Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/haeIySXAhvfi-8AHHZ6SmOwCPlk.cer
File: haeIySXAhvfi-8AHHZ6SmOwCPlk.cer (raw, json)
Hash identifier: g3HYRTr7ZPLSadcJt7W/NTvvlGGy8try+CcipFpFG7Y=
Subject key identifier: 85:A7:88:C9:25:C0:86:F7:E2:FB:C0:07:1D:9E:92:98:EC:02:3E:59
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B1FE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9163FDD/3F48B0B447B511F1A32F452AAB833773/haeIySXAhvfi-8AHHZ6SmOwCPlk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9163FDD/3F48B0B447B511F1A32F452AAB833773/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 May 2026 12:32:04 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 154638
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 20 May 2026 01:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176638 (0x2b1fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 4 12:32:04 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A9163FDD, serialNumber=85A788C925C086F7E2FBC0071D9E9298EC023E59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:93:83:c9:4c:0f:17:4b:57:7f:63:27:66:f8:
5a:37:00:f4:c4:09:69:9b:cd:89:92:7c:92:11:d1:
ec:f2:99:17:6c:30:dd:ef:20:16:f1:76:29:46:07:
d7:88:54:dc:49:5f:a8:21:4b:cd:35:17:d3:8f:ce:
85:fe:89:3a:34:13:1a:ff:44:7b:45:5d:7e:d6:75:
a0:c0:cc:9f:e1:ef:50:f7:02:da:f0:db:8e:a7:ae:
26:22:f5:b5:ee:aa:78:9c:62:9b:d8:e3:df:bf:0d:
a4:03:36:b8:0c:ee:00:48:8f:c0:d2:0f:fa:f1:6b:
21:5e:de:8c:98:83:da:59:f2:41:15:1a:15:fd:b3:
79:59:b8:d8:f3:67:13:1b:9c:a7:51:d2:87:80:2e:
4a:16:57:6c:f4:43:d4:fd:5c:9e:16:91:41:85:13:
5e:fc:4d:02:13:3b:bb:c0:d9:45:db:88:73:d2:ca:
ee:58:5d:2c:fc:3e:eb:62:83:93:0e:0d:8f:00:df:
f9:02:70:bd:a0:aa:4a:c0:8b:ba:78:f5:9f:d7:01:
02:d5:45:0c:3c:35:80:a8:7e:2f:7c:0a:80:1e:9f:
b7:ab:13:46:84:b5:f7:78:71:54:99:10:b1:a5:0f:
a8:23:53:bb:b1:97:33:af:78:08:08:c7:4c:76:5b:
f2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:A7:88:C9:25:C0:86:F7:E2:FB:C0:07:1D:9E:92:98:EC:02:3E:59
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9163FDD/3F48B0B447B511F1A32F452AAB833773/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9163FDD/3F48B0B447B511F1A32F452AAB833773/haeIySXAhvfi-8AHHZ6SmOwCPlk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
154638
Signature Algorithm: sha256WithRSAEncryption
87:ad:50:ef:56:b4:6e:89:58:d3:d5:ad:69:a4:64:42:24:56:
20:8a:c6:b7:7f:81:9a:cc:5a:7d:b7:e5:84:45:f8:46:a2:13:
c1:65:f4:8f:ad:d3:56:8c:e1:f8:8c:58:af:c4:6d:a5:7a:1f:
37:f1:62:f7:af:f1:cb:1a:9d:27:13:a1:ab:bd:aa:52:12:0c:
c8:74:d1:ed:02:e9:d3:59:dd:c7:33:61:1a:2c:62:32:ab:8d:
73:9c:8b:8e:f4:e7:fe:90:aa:68:1e:8d:74:1c:96:1b:db:d9:
07:35:3e:d6:a7:ad:2f:c0:a7:75:f9:29:c6:aa:78:a8:f7:5a:
7b:0a:00:79:c1:29:a9:95:e2:75:ac:eb:2b:de:9f:04:2f:6b:
95:d9:d6:67:3c:1d:cc:f0:77:4b:08:2e:2f:6a:62:8d:74:e5:
25:26:d3:b5:a3:26:3d:02:da:00:9b:cd:66:d4:96:d5:a4:ca:
5f:0f:30:e4:57:37:95:6c:18:09:e8:02:f5:7e:f5:1c:3a:68:
c0:65:ed:e9:8b:d0:05:0f:13:66:53:22:ea:1a:59:19:a4:47:
65:79:c0:12:a2:98:83:01:6c:1e:9f:09:04:7a:11:e9:a1:4e:
3c:18:4d:4e:d8:ac:b2:d5:77:36:dd:9d:a3:f6:2a:38:5b:25:
fb:09:2f:b5
-----BEGIN CERTIFICATE-----
MIIF+TCCBOGgAwIBAgIDArH+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDUwNDEyMzIwNFoXDTI3MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjNGREQxMTAvBgNVBAUTKDg1QTc4OEM5MjVDMDg2RjdFMkZCQzAw
NzFEOUU5Mjk4RUMwMjNFNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCzk4PJTA8XS1d/Yydm+Fo3APTECWmbzYmSfJIR0ezymRdsMN3vIBbxdilGB9eI
VNxJX6ghS801F9OPzoX+iTo0Exr/RHtFXX7WdaDAzJ/h71D3Atrw246nriYi9bXu
qnicYpvY49+/DaQDNrgM7gBIj8DSD/rxayFe3oyYg9pZ8kEVGhX9s3lZuNjzZxMb
nKdR0oeALkoWV2z0Q9T9XJ4WkUGFE178TQITO7vA2UXbiHPSyu5YXSz8Putig5MO
DY8A3/kCcL2gqkrAi7p49Z/XAQLVRQw8NYCofi98CoAen7erE0aEtfd4cVSZELGl
D6gjU7uxlzOveAgIx0x2W/LnAgMBAAGjggLuMIIC6jAdBgNVHQ4EFgQUhaeIySXA
hvfi+8AHHZ6SmOwCPlkwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTYzRkRELzNGNDhCMEI0NDdCNTExRjFBMzJGNDUyQUFCODMzNzczLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2M0ZERC8zRjQ4QjBCNDQ3QjUxMUYxQTMyRjQ1MkFBQjgzMzc3My9oYWVJeVNY
QWh2ZmktOEFISFo2U21Pd0NQbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlwOMA0GCSqGSIb3DQEBCwUAA4IBAQCHrVDvVrRuiVjT1a1ppGRCJFYg
isa3f4GazFp9t+WERfhGohPBZfSPrdNWjOH4jFivxG2leh838WL3r/HLGp0nE6Gr
vapSEgzIdNHtAunTWd3HM2EaLGIyq41znIuO9Of+kKpoHo10HJYb29kHNT7Wp60v
wKd1+SnGqnio91p7CgB5wSmpleJ1rOsr3p8EL2uV2dZnPB3M8HdLCC4vamKNdOUl
JtO1oyY9AtoAm81m1JbVpMpfDzDkVzeVbBgJ6AL1fvUcOmjAZe3pi9AFDxNmUyLq
GlkZpEdlecASopiDAWwenwkEehHpoU48GE1O2Kyy1Xc23Z2j9io4WyX7CS+1
-----END CERTIFICATE-----
Generated at Wed May 13 03:59:39 2026 by rpki-client