This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.cer (raw, json) Hash identifier: h8bDlz97k9bK3aMMXeSTMsfOfnXW/SRoWB8CbPi41Qw= Subject key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 027DB8 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft caRepository: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Fri 12 Dec 2025 13:49:57 +0000 Certificate not after: Sun 31 Jan 2027 00:00:00 +0000 Subordinate resources: AS: 138368 IP: 103.131.212.0/22 IP: 2403:d240::/32 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 09:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163256 (0x27db8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Dec 12 13:49:57 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=A914F697, serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a1:76:d7:25:c3:3f:bd:41:1b:76:84:e0:05: 22:91:30:66:25:7c:ce:0d:7e:06:9e:35:82:65:b5: 3e:5e:a0:d5:fa:88:59:67:19:4e:46:3c:52:05:a7: cb:d7:e4:c6:c5:ec:dc:03:10:92:c8:e8:9a:c4:c7: 6b:a6:25:51:26:93:06:4d:5c:08:ee:4b:d0:2f:05: 1b:32:62:d6:01:88:12:7c:d8:2f:5f:c1:35:ee:ee: 6d:39:19:37:c9:eb:d1:ec:24:d7:8a:0b:ce:85:8a: 3c:92:0a:b1:1c:9b:72:6d:5e:eb:09:22:ae:62:8e: 28:b1:a4:1c:a0:99:20:0c:da:4e:6b:75:c9:fa:3f: fa:29:0c:0b:de:0e:f6:e2:6e:50:7f:38:5a:80:6c: 99:32:df:ed:96:b4:d9:d6:5d:0d:0c:58:c3:5c:33: 70:56:39:30:77:fd:92:3b:15:00:31:15:ec:d9:30: d2:65:6d:66:1b:43:23:a8:6f:32:83:bc:0a:66:60: bb:c8:72:57:20:93:6e:c3:e6:50:a6:65:ed:8d:69: 5f:01:4a:b2:ac:23:5b:9f:da:5a:2f:74:aa:c7:56: 34:11:b9:94:b0:19:4e:88:cc:03:6f:0c:46:b8:86: ac:17:f7:10:7c:ac:db:22:f8:ce:5c:f3:a7:9e:af: b8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 138368 sbgp-ipAddrBlock: critical IPv4: 103.131.212.0/22 IPv6: 2403:d240::/32 Signature Algorithm: sha256WithRSAEncryption 93:38:81:0a:97:74:7e:9a:e7:5f:6d:1f:d1:56:4e:a6:80:bc: 17:c7:f6:34:3a:bc:dd:95:e4:fb:62:3a:8e:d6:0a:23:94:0a: 22:af:b0:cd:b9:b1:1e:13:a0:c0:4d:cc:24:a4:c5:38:40:bd: 50:f8:67:d8:56:b8:12:a9:5a:73:6d:15:6f:57:e4:62:a4:e9: e8:41:b4:03:62:cc:1e:30:6c:0b:6a:01:09:31:52:60:30:ad: 17:16:07:ff:5e:57:33:b2:85:2c:2e:15:db:f5:0e:c1:85:5f: 5a:55:6b:67:dc:dc:63:5f:c5:c3:c3:ae:73:7b:a7:4d:77:e8: 41:23:0c:a8:d5:dc:37:ba:27:56:75:e3:ae:6d:99:b8:f7:f8: 7b:e9:f0:8b:34:98:3b:ee:26:e6:5d:24:6c:62:e1:05:f5:fb: 1f:4d:50:14:b8:1f:37:04:85:a5:36:c4:04:5f:4f:f0:6f:e9: 6a:47:18:b0:33:1f:06:0a:87:5e:8f:ed:2e:11:2b:a1:6f:c6: 38:b5:c9:b0:04:a9:61:83:d3:ee:33:c6:37:8a:cb:83:00:f0: b1:e7:ec:3c:ae:23:68:b1:c3:ef:17:83:97:32:f2:6b:e3:90: 33:80:38:b8:cc:40:84:11:1a:89:af:46:a8:2f:c2:87:94:8f: 76:67:31:eb -----BEGIN CERTIFICATE----- MIIGKTCCBRGgAwIBAgIDAn24MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MTIxMjEzNDk1N1oXDTI3MDEzMTAwMDAwMFowRjERMA8G A1UEAxMIQTkxNEY2OTcxMTAvBgNVBAUTKERCRTZDN0Y5OTA5MDQ2QUUzNUEyMTVC MEUyMTU0NEFFNTIyMzdFOEEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCloXbXJcM/vUEbdoTgBSKRMGYlfM4NfgaeNYJltT5eoNX6iFlnGU5GPFIFp8vX 5MbF7NwDEJLI6JrEx2umJVEmkwZNXAjuS9AvBRsyYtYBiBJ82C9fwTXu7m05GTfJ 69HsJNeKC86FijySCrEcm3JtXusJIq5ijiixpBygmSAM2k5rdcn6P/opDAveDvbi blB/OFqAbJky3+2WtNnWXQ0MWMNcM3BWOTB3/ZI7FQAxFezZMNJlbWYbQyOobzKD vApmYLvIclcgk27D5lCmZe2NaV8BSrKsI1uf2lovdKrHVjQRuZSwGU6IzANvDEa4 hqwX9xB8rNsi+M5c86eer7iBAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQU2+bH+ZCQ Rq41ohWw4hVErlIjfoowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTRGNjk3Lzc1MjFERkMwRTg1RDExRUFCMjNDOEY4N0M0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTE0RjY5Ny83NTIxREZDMEU4NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpD UVJxNDFvaFd3NGhWRXJsSWpmb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ oAcwBQIDAhyAMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4PUMA0EAgAC MAcDBQAkA9JAMA0GCSqGSIb3DQEBCwUAA4IBAQCTOIEKl3R+mudfbR/RVk6mgLwX x/Y0OrzdleT7YjqO1gojlAoir7DNubEeE6DATcwkpMU4QL1Q+GfYVrgSqVpzbRVv V+RipOnoQbQDYsweMGwLagEJMVJgMK0XFgf/XlczsoUsLhXb9Q7BhV9aVWtn3Nxj X8XDw65ze6dNd+hBIwyo1dw3uidWdeOubZm49/h76fCLNJg77ibmXSRsYuEF9fsf TVAUuB83BIWlNsQEX0/wb+lqRxiwMx8GCodej+0uESuhb8Y4tcmwBKlhg9PuM8Y3 isuDAPCx5+w8riNoscPvF4OXMvJr45AzgDi4zECEERqJr0aoL8KHlI92ZzHr -----END CERTIFICATE-----Generated at Sun Dec 21 11:26:18 2025 by rpki-client