This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer File: BUM8OuqKSXAsmoLuyV0WtVA86mA.cer (raw, json) Hash identifier: GQAZFCu1xNDbkkwFSGBXQjj5429e0uJt9DOyk0xVnP0= Subject key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Certificate serial: 722F Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer Manifest: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft caRepository: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Tue 13 Jan 2026 14:09:02 +0000 Certificate not after: Wed 31 Mar 2027 00:00:00 +0000 Subordinate resources: IP: 134.159.0.0/16 IP: 192.154.16.0/24 IP: 192.154.24.0/23 Validation: OK Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29231 (0x722f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E Validity Not Before: Jan 13 14:09:02 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ca:96:3b:3a:77:1c:1b:d5:41:4a:99:fe:7a: 28:a5:ab:dd:5e:ba:20:4a:6a:59:a5:53:01:1b:9c: ad:a3:41:05:d4:74:77:57:d0:db:77:a5:45:17:12: a4:b7:2c:7d:97:85:59:80:1f:7a:ce:3d:52:4c:7b: bc:1a:74:90:d2:06:02:1c:b0:16:44:31:69:cc:46: 0c:7c:39:cc:33:69:b5:9b:df:77:37:6f:ee:e1:3b: e3:6c:03:d1:1f:db:dd:99:0a:ef:79:29:43:d3:30: ae:04:68:db:4f:cd:f0:fd:8e:2a:ac:ea:16:ef:a7: 96:d6:a0:39:c4:06:bf:54:13:8b:2a:72:b6:0c:89: e8:6f:4a:a4:b2:51:36:9f:4a:91:ff:b2:3d:ea:df: 07:f1:2c:c1:1c:1c:06:98:88:35:4f:6a:96:68:24: 6f:43:ad:09:4d:89:09:c0:42:58:7e:70:be:65:ee: a3:2f:a4:35:a2:c2:35:47:b1:32:2f:35:dc:f3:a3: a3:de:5c:db:17:59:13:58:0b:43:b6:ac:22:e1:75: 84:f6:49:44:ee:23:56:d3:5d:e4:7b:46:e5:12:1f: 35:14:7e:80:64:d7:64:f9:cf:a4:ed:58:36:11:e4: f9:60:24:ef:df:53:a5:96:ca:be:19:46:62:40:f8: 2e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Authority Key Identifier: keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.159.0.0/16 192.154.16.0/24 192.154.24.0/23 Signature Algorithm: sha256WithRSAEncryption c0:40:33:59:7b:da:e0:0f:0b:77:70:ba:e9:d2:c0:ba:db:09: e4:48:1a:48:73:9d:10:86:60:dd:e9:8d:ea:76:25:e5:9b:97: fd:ee:33:30:87:c8:00:aa:d5:bc:0f:f5:94:eb:47:84:e1:bf: ab:2f:df:23:73:53:8f:97:a8:a0:24:f0:9f:36:e9:b2:38:72: 8d:b6:c0:e6:75:f9:04:42:65:0e:b2:d2:7d:16:f9:ad:95:cd: 9a:c9:d9:df:d2:3f:de:f9:43:87:80:28:49:14:32:6e:18:c4: e4:f4:b9:47:bc:9d:43:ca:55:40:08:5a:b9:bc:f7:71:f9:7b: 98:85:36:15:a5:b2:32:ad:4a:cf:c0:f0:8a:7f:34:7b:4d:87: b0:76:ad:87:1a:09:64:f5:05:a0:b2:19:e0:ac:86:8a:46:f4: 43:12:7e:6a:ca:a5:58:ea:64:83:e4:aa:c3:31:90:4e:93:5b: d4:46:a9:5b:4d:83:b4:d2:54:f3:75:35:e0:d8:5d:d4:2e:10: ca:5c:4c:65:88:df:b2:2d:c5:e7:05:31:94:ec:9b:7c:92:77: 03:f2:f7:93:2f:c9:ce:26:23:7f:7c:04:61:2d:b9:0a:71:91: 4f:c3:c1:d5:07:1f:6f:d2:7f:70:33:04:4c:be:72:6d:9d:72: b3:f3:4d:5f -----BEGIN CERTIFICATE----- MIIGCDCCBPCgAwIBAgICci8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkw REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD N0MxRDZFMEUwHhcNMjYwMTEzMTQwOTAyWhcNMjcwMzMxMDAwMDAwWjBGMREwDwYD VQQDDAhBOTFDRkZBMDExMC8GA1UEBRMoMDU0MzNDM0FFQThBNDk3MDJDOUE4MkVF Qzk1RDE2QjU1MDNDRUE2MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMXKljs6dxwb1UFKmf56KKWr3V66IEpqWaVTARucraNBBdR0d1fQ23elRRcSpLcs fZeFWYAfes49Ukx7vBp0kNIGAhywFkQxacxGDHw5zDNptZvfdzdv7uE742wD0R/b 3ZkK73kpQ9MwrgRo20/N8P2OKqzqFu+nltagOcQGv1QTiypytgyJ6G9KpLJRNp9K kf+yPerfB/EswRwcBpiINU9qlmgkb0OtCU2JCcBCWH5wvmXuoy+kNaLCNUexMi81 3POjo95c2xdZE1gLQ7asIuF1hPZJRO4jVtNd5HtG5RIfNRR+gGTXZPnPpO1YNhHk +WAk799TpZbKvhlGYkD4LqMCAwEAAaOCAv4wggL6MB0GA1UdDgQWBBQFQzw66opJ cCyagu7JXRa1UDzqYDAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2 MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0 LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMTUwQkY2OTBEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvMH4GCCsGAQUF BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MUNGRkEwLzE1MEJGNjkwRDhDQjExRTlCQUUyNEQyMUM0RjlBRTAyL0JVTThPdXFL U1hBc21vTHV5VjBXdFZBODZtQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAqBggrBgEFBQcBBwEB/wQbMBkw FwQCAAEwEQMDAIafAwQAwJoQAwQBwJoYMA0GCSqGSIb3DQEBCwUAA4IBAQDAQDNZ e9rgDwt3cLrp0sC62wnkSBpIc50QhmDd6Y3qdiXlm5f97jMwh8gAqtW8D/WU60eE 4b+rL98jc1OPl6igJPCfNumyOHKNtsDmdfkEQmUOstJ9Fvmtlc2aydnf0j/e+UOH gChJFDJuGMTk9LlHvJ1DylVACFq5vPdx+XuYhTYVpbIyrUrPwPCKfzR7TYewdq2H Gglk9QWgshngrIaKRvRDEn5qyqVY6mSD5KrDMZBOk1vURqlbTYO00lTzdTXg2F3U LhDKXExliN+yLcXnBTGU7Jt8kncD8veTL8nOJiN/fARhLbkKcZFPw8HVBx9v0n9w MwRMvnJtnXKz801f -----END CERTIFICATE-----Generated at Sun Jan 25 08:56:27 2026 by rpki-client