Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer
File: HWNBbEc7DAkSvas3ECcBCV_Gw1o.cer (raw, json)
Hash identifier: 7aEQf2b5yuSI2AKp8nEnqhCQLKzoVw4IeSSUoJZKHKc=
Subject key identifier: 1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A531
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Mar 2026 05:59:59 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 153597
IP: 163.61.123.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 14:28:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173361 (0x2a531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 19 05:59:59 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91707D0, serialNumber=1D63416C473B0C0912BDAB37102701095FC6C35A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:06:71:03:15:16:a6:74:9e:e5:db:bd:22:d1:
ab:70:e2:59:ad:1f:93:11:89:02:90:75:a6:4c:24:
62:be:94:32:8e:65:ca:78:85:d9:da:f1:58:24:91:
61:c8:d7:dc:da:60:74:54:60:1c:40:e7:dc:be:7d:
46:16:00:20:f3:ae:8f:0f:78:90:56:ad:0d:4c:19:
99:f3:fa:e6:9d:f9:57:8c:56:23:ea:23:ee:57:f2:
84:60:04:33:23:f0:fc:65:f1:be:57:9e:0f:00:e5:
b2:99:7e:02:91:8c:e7:09:d8:6c:83:5f:0c:fc:ca:
42:65:04:9e:60:25:54:75:80:e2:a6:c8:5c:15:e9:
37:55:72:59:2d:9f:74:de:bc:28:eb:3e:d0:47:37:
fe:66:eb:9e:da:cc:48:63:02:0f:b3:cc:88:a1:d3:
07:1c:9d:52:69:97:12:c3:4f:12:78:58:0b:19:6e:
8e:0b:da:9c:a6:70:b5:ac:1d:89:a4:d8:7b:a7:46:
4b:10:2d:1d:df:2a:44:17:30:cb:e6:4a:d5:77:2b:
1e:a7:aa:be:be:e9:f9:79:ef:3a:f4:f1:3e:e4:6a:
e8:42:b8:04:f8:09:66:7d:0f:52:af:df:b8:4f:54:
3e:d2:1e:a2:8b:5b:db:a0:7f:2c:87:0a:e9:5b:d5:
38:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:63:41:6C:47:3B:0C:09:12:BD:AB:37:10:27:01:09:5F:C6:C3:5A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91707D0/65B68E96007211F0B363DF5EC4F9AE02/HWNBbEc7DAkSvas3ECcBCV_Gw1o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153597
sbgp-ipAddrBlock: critical
IPv4:
163.61.123.0/24
Signature Algorithm: sha256WithRSAEncryption
15:86:ac:71:0b:cd:d0:13:fb:0d:a9:e1:36:44:9e:9a:b5:a9:
60:0c:c0:2b:00:1b:b4:9b:c8:65:70:67:57:5d:be:99:e9:1d:
53:bf:59:04:6c:06:56:28:f0:31:41:4a:2a:13:8a:17:4f:76:
af:36:b1:74:7a:a2:69:60:93:cf:97:51:77:bd:90:82:ee:1a:
74:fc:1c:fe:82:cb:ec:e6:04:1b:ea:f4:21:c5:d0:4a:3c:93:
57:e6:db:95:5c:e4:9a:a2:ec:ef:74:da:05:2a:81:0e:b7:f3:
91:62:32:9b:b0:37:7d:99:e4:3f:e0:67:c4:2a:28:c7:4a:d3:
b3:d2:25:b4:95:4b:ff:b6:0d:e9:5c:39:28:51:42:1f:84:18:
73:75:ce:f0:09:d2:3d:0b:59:85:f7:1a:62:4e:3f:b2:bd:57:
66:4a:1c:86:07:c0:f9:d9:c7:9a:21:00:85:48:83:53:5d:5c:
e5:86:f4:45:e6:b3:f1:d7:1f:0d:29:3e:8d:90:53:99:51:39:
3b:45:0c:1c:2c:a1:db:31:dc:7c:51:5f:92:ae:67:94:2a:55:
c4:32:d9:83:36:39:43:fe:95:58:9f:0e:dd:46:f1:a5:5d:53:
03:a5:27:e5:f8:c0:62:fb:63:38:d9:bb:ce:f8:87:7e:7d:27:
cb:23:6d:fe
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAqUxMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDMxOTA1NTk1OVoXDTI3MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzA3RDAxMTAvBgNVBAUTKDFENjM0MTZDNDczQjBDMDkxMkJEQUIz
NzEwMjcwMTA5NUZDNkMzNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDABnEDFRamdJ7l270i0atw4lmtH5MRiQKQdaZMJGK+lDKOZcp4hdna8VgkkWHI
19zaYHRUYBxA59y+fUYWACDzro8PeJBWrQ1MGZnz+uad+VeMViPqI+5X8oRgBDMj
8Pxl8b5Xng8A5bKZfgKRjOcJ2GyDXwz8ykJlBJ5gJVR1gOKmyFwV6TdVclktn3Te
vCjrPtBHN/5m657azEhjAg+zzIih0wccnVJplxLDTxJ4WAsZbo4L2pymcLWsHYmk
2HunRksQLR3fKkQXMMvmStV3Kx6nqr6+6fl57zr08T7kauhCuAT4CWZ9D1Kv37hP
VD7SHqKLW9ugfyyHCulb1TjHAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUHWNBbEc7
DAkSvas3ECcBCV/Gw1owHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTcwN0QwLzY1QjY4RTk2MDA3MjExRjBCMzYzREY1RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3MDdEMC82NUI2OEU5NjAwNzIxMUYwQjM2M0RGNUVDNEY5QUUwMi9IV05CYkVj
N0RBa1N2YXMzRUNjQkNWX0d3MW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlf9MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoz17MA0GCSqG
SIb3DQEBCwUAA4IBAQAVhqxxC83QE/sNqeE2RJ6atalgDMArABu0m8hlcGdXXb6Z
6R1Tv1kEbAZWKPAxQUoqE4oXT3avNrF0eqJpYJPPl1F3vZCC7hp0/Bz+gsvs5gQb
6vQhxdBKPJNX5tuVXOSaouzvdNoFKoEOt/ORYjKbsDd9meQ/4GfEKijHStOz0iW0
lUv/tg3pXDkoUUIfhBhzdc7wCdI9C1mF9xpiTj+yvVdmShyGB8D52ceaIQCFSINT
XVzlhvRF5rPx1x8NKT6NkFOZUTk7RQwcLKHbMdx8UV+SrmeUKlXEMtmDNjlD/pVY
nw7dRvGlXVMDpSfl+MBi+2M42bvO+Id+fSfLI23+
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:16:52 2026 by rpki-client