BVVGerUzNhAMYX/zn03YlnEBgR3TMPoMWGgd1WvGeVU2bUiOTTX TW3d8RUl9of6oIN6J+DO5DjuIUnuDxOGQvzVmsTh9Ix6bi+rZ/1oUcV44GyO72PK KUXzNvARfYXsSeI3CdPwZ6vy5QB6ifBpFvHrFmJPF0JtrG8rbK8SYtlIRASR4KZx alhMz3IZsLGEX7ImauwsZi0CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQJBniCzcAg NJFh4JO/NHMbP4Ir1zAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcyNzMvRjNEMjJDMkNFNzcxMTFFRjlERkJERDUwQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUE3MjczL0YzRDIyQzJDRTc3MTExRUY5REZCREQ1MEM0RjlBRTAyL0NRWjRnczNB SURTUlllQ1R2elJ6R3otQ0s5Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/PDANBgkqhkiG9w0BAQsFAAOCAQEAGnwk9eYG0+pn914BMw1d Ub/76RSuvTQcSqANxpTBudhtCXZM2YO/CK+9kZQRrueLoxcht3qKe1oE2S7M3k7c ybJoyU4v8N9VusF4xJIa8MYm+ete06zNiecky1r3XSTONrbZYM/7AQKEn7EghlH7 dqDVMi33NVPf7R4OP2Sd2QMjYJtgVl1iZAOei7PwQFqdRiQQgPI+kdZcjF2NaUj/ oQYA39+uR6vNprg6PFFwbykRPYY+ujo3S5horxW+KfJM+EN2KupVZykEAErPtB9c oG6QMrqtMDp0SuapxcnKwzblELSGJWOs2c5vI9MwBMvzd8DbYli/rcSWRE72CwB5 jA== -----END CERTIFICATE-----Generated at Fri Dec 19 23:18:32 2025 by rpki-client