Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1aOvCaxTBKB6BKDd4a1o4vHi4c.cer
File: r1aOvCaxTBKB6BKDd4a1o4vHi4c.cer (raw, json)
Hash identifier: yIen79Q52I6Z8v59MUZG1K1GAcl3NDDToSP6Mrrhngw=
Subject key identifier: AF:56:8E:BC:26:B1:4C:12:81:E8:12:83:77:86:B5:A3:8B:C7:8B:87
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A5F2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9147750/4C7E0FAA272F11F1843252FEAB833773/r1aOvCaxTBKB6BKDd4a1o4vHi4c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9147750/4C7E0FAA272F11F1843252FEAB833773/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Mar 2026 03:12:36 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 132127
IP: 103.13.216.0/23
IP: 103.29.160.0/23
IP: 2001:df0:27d::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 05:36:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173554 (0x2a5f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 24 03:12:36 2026 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A9147750, serialNumber=AF568EBC26B14C1281E812837786B5A38BC78B87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c7:af:0e:3d:ee:d2:c9:13:42:60:e6:63:56:
a1:e7:11:a0:ce:d7:01:9f:00:47:61:e9:d5:97:96:
0b:16:5b:9e:c4:11:df:04:19:88:d2:a2:27:ce:c9:
61:e5:b2:4f:e9:46:b8:09:47:d4:36:1b:85:fd:21:
af:0f:a9:35:37:11:e2:ee:07:c7:18:b1:58:30:a3:
aa:ce:55:a4:16:ca:91:4f:70:22:6c:d7:7b:f0:a4:
24:88:a2:58:e9:aa:06:87:b6:a6:55:43:ec:ef:24:
f4:39:1e:aa:63:27:18:ac:18:30:5e:84:47:26:48:
8a:0e:31:f4:e2:95:bd:fb:b1:dd:93:ae:0a:c9:7d:
dc:50:b6:2f:ff:91:05:41:c9:e3:c7:bb:76:15:20:
4d:1e:c9:1a:6e:e0:6b:19:65:cb:29:1b:05:28:ce:
80:c8:0b:88:59:6d:fc:28:f2:4e:92:dd:9b:dc:33:
48:ca:d1:ba:b6:67:70:b5:79:73:b3:51:02:52:ea:
f5:80:9f:7a:2f:e9:22:5d:24:4b:a0:9c:91:e8:01:
39:74:7e:11:7b:2e:0d:b2:a2:f5:0d:5a:c4:d9:75:
01:b3:32:42:8e:a9:68:29:4c:cb:33:53:6b:18:88:
bc:41:72:bb:f0:33:37:fb:47:64:84:a0:70:7c:de:
ea:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:56:8E:BC:26:B1:4C:12:81:E8:12:83:77:86:B5:A3:8B:C7:8B:87
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9147750/4C7E0FAA272F11F1843252FEAB833773/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9147750/4C7E0FAA272F11F1843252FEAB833773/r1aOvCaxTBKB6BKDd4a1o4vHi4c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132127
sbgp-ipAddrBlock: critical
IPv4:
103.13.216.0/23
103.29.160.0/23
IPv6:
2001:df0:27d::/48
Signature Algorithm: sha256WithRSAEncryption
c9:df:51:ad:e2:6c:71:d3:1e:e1:ba:c9:6d:98:c9:d8:2e:68:
bc:e1:c7:da:0e:bc:a4:b8:d2:4c:27:60:7e:52:4e:03:43:41:
7a:51:df:86:8d:24:d0:1f:14:b0:79:ed:e4:c6:9c:4b:21:1a:
ef:50:a5:ff:a6:05:c9:1b:92:13:20:77:d7:e3:3d:1a:46:c1:
a1:88:e8:b3:3c:df:8a:81:b6:4b:9f:58:6f:ec:d8:14:4b:a2:
1f:a0:ab:83:1a:0e:fb:8e:4e:e3:91:2e:db:05:c6:cf:c6:f1:
dd:fa:16:32:a3:ff:12:92:d7:f0:93:38:16:54:63:68:30:00:
d8:c9:46:ef:8c:30:b2:e3:b7:8b:e9:7e:66:2a:64:a2:77:d1:
a8:27:8d:d4:d1:3c:a1:02:00:f7:57:0d:16:fd:80:bc:c3:d6:
ab:d1:54:7a:79:a1:f9:d7:fc:5a:07:92:87:71:54:2d:5b:93:
90:62:74:bc:90:13:9d:6c:38:5c:8a:52:14:4f:2b:62:b0:a5:
ef:05:17:d7:de:a9:d0:5a:25:4d:30:96:7a:fc:f6:41:24:22:
c5:27:5b:17:c7:70:32:f6:f8:ca:8f:52:93:ca:64:c9:ae:f7:
3b:9f:5f:ae:cf:bc:a6:99:78:f0:45:d9:11:45:6e:db:e6:4d:
2a:30:d4:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:07:14 2026 by rpki-client