Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fHal9jt-Zxl369uyp87Umxgq0E.cer
File: 0fHal9jt-Zxl369uyp87Umxgq0E.cer (raw, json)
Hash identifier: aAtaa0hbOITCdIGw64snNbG65Jqg/09PnLoHw7hsb7A=
Subject key identifier: D1:F1:DA:97:D8:ED:F9:9C:65:DF:AF:6E:CA:9F:3B:52:6C:60:AB:41
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A122
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Mar 2026 12:35:59 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 132906
IP: 103.148.240.0/24
IP: 103.164.7.0/24
IP: 2001:df2:fe80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 04:30:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172322 (0x2a122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 2 12:35:59 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A912185F, serialNumber=D1F1DA97D8EDF99C65DFAF6ECA9F3B526C60AB41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5b:bf:8d:2f:bd:c7:d6:44:5d:87:d9:8e:d5:
ba:f8:be:e1:19:1c:75:1b:cf:94:bf:ce:00:88:50:
56:88:70:3e:02:85:12:c6:01:a4:31:df:b0:54:8e:
7b:67:dd:04:e6:07:08:ae:fd:29:85:80:91:97:24:
17:78:f2:70:87:db:45:8d:d9:fc:34:49:db:32:0e:
20:26:e0:e6:15:4c:b6:00:ac:2b:35:0d:0f:75:35:
76:fa:5c:ca:98:09:95:bc:e3:2e:de:52:0f:49:c5:
b3:f0:4c:bd:e6:90:13:78:f9:a2:39:f8:59:42:d6:
e6:0f:b5:f7:d2:65:0d:f4:23:e1:84:17:f2:eb:ac:
e5:9e:6e:09:43:93:9d:c1:70:e9:99:f3:82:c1:7e:
11:c9:84:36:16:ba:1b:02:bd:70:7f:6d:73:b0:ef:
ad:67:98:47:c0:5b:77:b7:18:c4:11:06:a9:6d:28:
42:cd:ea:43:ce:fa:07:b8:ef:98:fe:d4:00:4c:da:
ca:c6:75:26:bd:d1:57:c6:1e:6d:45:4e:a0:a7:10:
4e:d1:6d:de:c5:21:10:00:71:8e:bf:d9:66:a0:df:
57:57:47:5c:90:3a:83:51:f5:08:4a:f9:2f:f8:5e:
3c:7e:72:c1:87:dc:90:67:82:0e:db:a2:80:d4:ec:
6b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F1:DA:97:D8:ED:F9:9C:65:DF:AF:6E:CA:9F:3B:52:6C:60:AB:41
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132906
sbgp-ipAddrBlock: critical
IPv4:
103.148.240.0/24
103.164.7.0/24
IPv6:
2001:df2:fe80::/48
Signature Algorithm: sha256WithRSAEncryption
6d:85:68:fa:0f:ef:6a:e3:f5:6f:33:38:5e:41:9a:d7:25:5d:
11:c3:02:72:65:19:bd:eb:2a:e3:48:2a:e0:bc:d4:26:f3:91:
10:ed:b5:32:ae:b0:af:e9:cd:da:8d:27:c4:a4:20:0f:94:07:
7b:11:dc:2c:c9:f4:c9:5c:f0:8b:ec:81:4d:00:69:90:cf:ba:
06:f5:77:bd:53:52:ec:9b:b6:2f:fd:0f:bc:e1:95:ea:72:39:
02:ae:8e:3b:33:5c:45:fb:e8:b8:ee:59:af:6f:8d:1e:13:a0:
9a:2c:d1:d9:73:36:54:d1:48:ab:29:73:e9:a2:14:47:86:25:
32:6b:ff:01:08:5e:6b:cb:67:16:a8:0a:67:f7:38:54:a4:a8:
03:89:9d:ce:35:d2:14:4d:95:ed:df:83:ec:14:a9:11:a6:b8:
95:92:1f:4c:06:ae:5f:09:1b:56:46:fa:2f:2a:de:e9:6a:67:
6f:a7:45:4c:e0:08:c0:03:40:8f:58:ed:b6:65:35:13:f2:92:
ca:20:22:98:22:4a:0d:b6:b4:52:4c:2e:fa:da:d2:68:e9:25:
fe:5d:1b:99:67:e4:6e:a1:aa:37:6b:86:83:c0:bd:d8:97:e3:
f8:ef:44:40:73:b6:4f:6b:7c:73:21:4a:3d:3e:d7:76:12:44:
8a:92:84:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:29:55 2026 by rpki-client