Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul7VMWmBpQvcAqxb08Wv1BFhSX8.cer
File: Ul7VMWmBpQvcAqxb08Wv1BFhSX8.cer (raw, json)
Hash identifier: GVzYsbjIPxq6TpmltyFFso3n/YegAmAV+IiWrFVlfnQ=
Subject key identifier: 52:5E:D5:31:69:81:A5:0B:DC:02:AC:5B:D3:C5:AF:D4:11:61:49:7F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02AF73
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9159558/36EC8B4E42D211F1B6F10C74C7833773/Ul7VMWmBpQvcAqxb08Wv1BFhSX8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9159558/36EC8B4E42D211F1B6F10C74C7833773/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Apr 2026 07:16:50 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: IP: 150.203.0.0/16
IP: 203.0.19.0/24
IP: 203.10.57.0/24
IP: 203.62.0.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 20 May 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175987 (0x2af73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 28 07:16:50 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A9159558, serialNumber=525ED5316981A50BDC02AC5BD3C5AFD41161497F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2b:09:5c:b7:34:06:93:b7:3a:0e:af:c4:9a:
06:c8:82:72:cf:13:c9:85:54:ca:bb:ab:43:07:49:
38:bb:84:15:7a:82:b0:85:a3:3d:c0:80:8c:71:f8:
52:a1:97:aa:07:15:03:e1:2a:7d:d1:5e:ca:29:0d:
11:cf:67:a8:8e:5d:c7:0a:ea:5f:a4:f3:1a:ab:b3:
76:6d:c1:78:85:6a:73:7e:37:15:5d:67:6f:0d:42:
e8:46:75:df:5f:f6:29:83:42:8d:c4:76:7e:df:6e:
07:e3:be:d0:67:6c:7f:2b:9f:b0:8c:96:17:ca:c0:
74:6b:4b:cf:53:e1:88:f0:3b:e2:99:5e:fd:0c:71:
f0:ab:62:8d:98:18:e1:6a:e4:e0:29:b7:01:83:61:
4c:84:b3:e9:bc:70:e9:8b:52:45:e5:3e:f8:55:85:
3b:d9:13:9b:97:bc:15:ee:d1:49:62:08:49:48:ca:
49:d7:16:53:04:2d:59:36:d2:2f:29:a2:43:f7:28:
7a:8e:c3:dc:ef:49:83:b2:f7:0a:55:00:3f:1f:9f:
7e:ad:65:36:d7:8c:ab:44:05:29:0d:4f:89:01:79:
f6:15:c5:9e:38:87:55:a1:72:1d:8b:81:72:0f:6e:
0e:39:24:42:80:e9:13:79:b5:29:10:e6:56:78:0f:
27:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5E:D5:31:69:81:A5:0B:DC:02:AC:5B:D3:C5:AF:D4:11:61:49:7F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9159558/36EC8B4E42D211F1B6F10C74C7833773/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9159558/36EC8B4E42D211F1B6F10C74C7833773/Ul7VMWmBpQvcAqxb08Wv1BFhSX8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
150.203.0.0/16
203.0.19.0/24
203.10.57.0/24
203.62.0.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:86:af:42:a0:9f:e9:94:8d:88:a1:3b:3d:fb:d3:68:84:69:
35:37:07:2c:2d:c4:65:c1:2f:59:31:42:a9:c8:f5:f4:3c:b7:
8b:4b:f0:68:7c:bf:ae:9f:e8:05:e4:e7:d8:05:e8:de:e7:90:
29:a1:a1:da:e2:7f:22:40:98:10:71:12:c5:c2:2c:64:79:bf:
70:59:92:b8:07:30:d9:d3:e9:96:84:72:c8:e5:c5:e1:29:2b:
5f:a6:5e:ce:17:b2:a5:fb:3d:1f:a1:df:39:ab:2b:16:36:0d:
b6:ae:ab:d7:99:74:01:29:18:21:a4:17:dd:3d:05:d8:fb:c5:
88:08:83:01:9b:5b:13:52:cd:5a:e0:54:7f:1a:12:0c:44:ab:
e5:eb:66:a4:20:bd:d3:93:ac:16:35:2b:dd:fc:4f:b6:8f:32:
78:9c:ce:8e:38:6d:c9:93:bb:e6:05:36:d1:1a:fb:84:c0:5e:
57:49:26:3e:4d:98:8f:d5:dc:cf:b0:8a:f2:1a:79:80:8f:4e:
91:90:3b:aa:a2:55:4d:3d:94:f5:d0:e1:62:ef:46:69:83:63:
8a:6c:ad:8b:fa:2f:76:0f:22:93:39:ea:19:61:be:c8:f0:a2:
be:20:8d:59:38:96:d7:30:e8:0e:09:41:ce:2f:3e:4c:28:da:
4b:83:ed:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:37:49 2026 by rpki-client