Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer
File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer (raw, json)
Hash identifier: 6GFnU0QVSC07DFMmWKPqmSQ0qWg9ixH5c5oREn7f4NY=
Subject key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02AB1C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Apr 2026 14:28:02 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 137914
IP: 202.27.128.0/23
IP: 202.50.180.0/22
IP: 203.26.160.0/21
IP: 2001:df6:ee80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Apr 2026 03:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174876 (0x2ab1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 8 14:28:02 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a9:54:51:9e:f9:28:be:ef:8b:fd:76:7e:0a:
d4:7a:03:64:b7:0e:f4:9b:d7:bb:21:f3:72:72:1c:
c7:13:11:8c:b7:e6:ac:fd:a6:b1:3c:93:82:f6:28:
46:05:92:20:61:c8:6b:72:05:87:e9:29:c0:4b:55:
49:12:19:da:b4:4c:d3:6c:15:cc:fc:1c:c5:d4:33:
b5:79:ea:51:81:95:8c:27:1d:98:b1:70:b3:21:f8:
c4:c4:bb:0e:39:47:d1:4d:97:7d:76:0e:04:4b:84:
3d:f4:03:f8:af:cd:a4:df:b3:b8:85:32:63:89:2b:
7d:12:37:e7:df:f9:4b:f3:3c:94:50:8b:4f:3f:08:
1d:9a:36:46:99:b1:01:67:06:b8:2a:33:c6:ab:f8:
9b:58:5e:96:35:92:92:cc:e2:1e:ea:2a:d7:53:da:
53:c5:aa:ec:db:07:aa:ba:10:98:da:95:ad:6e:7d:
f2:26:a9:4b:23:11:03:b3:ce:bc:ee:b0:bd:8a:cf:
aa:a6:85:1d:0e:4f:ac:15:c1:66:8e:ae:75:c0:1c:
36:90:7f:28:21:6e:68:cc:71:68:42:b3:73:d8:fb:
a5:8a:c0:98:f0:fa:3c:26:2e:21:d2:8d:19:80:47:
08:b9:bd:76:a8:e1:93:51:16:8c:a1:97:52:53:ff:
82:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137914
sbgp-ipAddrBlock: critical
IPv4:
202.27.128.0/23
202.50.180.0/22
203.26.160.0/21
IPv6:
2001:df6:ee80::/48
Signature Algorithm: sha256WithRSAEncryption
ad:cc:b8:14:9b:29:ae:1b:8c:f9:c7:45:42:79:21:1e:10:65:
73:67:a1:ea:a9:bc:5a:7c:ea:73:17:e5:db:be:29:8b:f9:41:
13:66:3f:cb:09:f0:d0:ab:d6:7d:49:3f:61:c9:22:e8:7e:ac:
ee:96:61:82:dc:02:16:cd:e5:77:47:1f:37:e3:f1:4d:ff:45:
7d:2f:5d:f3:de:05:de:82:b3:04:2d:9b:0a:c4:86:6b:cc:f6:
5e:1e:05:f9:96:d8:90:6b:9b:43:4e:e1:e3:bf:59:c9:b5:73:
2e:7d:c5:c4:7a:85:13:46:c6:d5:35:f5:71:20:2e:a6:34:f5:
75:5c:b9:d6:f9:ff:5d:92:4b:57:17:8e:54:f4:30:d3:bb:91:
87:72:ba:94:06:95:35:85:81:6e:33:a7:ed:e4:bc:c8:b0:63:
6d:de:9f:77:d6:34:d8:74:5d:ab:db:92:31:2e:c2:d7:cc:63:
9f:33:db:37:c0:de:ce:19:39:82:d9:e0:31:08:65:53:5e:ef:
57:d0:04:9e:b2:37:9a:d8:ee:40:52:19:38:dc:4d:2a:89:af:
a7:3a:9b:10:71:b1:12:1f:85:ef:b8:0a:a1:ee:03:2e:10:22:
5a:ac:75:de:35:4f:78:1a:3b:d7:08:00:e4:ee:26:a1:36:7d:
61:d6:2f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:03:54 2026 by rpki-client