Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAJQ9jg2-0wvI_SH1xS_MvdZpbU.cer
File: YAJQ9jg2-0wvI_SH1xS_MvdZpbU.cer (raw, json)
Hash identifier: M/XFDspDljuS9FNQeexxXOVRlxL+v/7vgJtZ5vnDT0w=
Subject key identifier: 60:02:50:F6:38:36:FB:4C:2F:23:F4:87:D7:14:BF:32:F7:59:A5:B5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A150
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917799C/35EBD8E8554411F09342AC0CC4F9AE02/YAJQ9jg2-0wvI_SH1xS_MvdZpbU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917799C/35EBD8E8554411F09342AC0CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Mar 2026 13:43:46 +0000
Certificate not after: Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources: AS: 141684
AS: 151496
IP: 103.161.252.0/24
IP: 2001:df5:db80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 05:36:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172368 (0x2a150)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 2 13:43:46 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=A917799C, serialNumber=600250F63836FB4C2F23F487D714BF32F759A5B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:dd:c1:d3:d7:27:40:61:b4:af:50:3c:8c:bd:
64:16:75:ba:50:15:cc:7e:06:a3:ac:38:ff:de:27:
c4:80:13:f7:ce:8d:9f:89:d4:84:e6:67:a3:1c:a8:
de:fd:21:5a:c9:ad:88:0e:e9:3e:7c:67:77:cd:07:
d4:e4:6b:e7:b3:d6:7a:64:c0:4f:4d:cb:d6:00:13:
89:9d:2a:ec:14:aa:33:60:16:76:b4:af:06:95:70:
a7:57:a7:5f:6e:39:2c:85:0a:cc:0e:ca:37:4e:b8:
45:05:82:29:5d:e9:5c:d1:86:cd:e9:1e:ab:81:25:
d2:71:34:34:aa:3c:e1:b4:8f:56:75:31:9c:91:d7:
6d:44:4b:12:e1:c0:4c:78:70:4d:cf:92:35:de:40:
2a:0e:40:85:b4:27:1d:c1:ef:cc:e5:9b:ee:9a:97:
8b:81:4c:db:6d:77:bc:51:93:22:b9:87:c1:7d:d4:
8a:6d:ed:14:19:38:5b:bf:f9:50:a0:bb:81:51:23:
05:7c:1e:04:17:8b:6e:c8:1e:ad:c1:11:66:a3:8d:
4e:eb:ea:fe:25:da:c2:35:80:33:5c:f5:86:83:7f:
29:12:cf:f9:67:1d:9b:c7:51:b1:30:c5:b2:9c:fc:
8f:12:62:ab:af:65:87:82:63:53:58:7a:30:b3:f7:
c7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:02:50:F6:38:36:FB:4C:2F:23:F4:87:D7:14:BF:32:F7:59:A5:B5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917799C/35EBD8E8554411F09342AC0CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917799C/35EBD8E8554411F09342AC0CC4F9AE02/YAJQ9jg2-0wvI_SH1xS_MvdZpbU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141684
151496
sbgp-ipAddrBlock: critical
IPv4:
103.161.252.0/24
IPv6:
2001:df5:db80::/48
Signature Algorithm: sha256WithRSAEncryption
18:3e:2c:63:2b:c2:70:4d:bf:bd:36:c4:e5:75:b6:e8:90:4b:
55:15:f4:a6:18:ef:85:eb:80:94:ab:57:f4:ce:47:0f:58:66:
06:9d:a9:0f:25:34:43:ba:93:36:c6:27:92:84:f4:dc:20:3c:
75:ac:4a:7c:28:8e:8b:00:02:ab:5e:d5:5e:50:2e:3c:7a:24:
89:41:ea:35:f2:93:dd:04:f8:fa:d4:e3:81:b4:63:a5:f3:80:
18:db:eb:c6:a0:54:58:a5:53:88:2f:34:03:f2:6c:ef:38:08:
f3:f1:ef:97:60:4e:dc:63:9c:63:7a:ac:7a:12:0b:40:24:f3:
d5:4f:36:3a:d6:f7:d3:87:c4:dc:23:e3:9c:af:7a:02:0d:41:
d0:28:bb:a2:0e:10:a0:01:d9:56:34:58:ad:e2:ca:5d:5d:97:
f6:a2:06:bd:e2:c6:16:f9:c4:c4:11:d8:c6:fa:c3:99:7f:95:
13:5f:95:95:cb:96:ea:a1:33:92:6d:f2:1f:c7:e0:3e:c4:cb:
52:2b:d8:a6:01:df:80:9b:38:ad:97:ca:0e:2b:5f:9b:66:e6:
24:01:70:b1:06:8a:e1:ce:aa:56:5d:33:1c:08:b1:c3:73:10:
96:c4:e9:6f:80:1f:48:4d:f6:de:f2:ca:55:8d:84:92:9e:25:
8c:83:06:20
-----BEGIN CERTIFICATE-----
MIIGMDCCBRigAwIBAgIDAqFQMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDMwMjEzNDM0NloXDTI3MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzc5OUMxMTAvBgNVBAUTKDYwMDI1MEY2MzgzNkZCNEMyRjIzRjQ4
N0Q3MTRCRjMyRjc1OUE1QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDX3cHT1ydAYbSvUDyMvWQWdbpQFcx+BqOsOP/eJ8SAE/fOjZ+J1ITmZ6McqN79
IVrJrYgO6T58Z3fNB9Tka+ez1npkwE9Ny9YAE4mdKuwUqjNgFna0rwaVcKdXp19u
OSyFCswOyjdOuEUFgild6VzRhs3pHquBJdJxNDSqPOG0j1Z1MZyR121ESxLhwEx4
cE3PkjXeQCoOQIW0Jx3B78zlm+6al4uBTNttd7xRkyK5h8F91Ipt7RQZOFu/+VCg
u4FRIwV8HgQXi27IHq3BEWajjU7r6v4l2sI1gDNc9YaDfykSz/lnHZvHUbEwxbKc
/I8SYquvZYeCY1NYejCz98dzAgMBAAGjggMlMIIDITAdBgNVHQ4EFgQUYAJQ9jg2
+0wvI/SH1xS/MvdZpbUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc3OTlDLzM1RUJEOEU4NTU0NDExRjA5MzQyQUMwQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3Nzk5Qy8zNUVCRDhFODU1NDQxMUYwOTM0MkFDMENDNEY5QUUwMi9ZQUpROWpn
Mi0wd3ZJX1NIMXhTX012ZFpwYlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDAil0AgMCT8gwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYDBABnofww
DwQCAAIwCQMHACABDfXbgDANBgkqhkiG9w0BAQsFAAOCAQEAGD4sYyvCcE2/vTbE
5XW26JBLVRX0phjvheuAlKtX9M5HD1hmBp2pDyU0Q7qTNsYnkoT03CA8daxKfCiO
iwACq17VXlAuPHokiUHqNfKT3QT4+tTjgbRjpfOAGNvrxqBUWKVTiC80A/Js7zgI
8/Hvl2BO3GOcY3qsehILQCTz1U82Otb304fE3CPjnK96Ag1B0Ci7og4QoAHZVjRY
reLKXV2X9qIGveLGFvnExBHYxvrDmX+VE1+VlcuW6qEzkm3yH8fgPsTLUivYpgHf
gJs4rZfKDitfm2bmJAFwsQaK4c6qVl0zHAixw3MQlsTpb4AfSE323vLKVY2Ekp4l
jIMGIA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:00:01 2026 by rpki-client