Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer
File: iZOTjIV1ACgOj15T3As-kweu1Kc.cer (raw, json)
Hash identifier: iGlNQ1ORhWO/f34Cis0VvBBcam8jsQzP14HGWrUOq5s=
Subject key identifier: 89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A493
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 16 Mar 2026 14:10:01 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 140211
IP: 203.28.46.0/23
IP: 2001:df2:d880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 04 Apr 2026 06:24:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173203 (0x2a493)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 16 14:10:01 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91BD3E1, serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:78:5a:97:6b:2a:cc:29:3a:bb:16:f0:9c:97:
22:b3:c3:ff:c2:c3:31:bc:0d:68:93:8d:e0:c6:48:
0d:53:db:a3:94:4b:0f:f5:83:bc:32:ad:07:9b:69:
65:9e:96:c5:68:e0:7b:26:71:c9:96:11:29:5a:5a:
3b:51:04:ff:8f:e7:17:73:4a:a5:28:ad:64:ca:8b:
c3:35:86:b5:c3:d2:a7:a6:5c:77:bb:de:b1:a2:7f:
3c:2c:23:34:75:64:e0:56:9c:0c:56:f1:f6:5c:32:
e2:3e:c5:3c:05:d7:b8:33:fe:a7:ec:56:6b:57:d4:
6b:92:87:d2:2b:12:19:1c:ac:03:e0:01:cd:6d:5f:
a8:c1:2b:d7:34:1b:93:be:21:3b:aa:19:19:4c:1f:
3f:26:69:62:3d:8b:f4:0a:ea:bd:74:06:c5:ed:64:
b1:b6:ca:5c:ca:82:69:57:45:55:04:ed:7c:46:08:
34:c5:d0:d0:88:9e:77:73:a6:45:0f:3e:6d:d6:4b:
82:d3:52:f0:61:d6:e6:f8:2e:5e:c6:b2:3a:e3:eb:
90:f6:d4:f2:87:8b:35:0e:69:68:0a:a2:b0:03:54:
2d:bc:f6:d8:00:f9:cb:6d:ba:9c:ab:df:6f:e1:cb:
2a:8b:b3:e8:0a:c4:7c:59:e2:12:6c:fa:d9:87:59:
0c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140211
sbgp-ipAddrBlock: critical
IPv4:
203.28.46.0/23
IPv6:
2001:df2:d880::/48
Signature Algorithm: sha256WithRSAEncryption
43:89:69:8f:2c:c7:01:1b:22:30:61:51:ad:91:b3:93:9b:11:
04:73:6b:01:f8:c1:f5:6a:90:58:fe:2f:fa:fb:01:a6:69:2a:
21:00:43:40:61:73:a6:df:bb:71:2b:c1:8a:c0:b7:96:ca:ed:
ee:cf:0a:7d:ab:d7:0a:5f:e0:a0:f5:30:16:58:76:e5:b6:37:
a6:a8:cc:78:dd:f7:3a:9d:99:69:a1:c8:dc:9c:49:c5:37:bc:
50:9b:0d:01:67:82:37:1f:59:91:f8:cd:58:d7:86:96:ef:bd:
71:66:53:8a:1d:14:59:2c:81:d8:57:3c:8c:d3:96:7c:f3:5b:
3a:b4:24:d4:2c:a9:5b:77:8b:4b:ca:6e:8e:5a:64:90:f9:ad:
84:cf:c0:82:bc:ca:66:f3:2a:a6:d3:16:64:d3:5d:c6:fb:89:
d0:4b:d0:6f:5a:7b:9d:76:29:b9:7a:da:bb:ae:ba:c6:cd:ab:
26:9b:70:26:dc:88:ca:82:38:4d:15:56:96:45:7d:3a:74:7b:
55:4a:6a:bc:9b:c4:c2:3e:b4:59:08:a7:e9:dd:c9:0e:3b:06:
3b:a4:63:60:ff:1d:b4:68:19:43:5c:55:c4:93:75:65:3e:de:
d7:28:a7:78:b6:6e:97:15:d0:44:0e:99:90:5a:bf:7b:0f:2f:
1e:8c:68:1d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Mar 28 10:37:16 2026 by rpki-client