Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-5HlDq-E-OFVqc8KBuQ41SSN9w.cer
File: T-5HlDq-E-OFVqc8KBuQ41SSN9w.cer (raw, json)
Hash identifier: QY8ihFHoB131L7PqqmaEnKAoNi3IgmuXSXnyjtzOOX4=
Subject key identifier: 4F:EE:47:94:3A:BE:13:E3:85:56:A7:3C:28:1B:90:E3:54:92:37:DC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A61B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/T-5HlDq-E-OFVqc8KBuQ41SSN9w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Mar 2026 14:13:17 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 133329
IP: 103.163.208.0/23
IP: 2001:df6:2680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 Apr 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173595 (0x2a61b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 24 14:13:17 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91BF4A1, serialNumber=4FEE47943ABE13E38556A73C281B90E3549237DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b9:61:4e:63:0a:4e:86:82:80:d4:c6:7f:22:
eb:34:7d:a5:f3:e2:ba:63:20:20:10:25:ae:41:76:
37:b4:46:b8:53:0b:26:3b:f8:9f:03:d4:18:13:ba:
e7:37:44:3b:6f:f3:b2:98:7a:8e:8b:8b:45:0a:6d:
d2:f8:29:d0:74:3b:48:3e:15:06:70:26:05:81:ab:
20:ff:8b:9e:c8:f2:60:f0:fe:be:b6:f7:fc:8f:3e:
0a:85:0d:d2:8f:70:e8:81:3f:e4:8b:9b:81:3a:3f:
4e:3e:cc:a8:52:37:9b:a1:26:3a:64:6b:ad:99:a4:
87:ba:24:ce:60:fd:d3:b3:36:60:c0:23:63:90:28:
0f:4c:8e:16:49:f6:5f:1f:41:bc:33:cc:74:98:13:
17:24:00:f8:cd:c1:0c:40:ac:9d:46:11:c6:5b:c8:
37:eb:88:e4:a4:ee:ff:57:32:47:2d:4e:1f:9e:ae:
b3:34:ce:82:88:7c:0c:6a:35:49:34:29:98:c8:45:
ce:80:14:70:37:55:0f:9b:7a:ae:65:31:86:c5:7c:
06:0e:be:10:28:1b:8b:92:37:c7:73:b0:d6:ff:2b:
13:f6:ff:fe:8b:c7:43:c2:64:6f:9c:ae:9d:4b:89:
b7:93:7b:4c:e4:2b:a6:1f:76:1e:4e:29:9c:1e:b8:
30:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:EE:47:94:3A:BE:13:E3:85:56:A7:3C:28:1B:90:E3:54:92:37:DC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/T-5HlDq-E-OFVqc8KBuQ41SSN9w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133329
sbgp-ipAddrBlock: critical
IPv4:
103.163.208.0/23
IPv6:
2001:df6:2680::/48
Signature Algorithm: sha256WithRSAEncryption
81:04:a9:f6:c4:9e:cd:ea:56:0c:b9:23:a6:6c:09:d9:e7:bb:
66:17:39:7a:ca:f1:ab:c3:cb:41:8e:34:d5:76:5f:12:5c:5e:
43:1f:0b:3b:85:53:4b:34:29:97:ff:9c:f3:57:e9:6e:67:6d:
22:24:e6:4f:84:43:f7:12:c6:d4:4d:06:15:86:1b:81:3d:6b:
8f:5e:55:ee:30:7a:ac:f6:08:66:c3:3f:c9:07:38:a9:05:b0:
56:92:a0:33:b4:4f:3e:9d:7b:50:83:de:64:46:cc:73:2b:eb:
a5:f0:40:43:c7:23:30:0e:c4:98:48:d2:fb:a7:46:13:dd:e8:
43:51:04:f7:db:e5:87:e3:c5:ab:50:b9:7b:7f:05:1c:b9:10:
09:a0:d1:eb:0a:fc:73:86:cb:9d:28:0b:6a:08:54:79:7e:16:
4b:7c:c1:9b:ad:95:9a:b0:59:4b:10:18:02:99:89:b7:fb:90:
ab:5f:a4:49:4d:03:26:ae:bf:bf:7e:53:5f:29:31:ba:1e:42:
47:82:4f:6e:fd:30:0a:28:10:70:dd:be:3d:ca:2c:61:f0:0a:
15:71:ea:cb:ae:fc:39:f8:44:5d:68:92:7a:76:78:e7:d9:70:
f6:e7:7b:6a:cc:19:13:78:56:08:5e:82:c3:62:9a:3f:ea:22:
42:28:09:2f
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAqYbMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDMyNDE0MTMxN1oXDTI3MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQkY0QTExMTAvBgNVBAUTKDRGRUU0Nzk0M0FCRTEzRTM4NTU2QTcz
QzI4MUI5MEUzNTQ5MjM3REMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCtuWFOYwpOhoKA1MZ/Ius0faXz4rpjICAQJa5Bdje0RrhTCyY7+J8D1BgTuuc3
RDtv87KYeo6Li0UKbdL4KdB0O0g+FQZwJgWBqyD/i57I8mDw/r629/yPPgqFDdKP
cOiBP+SLm4E6P04+zKhSN5uhJjpka62ZpIe6JM5g/dOzNmDAI2OQKA9MjhZJ9l8f
QbwzzHSYExckAPjNwQxArJ1GEcZbyDfriOSk7v9XMkctTh+errM0zoKIfAxqNUk0
KZjIRc6AFHA3VQ+beq5lMYbFfAYOvhAoG4uSN8dzsNb/KxP2//6Lx0PCZG+crp1L
ibeTe0zkK6Yfdh5OKZweuDDxAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUT+5HlDq+
E+OFVqc8KBuQ41SSN9wwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUJGNEExLzBGNTg3QTg4QjFDQzExRUQ4NUYyNUEzREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCRjRBMS8wRjU4N0E4OEIxQ0MxMUVEODVGMjVBM0RDNEY5QUUwMi9ULTVIbERx
LUUtT0ZWcWM4S0J1UTQxU1NOOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgjRMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6PQMA8EAgAC
MAkDBwAgAQ32JoAwDQYJKoZIhvcNAQELBQADggEBAIEEqfbEns3qVgy5I6ZsCdnn
u2YXOXrK8avDy0GONNV2XxJcXkMfCzuFU0s0KZf/nPNX6W5nbSIk5k+EQ/cSxtRN
BhWGG4E9a49eVe4weqz2CGbDP8kHOKkFsFaSoDO0Tz6de1CD3mRGzHMr66XwQEPH
IzAOxJhI0vunRhPd6ENRBPfb5YfjxatQuXt/BRy5EAmg0esK/HOGy50oC2oIVHl+
Fkt8wZutlZqwWUsQGAKZibf7kKtfpElNAyauv79+U18pMboeQkeCT279MAooEHDd
vj3KLGHwChVx6suu/Dn4RF1oknp2eOfZcPbne2rMGRN4VghegsNimj/qIkIoCS8=
-----END CERTIFICATE-----
Generated at Wed Mar 25 23:06:38 2026 by rpki-client