Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer
File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer (raw, json)
Hash identifier: QOuZYKYT1m3NBQdKVT2S4BYj10PS+rnOBebnPsQLio8=
Subject key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B71B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 May 2026 13:29:28 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 135163
IP: 103.186.156.0/24
IP: 2001:df0:ab40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 14:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177947 (0x2b71b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 26 13:29:28 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:3f:46:b2:1d:31:fd:0c:4f:54:37:b8:e5:c1:
9e:37:56:eb:bb:3d:cb:c8:27:4e:81:0e:4c:2c:71:
ed:91:e6:5d:0f:bf:cb:7b:43:88:06:af:ab:2d:f7:
ab:68:a6:8d:1e:ec:cd:fb:52:83:1e:81:92:35:d4:
1f:83:94:2a:a3:3c:80:fd:20:36:04:67:5a:8a:ad:
fb:f6:33:ef:36:5c:b2:86:70:4a:f9:ba:13:7e:00:
15:55:47:35:0b:ee:77:6a:f6:20:f9:eb:81:b3:e3:
84:d9:6c:ae:6d:0d:60:99:88:fc:d5:c5:e5:52:c6:
f8:fd:d9:42:ec:a8:b3:ac:5c:27:82:54:83:e7:fe:
b9:4e:bf:c7:5c:6a:08:1b:ba:19:d8:38:cf:9c:f0:
d0:62:fb:1e:e9:8a:e0:5b:b3:ba:31:16:7c:a1:63:
a3:53:64:2e:5c:54:7a:47:0c:fd:9e:1f:65:0a:7c:
8d:2c:90:4b:1b:ad:a1:55:a5:52:85:72:c0:f9:50:
e1:ef:fe:b4:15:43:12:41:0b:b4:83:ed:4b:04:93:
ff:93:67:13:ed:77:e5:ef:5d:bf:4a:80:8a:5d:b7:
a6:5d:44:b2:78:3f:c3:e7:1d:76:f4:66:27:4a:69:
a8:29:81:a1:e4:9c:2c:03:55:40:f4:0f:77:36:e2:
e8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135163
sbgp-ipAddrBlock: critical
IPv4:
103.186.156.0/24
IPv6:
2001:df0:ab40::/48
Signature Algorithm: sha256WithRSAEncryption
05:1c:8c:2b:39:99:48:bf:01:11:1e:b7:4a:f4:bf:05:c0:6c:
c1:4a:65:65:93:ac:8f:a7:5c:d8:80:af:7c:fb:9c:36:54:b1:
3b:ae:c3:57:34:65:ab:0f:6d:20:e1:23:f3:ca:50:7d:7b:ff:
d0:39:d6:90:17:9a:af:c4:1e:1b:79:e5:df:3f:1b:5d:7b:91:
93:d4:d7:3b:e9:94:74:ca:b4:04:9d:fc:a7:85:7a:af:a7:fc:
4a:2b:08:f7:2f:cd:dc:54:88:7a:ea:e0:cf:8c:e0:ed:91:2e:
e0:e3:3b:a2:c8:83:30:99:2c:2e:49:2e:70:b7:74:2b:4e:c9:
6d:3f:09:02:1f:b8:60:40:60:03:5b:69:12:53:67:d8:99:2c:
10:fb:63:f5:ae:e4:79:34:c3:a1:0f:1b:1e:54:35:54:90:b2:
93:7b:b2:5c:49:ba:2e:cf:e4:c4:c6:2f:97:9b:27:85:47:fe:
61:fd:4c:31:aa:bc:25:38:63:25:25:ab:f7:bb:48:ad:5b:1d:
da:4d:fd:29:9a:fd:6d:0c:0e:33:00:3a:a7:5c:38:fc:b5:c8:
ef:5b:15:34:1f:a6:35:7f:70:e2:2e:15:f9:89:d7:e4:dc:bc:
a3:e1:c0:3f:d4:b4:8c:36:c3:e4:a6:e9:16:cc:40:08:73:08:
64:c5:68:22
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 13 17:27:34 2026 by rpki-client