Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer
File: rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer (raw, json)
Hash identifier: f+losHEi/g86MZaEuc5hC4FAvWg2RfMez93w39TejX8=
Subject key identifier: AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A3CB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Mar 2026 13:56:26 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: AS: 146958
AS: 149485
IP: 103.181.0.0/23
IP: 2400:56a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 12:24:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173003 (0x2a3cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 11 13:56:26 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A91A83B4, serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:45:87:e3:29:9c:43:e1:24:38:ab:d7:67:cb:
95:e8:f8:c6:ee:f9:c2:28:eb:59:42:0c:92:bc:0c:
d0:e9:be:24:99:66:01:64:9b:24:1b:6e:72:a4:e4:
53:95:22:24:5d:fd:f5:65:2f:6e:e3:13:83:69:da:
f1:5f:f5:37:78:82:db:c2:52:40:8c:c9:5d:93:db:
06:61:3d:ce:61:48:dd:92:c7:f7:eb:92:eb:ee:51:
c2:6f:5f:da:fc:7b:43:5e:83:02:6f:81:ba:81:1b:
64:81:e1:9e:86:47:8b:9d:27:e8:c7:75:cc:61:8f:
c4:58:37:a8:46:06:49:75:2b:c2:c4:b0:70:1c:c7:
66:24:82:ca:68:ba:94:f6:46:e2:9d:11:c6:1e:3c:
2f:f6:db:a0:37:75:83:ee:2a:99:90:4f:c9:04:fe:
2a:4b:b9:d7:b6:db:1e:d0:e2:02:18:ee:5a:1c:e4:
06:c0:96:94:43:d6:fb:f0:4b:28:ec:25:f7:76:61:
00:5b:03:00:19:e6:1a:88:79:77:1e:60:0a:63:57:
bc:d4:75:29:bf:b1:55:28:7e:66:25:d4:61:84:e7:
e6:07:23:82:03:07:75:4d:d0:47:6e:95:76:9a:80:
74:9e:c8:60:f6:51:03:13:a8:9b:3c:55:35:a3:63:
39:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
146958
149485
sbgp-ipAddrBlock: critical
IPv4:
103.181.0.0/23
IPv6:
2400:56a0::/32
Signature Algorithm: sha256WithRSAEncryption
0d:6c:5a:17:fb:1f:4c:e7:19:8f:80:cc:25:06:a6:2c:db:ac:
6a:0a:8b:9f:4d:ff:36:55:8f:d8:f9:16:fc:5a:4c:b4:89:d0:
8a:4f:21:9c:b7:1c:66:31:ae:c2:58:f9:f3:64:a1:8d:42:6d:
d9:36:9d:52:4a:54:00:e4:72:42:45:19:cb:2f:2d:b2:8c:55:
ae:29:d0:0c:6e:c1:05:d0:6f:00:b2:7d:d2:65:02:c8:66:3d:
a4:c7:e6:ca:00:cd:17:53:36:f0:7d:4a:48:15:a5:cb:e8:a2:
3e:14:60:3d:88:ce:b4:41:39:b3:3c:4b:ff:73:b8:0c:ef:d8:
c2:d4:10:15:2c:2e:bd:7a:56:55:f6:16:a9:c1:f2:fc:59:8f:
8f:9a:b2:46:fc:4c:1f:c9:7e:eb:55:92:f0:ee:bb:2a:15:15:
a0:f2:5f:e8:78:70:bb:4e:47:35:1b:19:2a:19:00:14:cc:22:
ff:c1:e8:ed:af:95:af:80:08:b7:60:0f:69:1e:54:eb:b1:76:
96:0a:84:16:12:42:c1:60:ff:2c:27:0e:37:43:f6:49:46:02:
07:65:f2:aa:2d:f7:3d:9d:3d:9d:27:aa:1c:4a:30:3c:15:72:
27:9b:ed:8e:cc:42:85:d8:43:43:94:07:ff:55:50:dd:ce:fc:
fc:f4:18:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:01:49 2026 by rpki-client