Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUZnzujj-e3_kuf7uzf_xmwAc6I.cer
File: rUZnzujj-e3_kuf7uzf_xmwAc6I.cer (raw, json)
Hash identifier: HvMWwWliuKrpLU6lKQhfBIZYTLQeIs44usy9CKxJPRk=
Subject key identifier: AD:46:67:CE:E8:E3:F9:ED:FF:92:E7:FB:BB:37:FF:C6:6C:00:73:A2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B36A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919C0F6/D2BB755AEF4F11EDB5D71F46C4F9AE02/rUZnzujj-e3_kuf7uzf_xmwAc6I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919C0F6/D2BB755AEF4F11EDB5D71F46C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 May 2026 13:53:25 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 58594
IP: 43.250.120.0/22
IP: 103.9.12.0/22
IP: 2401:27c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 23:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177002 (0x2b36a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 8 13:53:25 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A919C0F6, serialNumber=AD4667CEE8E3F9EDFF92E7FBBB37FFC66C0073A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:39:11:f5:10:c3:50:67:d0:8c:49:ce:fc:93:
b6:ac:9e:c4:50:6b:e0:7a:3a:e6:e8:87:c4:ac:b1:
0d:b5:0a:2e:8c:1f:bc:b5:60:13:30:18:4e:1b:6b:
c8:88:d1:39:fc:bd:50:b3:27:37:84:d4:8f:e6:c3:
65:10:f0:b0:2c:2c:7c:2c:56:5b:28:0f:a2:ec:43:
d2:7d:ce:7e:b6:4e:9b:c3:b1:21:f5:24:d3:87:c7:
6b:42:63:96:dc:ba:fb:28:cb:c0:23:8f:d6:6c:fd:
98:1d:7d:8a:a1:1e:4f:10:27:87:c2:45:a9:6e:31:
b6:79:99:6c:28:7b:a1:7b:f3:76:82:e7:61:34:d3:
e1:67:20:f7:eb:ce:45:cb:99:40:d6:ea:d0:b2:dc:
62:63:05:22:bd:2a:ba:c6:30:fa:b2:40:ad:93:0c:
73:7b:ba:3b:fd:a9:28:a5:5e:85:0f:b3:26:6f:fe:
d6:ad:95:69:65:4c:18:4c:24:b6:9b:f2:c0:15:4c:
4f:10:f3:a3:ad:4f:c9:b4:b1:9f:78:b5:6e:32:af:
f3:b5:26:cf:d7:7f:16:96:cc:5f:4d:42:7d:42:0a:
a0:53:df:57:4f:45:f5:e0:fe:c9:ca:ef:86:b0:b0:
77:56:3b:df:61:c6:85:f4:d2:f2:47:ab:0b:a7:44:
59:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:46:67:CE:E8:E3:F9:ED:FF:92:E7:FB:BB:37:FF:C6:6C:00:73:A2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919C0F6/D2BB755AEF4F11EDB5D71F46C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919C0F6/D2BB755AEF4F11EDB5D71F46C4F9AE02/rUZnzujj-e3_kuf7uzf_xmwAc6I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58594
sbgp-ipAddrBlock: critical
IPv4:
43.250.120.0/22
103.9.12.0/22
IPv6:
2401:27c0::/32
Signature Algorithm: sha256WithRSAEncryption
81:69:9e:70:29:c3:5b:3f:3a:c2:ac:d2:a4:fa:f2:74:63:14:
06:5d:1a:85:33:a6:7e:75:74:82:0b:cd:63:bc:2a:47:a4:d3:
a7:f8:a0:6e:70:d1:44:ce:26:60:ba:42:16:dd:a3:af:04:ed:
67:6e:03:9c:3c:d6:92:0a:99:f4:dc:d3:a4:02:74:18:c1:5c:
e5:65:8a:a4:3d:d0:9a:d1:2e:ff:3e:2e:23:f7:8e:e6:0c:a7:
c1:8d:e7:07:01:d9:31:6e:9e:21:7f:17:ae:d3:5c:36:f2:6f:
93:a8:6d:b9:dd:4d:a3:85:e7:b6:d7:56:d7:c7:fb:0e:15:ad:
2c:59:8e:9c:3b:5b:3e:cc:a8:b0:21:57:73:f6:ca:f1:f1:fd:
77:cc:82:19:aa:53:2b:c3:25:36:5f:6f:b9:70:59:bd:1d:9f:
c4:ac:48:f4:9b:65:49:8b:20:df:a6:07:23:e0:83:64:76:8e:
e8:22:56:9d:85:62:87:a7:c8:ba:58:88:34:f1:bf:b2:90:e2:
c5:e8:d6:7a:ce:ee:e4:9d:7b:49:bb:62:8c:48:3c:a7:ef:a2:
64:9f:28:96:f2:0c:37:45:f9:68:1b:34:f1:9c:63:1d:9f:d3:
f8:e0:e4:e0:ba:2a:52:e5:bd:98:1d:3f:aa:0a:13:fe:27:2b:
d0:46:2a:8d
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDArNqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDUwODEzNTMyNVoXDTI3MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOUMwRjYxMTAvBgNVBAUTKEFENDY2N0NFRThFM0Y5RURGRjkyRTdG
QkJCMzdGRkM2NkMwMDczQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDFORH1EMNQZ9CMSc78k7asnsRQa+B6Ouboh8SssQ21Ci6MH7y1YBMwGE4ba8iI
0Tn8vVCzJzeE1I/mw2UQ8LAsLHwsVlsoD6LsQ9J9zn62TpvDsSH1JNOHx2tCY5bc
uvsoy8Ajj9Zs/ZgdfYqhHk8QJ4fCRaluMbZ5mWwoe6F783aC52E00+FnIPfrzkXL
mUDW6tCy3GJjBSK9KrrGMPqyQK2TDHN7ujv9qSilXoUPsyZv/tatlWllTBhMJLab
8sAVTE8Q86OtT8m0sZ94tW4yr/O1Js/XfxaWzF9NQn1CCqBT31dPRfXg/snK74aw
sHdWO99hxoX00vJHqwunRFkVAgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQUrUZnzujj
+e3/kuf7uzf/xmwAc6IwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTlDMEY2L0QyQkI3NTVBRUY0RjExRURCNUQ3MUY0NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5QzBGNi9EMkJCNzU1QUVGNEYxMUVEQjVENzFGNDZDNEY5QUUwMi9yVVpuenVq
ai1lM19rdWY3dXpmX3htd0FjNkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAOTiMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCK/p4AwQCZwkM
MA0EAgACMAcDBQAkASfAMA0GCSqGSIb3DQEBCwUAA4IBAQCBaZ5wKcNbPzrCrNKk
+vJ0YxQGXRqFM6Z+dXSCC81jvCpHpNOn+KBucNFEziZgukIW3aOvBO1nbgOcPNaS
Cpn03NOkAnQYwVzlZYqkPdCa0S7/Pi4j947mDKfBjecHAdkxbp4hfxeu01w28m+T
qG253U2jhee211bXx/sOFa0sWY6cO1s+zKiwIVdz9srx8f13zIIZqlMrwyU2X2+5
cFm9HZ/ErEj0m2VJiyDfpgcj4INkdo7oIladhWKHp8i6WIg08b+ykOLF6NZ6zu7k
nXtJu2KMSDyn76JknyiW8gw3RfloGzTxnGMdn9P44OTguipS5b2YHT+qChP+JyvQ
RiqN
-----END CERTIFICATE-----
Generated at Wed May 13 02:54:23 2026 by rpki-client