Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/31FHCxXowUGvL6hGoowDs4WRurQ.cer
File: 31FHCxXowUGvL6hGoowDs4WRurQ.cer (raw, json)
Hash identifier: dV1CWm0ZDKBa0xFBTlOumW56Z9XZ22ZhOPXX/OzT8ZA=
Subject key identifier: DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B401
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 May 2026 14:30:27 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 10110
AS: 38906
AS: 45787
AS: 55702
AS: 131272
AS: 133928
AS: 135431
AS: 139272
IP: 49.0.28.0/22
IP: 202.2.4.0 -- 202.2.15.255
IP: 202.14.216.0/24
IP: 202.36.224.0/23
IP: 202.37.0.0/20
IP: 202.37.42.0/23
IP: 202.49.0.0/21
IP: 202.50.90.0/24
IP: 202.50.208.0 -- 202.50.219.255
IP: 202.50.252.0/24
IP: 203.176.154.0/23
IP: 2403:a00::/32
IP: 2404:4900::/32
IP: 2405:2600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 20 May 2026 01:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177153 (0x2b401)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 11 14:30:27 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91DB7E9, serialNumber=DF51470B15E8C141AF2FA846A28C03B38591BAB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ec:89:bf:42:9a:cf:34:fb:f3:30:83:eb:cd:
0d:44:15:81:6c:ef:40:fc:cf:f8:5b:4d:da:95:36:
93:dc:41:7b:f1:7c:2c:6b:19:d1:6d:f2:17:e4:e8:
58:ad:10:31:e7:98:fa:07:4f:16:09:45:c6:b5:66:
03:8d:70:05:ea:fd:2b:38:60:c2:01:5f:c8:cf:2f:
2e:af:1a:59:fe:26:29:96:c8:3c:55:b8:af:0f:11:
12:74:b4:49:5c:c2:2d:22:a3:d4:f6:08:6f:3e:77:
f7:95:7d:f8:46:f9:fa:03:4c:20:db:6d:c4:4f:ce:
2b:7c:74:c6:94:d2:66:cb:c4:af:97:3d:d5:dd:9b:
e7:e8:da:bd:49:4d:65:0d:d0:42:23:97:e2:7f:c6:
31:19:8e:ec:7f:c0:17:1b:67:a8:43:0c:39:7d:16:
9f:3e:d9:90:e5:f5:bb:94:7b:6b:0f:fb:0f:6b:a1:
a6:c7:0d:a7:82:12:3d:fa:ca:52:88:f6:af:a3:b1:
9d:80:dd:f7:8a:a4:94:cb:95:e1:45:6d:d7:1e:69:
e1:59:7e:da:5b:26:24:87:0c:9e:c3:7e:4f:b5:91:
02:1a:f1:00:2b:53:3f:bb:c3:fe:c8:83:3e:a5:da:
a9:2b:47:07:ca:0d:b4:c8:f7:b1:67:59:2b:2b:3c:
10:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:51:47:0B:15:E8:C1:41:AF:2F:A8:46:A2:8C:03:B3:85:91:BA:B4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E99E7F526E2E11EE85D92D32C4F9AE02/31FHCxXowUGvL6hGoowDs4WRurQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10110
38906
45787
55702
131272
133928
135431
139272
sbgp-ipAddrBlock: critical
IPv4:
49.0.28.0/22
202.2.4.0-202.2.15.255
202.14.216.0/24
202.36.224.0/23
202.37.0.0/20
202.37.42.0/23
202.49.0.0/21
202.50.90.0/24
202.50.208.0-202.50.219.255
202.50.252.0/24
203.176.154.0/23
IPv6:
2403:a00::/32
2404:4900::/32
2405:2600::/32
