This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhsJQZH-NHU3GcHUgfIIhagIwWs.cer File: OhsJQZH-NHU3GcHUgfIIhagIwWs.cer (raw, json) Hash identifier: 10pP8DEyFvEtxbqN+2qhqrD8PcoN7UcxFjA0/QiBjWI= Subject key identifier: 3A:1B:09:41:91:FE:34:75:37:19:C1:D4:81:F2:08:85:A8:08:C1:6B Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 027F1A Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/OhsJQZH-NHU3GcHUgfIIhagIwWs.mft caRepository: rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Thu 18 Dec 2025 07:40:55 +0000 Certificate not after: Tue 31 Mar 2026 00:00:00 +0000 Subordinate resources: AS: 132617 IP: 103.245.23.0/24 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 14:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163610 (0x27f1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Dec 18 07:40:55 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=A918C425, serialNumber=3A1B094191FE34753719C1D481F20885A808C16B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:f6:91:76:06:8a:85:a4:5b:44:f6:9b:54:39: f0:4a:16:a1:8c:19:3f:93:57:99:e7:b3:57:fe:13: 1c:24:92:35:08:7d:fc:ab:af:33:20:86:af:c8:be: a0:30:92:de:cb:bc:71:e7:6c:c4:6a:d4:26:91:e0: c1:9c:55:38:5f:2f:e4:35:b3:cc:aa:6c:40:46:f6: 55:5e:71:93:64:f2:67:75:a6:72:e2:e8:52:ac:f0: 30:09:4d:fd:66:7d:3c:f5:57:f1:a0:76:07:e9:a1: 7d:5b:bc:09:fc:24:46:3d:d1:a1:76:70:50:a6:5c: fd:d7:90:4d:2a:f4:97:4f:47:e8:f5:69:60:e2:b5: f8:7d:d5:19:f5:6d:ab:f3:19:b5:91:67:b8:32:4c: ef:32:43:ac:45:a0:9b:0c:33:7c:95:16:8c:9e:14: a5:77:31:c7:12:ae:6a:5b:db:b7:92:f6:a0:e2:f8: 77:93:5c:c4:86:83:76:c4:91:3c:64:42:d4:12:36: 86:fb:af:39:56:9f:10:a9:29:21:3c:04:23:23:20: 7f:be:e3:b6:d0:e2:2c:3b:f0:0f:d9:4f:c6:d1:20: 82:a4:90:2b:bb:2d:b7:c4:92:a1:4e:31:0a:81:7a: cb:4b:cc:e2:ed:4b:ca:da:8c:c0:62:c2:fd:2f:b9: b6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1B:09:41:91:FE:34:75:37:19:C1:D4:81:F2:08:85:A8:08:C1:6B X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/OhsJQZH-NHU3GcHUgfIIhagIwWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 132617 sbgp-ipAddrBlock: critical IPv4: 103.245.23.0/24 Signature Algorithm: sha256WithRSAEncryption 55:f0:6c:2b:68:84:6a:c9:d5:f4:a2:63:bd:75:4b:8d:4d:61: 09:28:bb:a6:9c:17:33:85:d6:99:44:86:96:c9:4a:fd:e6:d4: c9:fd:64:85:d3:ab:28:68:5e:fc:84:6a:6f:82:d5:87:8b:9f: db:fd:25:6d:b5:0e:2c:4b:ae:45:59:a9:37:14:9c:69:93:d2: 50:62:31:91:03:5e:33:0f:4e:f6:8d:92:bb:09:41:5c:4f:ea: d4:d3:a5:f1:49:ef:75:21:39:c2:17:b8:f0:dd:63:d0:8f:08: f8:35:c9:ea:1f:2a:03:83:6f:ba:00:a0:cd:c0:af:70:97:fa: eb:8c:c5:98:0d:df:2c:42:4a:c0:3a:cc:84:e9:74:e3:8b:6c: 2e:51:17:7d:b7:d4:a8:f6:f8:18:e4:9a:0c:be:70:55:96:e4: 94:56:f6:9c:8f:fb:2f:39:bc:af:59:5d:16:aa:eb:d6:b7:57: ea:e6:d1:40:97:3b:a3:e1:d1:a1:0c:93:d4:fa:f7:67:23:a3: 5b:8d:20:7b:9e:ef:da:a9:51:8b:7d:2a:18:0a:ec:3b:41:fa: 27:e1:2a:f8:81:78:dc:2b:dc:3b:50:7a:34:08:a8:8a:87:00: e8:8c:4d:41:f0:b2:1e:97:7c:88:ab:af:b5:7c:25:38:2d:41: 3e:bc:db:5d -----BEGIN CERTIFICATE----- MIIGGjCCBQKgAwIBAgIDAn8aMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MTIxODA3NDA1NVoXDTI2MDMzMTAwMDAwMFowRjERMA8G A1UEAwwIQTkxOEM0MjUxMTAvBgNVBAUTKDNBMUIwOTQxOTFGRTM0NzUzNzE5QzFE NDgxRjIwODg1QTgwOEMxNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCF9pF2BoqFpFtE9ptUOfBKFqGMGT+TV5nns1f+ExwkkjUIffyrrzMghq/IvqAw kt7LvHHnbMRq1CaR4MGcVThfL+Q1s8yqbEBG9lVecZNk8md1pnLi6FKs8DAJTf1m fTz1V/GgdgfpoX1bvAn8JEY90aF2cFCmXP3XkE0q9JdPR+j1aWDitfh91Rn1bavz GbWRZ7gyTO8yQ6xFoJsMM3yVFoyeFKV3MccSrmpb27eS9qDi+HeTXMSGg3bEkTxk QtQSNob7rzlWnxCpKSE8BCMjIH++47bQ4iw78A/ZT8bRIIKkkCu7LbfEkqFOMQqB estLzOLtS8rajMBiwv0vubaRAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUOhsJQZH+ NHU3GcHUgfIIhagIwWswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThDNDI1L0RGQkFFRTE0REJFNDExRjBBOEI1QkY2NDM2NkY1NkJDLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTE4QzQyNS9ERkJBRUUxNERCRTQxMUYwQThCNUJGNjQzNjZGNTZCQy9PaHNKUVpI LU5IVTNHY0hVZ2ZJSWhhZ0l3V3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ oAcwBQIDAgYJMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/UXMA0GCSqG SIb3DQEBCwUAA4IBAQBV8GwraIRqydX0omO9dUuNTWEJKLumnBczhdaZRIaWyUr9 5tTJ/WSF06soaF78hGpvgtWHi5/b/SVttQ4sS65FWak3FJxpk9JQYjGRA14zD072 jZK7CUFcT+rU06XxSe91ITnCF7jw3WPQjwj4NcnqHyoDg2+6AKDNwK9wl/rrjMWY Dd8sQkrAOsyE6XTji2wuURd9t9So9vgY5JoMvnBVluSUVvacj/svObyvWV0WquvW t1fq5tFAlzuj4dGhDJPU+vdnI6NbjSB7nu/aqVGLfSoYCuw7Qfon4Sr4gXjcK9w7 UHo0CKiKhwDojE1B8LIel3yIq6+1fCU4LUE+vNtd -----END CERTIFICATE-----Generated at Fri Dec 19 16:06:41 2025 by rpki-client