Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer
File: 967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer (raw, json)
Hash identifier: +pG9alGaOp3TeuqxASANcOXatu0JXbYeF4PVTtewGBk=
Subject key identifier: F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02AAEF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Apr 2026 13:17:58 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 132481
IP: 103.148.236.0/23
IP: 203.4.128.0/22
IP: 203.11.96.0/24
IP: 2001:df2:fc80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Apr 2026 16:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174831 (0x2aaef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 8 13:17:58 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A915D0AC, serialNumber=F7AED5875112CCFB208E718247B1E49BAAFFB865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:8e:63:8e:b1:a0:80:8e:60:a0:d5:49:7b:15:
75:81:04:a8:c9:63:01:96:ad:a1:92:f6:58:13:4c:
51:c3:b1:b8:2d:d9:16:34:3b:e5:44:c1:f5:e7:bc:
7f:11:c2:12:05:10:36:5e:73:ea:4e:2e:52:85:9e:
b7:6c:65:65:e6:03:9f:5c:ed:b6:a9:04:3f:82:a5:
83:68:e7:12:f8:8a:0e:7e:53:e9:ea:6c:ca:fc:bd:
4a:dc:8e:9a:be:87:25:94:59:fb:fc:07:aa:5d:eb:
71:a0:70:74:b9:09:ea:85:1a:4a:5e:9f:08:98:01:
80:44:07:7a:d7:43:06:cd:15:0f:3a:86:32:00:8b:
f6:5e:3e:28:3d:7b:3e:b1:43:51:4a:c6:a2:f4:90:
91:00:c6:ae:e1:90:d2:6d:36:0e:58:dd:c6:08:b5:
a7:9a:25:30:7c:42:74:12:bb:b2:03:ef:d8:c6:2c:
c1:fa:6e:a5:10:7a:76:7b:3e:3b:40:5d:1c:41:6b:
b4:62:ba:3f:10:06:6b:99:48:46:2c:cf:b8:9f:cc:
a6:7f:4e:bf:ef:d7:95:21:7d:84:2e:87:39:83:4f:
65:14:14:9d:d4:29:e5:0a:32:33:d5:a2:b9:98:e1:
da:fc:39:8d:95:6d:01:b8:5c:4d:18:70:8e:4f:57:
e6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132481
sbgp-ipAddrBlock: critical
IPv4:
103.148.236.0/23
203.4.128.0/22
203.11.96.0/24
IPv6:
2001:df2:fc80::/48
Signature Algorithm: sha256WithRSAEncryption
bf:e3:91:1f:f8:de:f9:05:75:4f:18:16:30:2f:79:a6:3b:a2:
10:1a:6f:02:b1:a3:46:4c:c7:c3:8a:80:4d:ee:91:8f:0f:31:
d9:c0:63:e5:78:5b:50:2c:55:50:79:9d:96:85:93:f1:ac:15:
1a:11:f1:e8:c8:a8:d6:f8:39:0a:3c:91:21:7e:8c:2e:ce:85:
59:cd:3b:9c:91:56:93:37:0c:38:a8:da:7e:7d:9e:33:ac:07:
db:a0:6b:7d:b2:1d:f7:e4:21:51:ce:94:84:d7:fb:a4:09:48:
70:f7:50:4e:6d:e4:b3:81:48:66:da:63:0d:02:7e:35:53:cb:
7d:4d:92:54:55:74:67:b4:f0:80:e2:97:a1:c1:28:f0:ff:e7:
b0:c7:79:03:48:fe:b8:9a:01:6c:6e:20:13:44:f2:f3:81:fc:
34:34:bd:4f:84:94:c7:af:e9:eb:18:c3:34:e1:d4:14:ef:71:
7b:ae:45:7e:18:ef:ae:76:40:58:15:ec:6b:bb:aa:b0:6b:97:
f2:75:a8:22:66:d1:11:7f:03:51:8a:38:6f:61:8c:38:54:32:
9c:9a:c7:dc:df:73:71:15:f9:55:1c:a3:07:4b:25:bf:8d:dd:
02:84:5d:43:89:45:85:87:3b:6d:68:8d:ff:51:f2:fa:a1:ac:
f3:be:f8:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:50:31 2026 by rpki-client