Signature Algorithm: sha256WithRSAEncryption
54:ad:f0:c1:49:5e:41:83:f8:ba:ad:c4:e6:a6:5a:ca:63:ec:
4f:5b:08:16:68:9f:c4:1e:d8:d3:84:2e:6f:8c:a3:9e:5e:5a:
8e:15:e5:11:fe:6a:9d:61:86:04:c6:cc:4f:64:4b:af:72:5a:
30:e3:e6:46:30:22:ce:ec:7b:e1:bc:c3:27:99:58:eb:2b:34:
5d:07:81:40:7a:27:d6:4d:fb:7f:09:9b:29:d6:42:e1:76:47:
15:04:48:5c:04:57:7e:d0:6a:97:d2:e5:15:fc:b4:d0:6e:7a:
bd:c9:b3:12:a2:93:4e:4b:20:50:70:5a:df:8b:39:69:c4:42:
88:d3:47:7c:e2:89:c9:27:93:14:71:16:24:ca:20:d5:21:3c:
d5:76:1a:57:28:54:36:d9:91:0a:34:d5:87:74:93:15:2d:f6:
d6:51:4e:10:a0:99:3e:6e:d4:86:9f:6c:ef:71:82:b8:1c:f4:
14:90:61:d1:1f:c5:f4:55:ef:9c:65:80:be:cb:7a:a2:f1:1e:
e5:c3:b4:81:ec:af:7a:62:2c:b6:8e:fe:ca:3f:a5:a8:77:a3:
23:42:b0:e0:00:01:91:fe:2d:0f:12:06:98:6c:9a:d8:07:a1:
18:8e:76:40:0f:f5:98:dd:92:dd:a3:35:39:2b:7f:74:b2:cb:
e4:d9:fe:15
-----BEGIN CERTIFICATE-----
MIIGpjCCBY6gAwIBAgIDArQBMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDUxMTE0MzAyN1oXDTI3MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxREI3RTkxMTAvBgNVBAUTKERGNTE0NzBCMTVFOEMxNDFBRjJGQTg0
NkEyOEMwM0IzODU5MUJBQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDA7Im/QprPNPvzMIPrzQ1EFYFs70D8z/hbTdqVNpPcQXvxfCxrGdFt8hfk6Fit
EDHnmPoHTxYJRca1ZgONcAXq/Ss4YMIBX8jPLy6vGln+JimWyDxVuK8PERJ0tElc
wi0io9T2CG8+d/eVffhG+foDTCDbbcRPzit8dMaU0mbLxK+XPdXdm+fo2r1JTWUN
0EIjl+J/xjEZjux/wBcbZ6hDDDl9Fp8+2ZDl9buUe2sP+w9roabHDaeCEj36ylKI
9q+jsZ2A3feKpJTLleFFbdceaeFZftpbJiSHDJ7Dfk+1kQIa8QArUz+7w/7Igz6l
2qkrRwfKDbTI97FnWSsrPBAdAgMBAAGjggObMIIDlzAdBgNVHQ4EFgQU31FHCxXo
wUGvL6hGoowDs4WRurQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MURCN0U5L0U5OUU3RjUyNkUyRTExRUU4NUQ5MkQzMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEQjdFOS9FOTlFN0Y1MjZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi8zMUZIQ3hY
b3dVR3ZMNmhHb293RHM0V1J1clEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQgBAf8ELTAr
oCkwJwICJ34CAwCX+gIDALLbAgMA2ZYCAwIAyAIDAgsoAgMCEQcCAwIgCDCBiAYI
KwYBBQUHAQcBAf8EeTB3MFgEAgABMFIDBAIxABwwDAMEAsoCBAMEBMoCAAMEAMoO
2AMEAcok4AMEBMolAAMEAcolKgMEA8oxAAMEAMoyWjAMAwQEyjLQAwQCyjLYAwQA
yjL8AwQBy7CaMBsEAgACMBUDBQAkAwoAAwUAJARJAAMFACQFJgAwDQYJKoZIhvcN
AQELBQADggEBAFSt8MFJXkGD+LqtxOamWspj7E9bCBZon8Qe2NOELm+Mo55eWo4V
5RH+ap1hhgTGzE9kS69yWjDj5kYwIs7se+G8wyeZWOsrNF0HgUB6J9ZN+38JmynW
QuF2RxUESFwEV37QapfS5RX8tNBuer3JsxKik05LIFBwWt+LOWnEQojTR3ziickn
kxRxFiTKINUhPNV2GlcoVDbZkQo01Yd0kxUt9tZRThCgmT5u1IafbO9xgrgc9BSQ
YdEfxfRV75xlgL7LeqLxHuXDtIHsr3piLLaO/so/pah3oyNCsOAAAZH+LQ8SBphs
mtgHoRiOdkAP9Zjdkt2jNTkrf3Syy+TZ/hU=
-----END CERTIFICATE-----
Generated at Wed May 13 03:57:48 2026 by rpki-client