Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0sRnvDxia8XmrhsqTSNXEdgZyuQ.cer
File: 0sRnvDxia8XmrhsqTSNXEdgZyuQ.cer (raw, json)
Hash identifier: ZChYDP+TYPD7DeRNwyvewis1tQ37Vc+1feKGQZsNAJk=
Subject key identifier: D2:C4:67:BC:3C:62:6B:C5:E6:AE:1B:2A:4D:23:57:11:D8:19:CA:E4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A3B6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D6C43/C809B8F0108611F1A1947F72313D8C67/0sRnvDxia8XmrhsqTSNXEdgZyuQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D6C43/C809B8F0108611F1A1947F72313D8C67/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Mar 2026 07:53:05 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: AS: 38578
IP: 203.153.4.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 Apr 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172982 (0x2a3b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 11 07:53:05 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A91D6C43, serialNumber=D2C467BC3C626BC5E6AE1B2A4D235711D819CAE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:52:11:bf:d2:c8:80:39:2b:8f:6d:fd:02:a4:
23:c9:50:0e:49:b3:04:03:b5:da:06:fa:67:dd:8d:
8a:5b:91:ca:cd:b8:8a:6d:d3:db:6b:6b:a0:48:1c:
7c:eb:96:4a:aa:ee:8c:82:bc:1b:9f:a6:76:67:74:
92:68:07:c3:3b:e5:41:dd:14:bb:a5:03:2b:48:f9:
5e:e4:59:66:ec:16:53:3b:a9:89:a4:37:12:43:c0:
7d:4e:05:20:5f:77:2c:c3:6d:ec:18:83:a4:f2:76:
4f:f4:c7:69:6d:61:bc:ce:f2:00:13:8f:39:a6:6c:
af:c0:1f:4e:fc:4f:cf:65:51:cb:33:88:d9:8e:36:
a6:88:45:de:9e:b5:57:6c:60:8d:ab:79:90:f9:16:
7f:50:9c:99:c3:24:c3:34:87:25:5d:b0:fe:58:77:
35:d8:de:d9:12:39:17:e1:75:9e:0e:48:5d:f1:8d:
ae:22:80:03:90:6b:89:17:46:6e:a0:ae:13:08:a0:
07:1c:d1:a7:9e:57:c5:51:4f:06:c6:fb:fc:e1:6a:
fd:cf:0e:c4:b5:b6:00:3a:0a:f8:56:93:0d:6b:9f:
50:04:ec:a4:6b:a2:b3:95:5d:bc:e0:85:a9:cc:3d:
27:ea:ce:bc:ca:cc:08:5e:66:7c:53:1c:a2:b4:06:
0b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:C4:67:BC:3C:62:6B:C5:E6:AE:1B:2A:4D:23:57:11:D8:19:CA:E4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D6C43/C809B8F0108611F1A1947F72313D8C67/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D6C43/C809B8F0108611F1A1947F72313D8C67/0sRnvDxia8XmrhsqTSNXEdgZyuQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38578
sbgp-ipAddrBlock: critical
IPv4:
203.153.4.0/23
Signature Algorithm: sha256WithRSAEncryption
60:1b:d7:da:c8:14:42:f6:a9:a6:33:4d:cf:78:86:fb:a8:63:
8a:f2:1c:0b:b3:9e:75:65:10:0a:18:b5:91:ef:63:2c:3c:9d:
9b:69:eb:11:e5:1e:81:38:80:96:0c:30:1a:db:55:2c:a1:78:
c2:e8:42:75:ce:60:11:ca:38:05:1f:2b:69:50:9b:28:fd:6a:
4f:94:24:ed:52:43:ec:7c:21:27:c9:8a:60:fe:3c:b3:e1:38:
a1:43:d5:46:b4:82:b4:01:2a:48:c1:a8:60:f8:66:9c:a4:11:
1a:15:68:7b:32:7e:05:90:3c:44:ff:cf:d8:0f:9a:0b:a3:a1:
67:ac:bf:0c:a1:98:45:2a:75:51:83:c4:2d:8c:ad:32:2a:11:
60:7b:ff:8c:5d:e4:3a:01:6b:a2:0a:12:13:eb:76:93:98:d7:
26:96:2c:f8:81:c6:0e:5a:07:65:f7:6f:db:ac:f1:e8:37:53:
a9:c1:f6:47:0c:7b:67:78:2d:9c:d5:0b:c8:e1:b9:f3:0e:96:
d1:b1:92:a1:cf:c5:1e:52:a2:bb:85:c3:7c:40:60:74:59:4f:
5c:d3:3c:ad:df:36:b3:a6:bb:c2:ed:e2:21:3b:15:85:bd:f6:
8a:d4:89:b9:56:63:18:c2:14:80:63:58:b1:fc:c0:4a:ed:10:
ac:44:d5:e2
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAqO2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDMxMTA3NTMwNVoXDTI3MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDZDNDMxMTAvBgNVBAUTKEQyQzQ2N0JDM0M2MjZCQzVFNkFFMUIy
QTREMjM1NzExRDgxOUNBRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDPUhG/0siAOSuPbf0CpCPJUA5JswQDtdoG+mfdjYpbkcrNuIpt09tra6BIHHzr
lkqq7oyCvBufpnZndJJoB8M75UHdFLulAytI+V7kWWbsFlM7qYmkNxJDwH1OBSBf
dyzDbewYg6Tydk/0x2ltYbzO8gATjzmmbK/AH078T89lUcsziNmONqaIRd6etVds
YI2reZD5Fn9QnJnDJMM0hyVdsP5YdzXY3tkSORfhdZ4OSF3xja4igAOQa4kXRm6g
rhMIoAcc0aeeV8VRTwbG+/zhav3PDsS1tgA6CvhWkw1rn1AE7KRrorOVXbzghanM
PSfqzrzKzAheZnxTHKK0Bgt5AgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQU0sRnvDxi
a8XmrhsqTSNXEdgZyuQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQ2QzQzL0M4MDlCOEYwMTA4NjExRjFBMTk0N0Y3MjMxM0Q4QzY3LzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFENkM0My9DODA5QjhGMDEwODYxMUYxQTE5NDdGNzIzMTNEOEM2Ny8wc1JudkR4
aWE4WG1yaHNxVFNOWEVkZ1p5dVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAJayMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5kEMA0GCSqG
SIb3DQEBCwUAA4IBAQBgG9fayBRC9qmmM03PeIb7qGOK8hwLs551ZRAKGLWR72Ms
PJ2baesR5R6BOICWDDAa21UsoXjC6EJ1zmARyjgFHytpUJso/WpPlCTtUkPsfCEn
yYpg/jyz4TihQ9VGtIK0ASpIwahg+GacpBEaFWh7Mn4FkDxE/8/YD5oLo6FnrL8M
oZhFKnVRg8QtjK0yKhFge/+MXeQ6AWuiChIT63aTmNcmliz4gcYOWgdl92/brPHo
N1OpwfZHDHtneC2c1QvI4bnzDpbRsZKhz8UeUqK7hcN8QGB0WU9c0zyt3zazprvC
7eIhOxWFvfaK1Im5VmMYwhSAY1ix/MBK7RCsRNXi
-----END CERTIFICATE-----
Generated at Wed Mar 25 23:01:30 2026 by rpki-client