Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer
File: 2gE-F4NYyzWot2XJvAkK6c8cT74.cer (raw, json)
Hash identifier: Og9yKZjJ1Hhawt7yfQIHO5TaHKcw1tVPWk5lCAgg89I=
Subject key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B109
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 May 2026 03:08:53 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 23936
IP: 103.229.96.0/24
IP: 180.178.72.0/21
IP: 203.13.69.0/24
IP: 2402:4400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 19:57:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176393 (0x2b109)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 1 03:08:53 2026 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:90:48:a0:3e:e7:44:a9:c2:63:eb:69:c3:26:
df:4f:03:c3:18:a7:a6:68:fc:88:aa:a0:1a:64:72:
32:e3:59:c5:e9:3e:ea:e8:fb:4a:40:6a:f3:14:1f:
38:5b:cd:ad:49:4c:0d:4c:80:3e:29:a8:39:65:d3:
5b:eb:e2:5d:62:74:eb:54:85:f7:8d:09:15:d5:6d:
77:32:e2:cc:c7:a3:a7:03:c8:da:52:51:c4:3c:03:
e6:00:b6:4c:fe:96:89:d9:c5:2f:84:d5:56:d3:95:
02:c5:7d:79:3b:98:4b:22:2b:36:97:22:be:57:a0:
0a:32:06:e8:cc:2d:c4:4f:a2:fc:b9:9f:b8:40:bc:
99:44:0e:77:69:22:1d:ca:3b:57:31:fe:8e:e0:a5:
d5:01:4a:d1:59:38:a9:77:eb:f8:b3:c3:63:42:3d:
ce:99:59:29:ec:86:3d:a6:d5:e2:dc:be:4e:dd:28:
76:c3:62:6e:10:d1:f4:df:10:0e:25:f1:13:aa:39:
9c:4e:51:6a:7d:09:49:3c:e0:b2:5a:63:6f:6c:2a:
f2:b9:52:df:8f:fa:72:09:8f:e5:be:fe:72:f6:17:
e5:3c:65:28:5a:ed:47:12:8c:88:c3:ce:db:c6:7d:
ab:53:ab:3f:8f:a0:4f:ba:ba:19:46:0a:08:0e:de:
ca:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23936
sbgp-ipAddrBlock: critical
IPv4:
103.229.96.0/24
180.178.72.0/21
203.13.69.0/24
IPv6:
2402:4400::/32
Signature Algorithm: sha256WithRSAEncryption
68:2f:c2:d3:9f:49:4f:53:4c:bd:0c:ca:25:07:d7:62:74:1d:
b1:a0:1c:c5:4f:76:be:f8:32:e6:dd:af:cc:ab:87:41:82:56:
25:d4:59:18:6c:59:13:6b:f0:d0:eb:d2:e6:07:05:80:f1:89:
62:2c:01:c6:3d:d0:15:dc:7f:8b:f0:c7:2d:02:30:95:1f:1e:
3a:a7:3f:72:a1:69:1a:7d:a8:09:b1:d2:41:73:f1:94:ce:3b:
2f:aa:ee:a8:cd:92:0c:8e:b7:dd:57:3c:7c:13:78:b8:0c:3b:
18:ef:0a:60:5e:78:a1:84:9f:67:5b:06:9c:6a:24:16:91:06:
c9:fa:4a:0e:98:bc:dc:2c:19:60:ba:d8:d6:fb:3d:1e:db:d4:
cb:c4:ac:46:68:0f:99:de:2c:b3:e6:90:00:a3:c3:72:e6:04:
77:4a:16:fe:7c:e4:8f:f5:a3:4e:96:0a:30:dc:d4:65:a5:98:
6c:24:61:5f:e7:ae:c3:72:5a:28:f7:c4:a0:f1:5b:6b:4d:74:
b9:f3:a5:92:e6:9c:e8:db:ba:4c:dc:1c:85:4a:f1:9d:6f:f3:
bf:49:0f:d8:1b:6b:b6:88:05:bc:59:99:06:8c:c5:c9:5a:71:
bc:c2:7f:f8:6a:49:de:0e:9a:d4:87:e7:8b:2b:0d:ef:54:a2:
7c:32:7d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:23:42 2026 by rpki-client