Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer
File: 2nNptJciuhObe2DznIi0m9uzXz0.cer (raw, json)
Hash identifier: Jah0q/iCZtZC6MKHjZ2EDY/d/RfWPw+IKxQf+kD+0uw=
Subject key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0294C7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:21:31 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 24459
AS: 139580
IP: 43.239.96.0/22
IP: 103.6.212.0/23
IP: 103.16.180.0/23
IP: 103.248.176.0 -- 103.248.178.255
IP: 202.37.129.0/24
IP: 2403:4f00::/32
IP: 2406:fd00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169159 (0x294c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:21:31 2026 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A917E623, serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2a:30:ff:df:f0:27:6f:8b:96:c0:1d:0d:12:
c0:c8:3f:1e:5b:e8:91:8f:8a:f0:c8:fb:9a:58:61:
a6:ca:58:8b:cc:da:4d:9b:30:0c:4f:6b:c6:8c:48:
34:f3:50:b5:72:2c:d3:49:20:4c:9e:da:81:11:42:
c4:f3:1a:be:b7:30:d7:be:85:96:a2:7f:fd:53:11:
2f:d2:18:5e:d0:8e:4f:bf:55:e1:07:71:b5:54:38:
0b:dd:e4:93:41:48:17:c0:78:6b:ab:c4:6b:6d:39:
fd:c8:df:4c:4b:da:fe:24:a9:5a:de:ff:12:67:28:
c2:81:40:0d:03:39:c3:bd:37:09:ad:cd:f8:62:11:
a3:1d:2e:af:9c:38:76:c1:8f:39:40:1d:e7:9e:63:
ba:20:c0:e8:54:a2:da:6a:62:d4:e5:54:80:61:82:
e0:78:07:73:18:7e:b3:38:57:1d:8d:91:cb:95:d2:
36:b6:b5:2e:1c:f5:c1:eb:bc:ed:63:1c:79:bf:fe:
c1:e2:da:39:ad:0d:2d:5f:34:ee:71:67:c4:f8:6b:
2b:de:de:33:05:e8:c5:8d:0f:2d:f7:5f:d1:fc:f5:
0c:70:cd:ee:c7:46:b0:ce:ac:74:c0:04:65:c0:14:
f0:45:4a:56:44:d8:1b:60:d0:4a:59:46:74:9b:16:
0a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24459
139580
sbgp-ipAddrBlock: critical
IPv4:
43.239.96.0/22
103.6.212.0/23
103.16.180.0/23
103.248.176.0-103.248.178.255
202.37.129.0/24
IPv6:
2403:4f00::/32
2406:fd00::/32
Signature Algorithm: sha256WithRSAEncryption
6d:36:43:5f:b0:56:18:3d:a7:8a:1b:3c:48:63:b4:fd:86:d9:
b1:08:d0:85:30:d2:75:4e:83:92:1f:1d:b6:43:ce:16:b7:51:
0b:97:aa:31:e5:a4:4d:c1:42:cc:8e:ab:3c:e7:9b:5f:19:d8:
f2:6f:28:6b:87:0d:87:2e:5e:8b:23:80:55:4a:5f:ae:34:9f:
b7:28:a4:12:cf:a7:a1:66:b5:86:6f:51:c2:cd:a6:93:5d:9b:
f7:b6:e6:18:1d:40:c4:e2:e7:77:6c:34:04:6f:5d:eb:98:71:
39:67:35:a2:54:4d:28:ae:8a:43:93:c2:3e:a9:6d:ca:4b:0e:
2a:d3:03:31:d9:02:7c:1e:08:b4:80:b9:ec:ea:dd:85:5c:77:
32:fd:db:88:81:46:44:52:3d:ca:9a:3b:f6:81:5a:d5:b6:7f:
5b:31:6a:cc:67:5d:42:2a:bf:15:94:41:95:bd:7e:8d:3b:43:
b1:3a:f9:6b:ba:07:17:0f:f3:e9:f6:ad:52:69:a4:c1:e6:78:
29:e5:bc:aa:83:78:93:e0:de:16:38:04:79:98:ae:cc:93:42:
0c:57:32:d0:76:88:3f:61:c1:35:3f:5f:b4:3d:69:e5:ed:49:
e3:0b:ec:42:ca:e9:14:61:20:d3:29:01:1d:88:61:8b:4f:25:
0a:8c:3f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:28:38 2026 by rpki-client