Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer
File: hrKx0eeCRIuE9pgY8WofcHtUyGw.cer (raw, json)
Hash identifier: hQ877wnmg7waOIYVUX3rBEr2yfAU7XQtoOt0fA0C5UE=
Subject key identifier: 86:B2:B1:D1:E7:82:44:8B:84:F6:98:18:F1:6A:1F:70:7B:54:C8:6C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B00A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Apr 2026 22:01:39 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 138675
IP: 103.136.104.0/22
IP: 2404:90c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 20 May 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176138 (0x2b00a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 28 22:01:39 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A91EC979, serialNumber=86B2B1D1E782448B84F69818F16A1F707B54C86C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:8f:de:da:bd:05:a3:f8:f5:7a:40:78:33:c8:
1b:e3:aa:47:03:65:51:de:bf:68:18:e8:47:9b:81:
c0:fe:70:a6:4d:01:77:80:40:69:63:a7:b0:a4:98:
10:ab:ba:a8:7c:33:e8:d2:e7:e6:ad:6b:57:a5:7f:
98:d8:cb:03:57:97:6c:cb:86:aa:f1:ed:89:c9:b5:
83:7c:5d:1b:c2:6f:3b:4b:6b:d2:70:67:77:bf:e5:
1a:e6:d2:b5:50:de:55:6d:11:b6:91:48:f6:a4:90:
db:76:52:a8:d8:ae:46:cf:c4:d8:a4:38:97:6f:89:
9f:e9:9d:aa:53:93:7d:a0:32:bb:56:6d:b4:14:83:
35:41:9e:38:b3:fd:0f:69:de:8e:8b:8e:fd:6a:33:
0c:0d:ea:a0:24:64:7e:ea:18:81:df:ed:67:1c:b8:
95:b8:63:70:39:56:43:14:97:ee:31:9e:67:f1:43:
52:83:c2:ac:5f:c8:ab:f6:8a:f3:ee:21:2b:95:ee:
74:03:bc:36:84:88:d7:db:41:db:60:51:30:aa:11:
2d:4e:74:61:09:6c:53:61:15:43:c1:c4:0f:a3:d8:
6f:85:bc:50:6b:4a:58:f6:8f:de:2d:8e:97:6c:ca:
1c:a8:a7:b4:12:f8:c9:d4:5e:2c:89:4c:24:be:58:
9c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B2:B1:D1:E7:82:44:8B:84:F6:98:18:F1:6A:1F:70:7B:54:C8:6C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138675
sbgp-ipAddrBlock: critical
IPv4:
103.136.104.0/22
IPv6:
2404:90c0::/32
Signature Algorithm: sha256WithRSAEncryption
27:52:3d:ce:ec:a8:57:4d:51:26:4a:c4:95:de:70:ac:57:c1:
15:e4:6f:17:12:60:f1:45:f8:b8:52:b7:b8:2a:b5:eb:c8:f1:
ce:c7:b8:75:41:55:0d:ef:59:47:90:38:17:ad:c9:e6:39:f9:
53:50:3c:67:80:10:42:a5:c1:f8:cd:fc:fe:67:4c:0d:4d:b5:
5c:48:7b:63:7d:ed:3e:ef:d8:bd:a5:5a:eb:0c:89:74:37:93:
c9:72:09:88:0a:8f:89:e9:99:0d:ea:a4:fb:a6:1c:f6:b8:b5:
80:93:8a:cb:b3:47:59:87:5c:11:c0:a6:a4:e6:fb:7c:ae:3f:
af:07:84:36:a6:14:0b:95:cc:88:ac:51:a8:9f:70:62:34:24:
f0:99:63:ad:1d:99:1c:31:da:db:4c:a5:26:e1:26:0a:4f:3b:
0d:22:65:cb:83:b0:e1:60:ec:31:08:55:9b:ca:a3:0c:1d:33:
8e:1f:4f:25:ac:78:22:cc:3e:28:be:6a:58:c8:ae:49:6f:96:
da:6e:85:9f:5f:87:cf:ab:b2:2c:25:1e:a5:73:a2:22:53:33:
a5:77:4d:47:dd:d2:17:9f:64:35:51:3a:75:5b:fa:ea:ae:67:
cf:55:93:27:4e:f7:c5:3f:77:77:41:58:de:e4:1b:ae:10:5d:
5f:2e:4b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:40:52 2026 by rpki-client