Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gv1CZeY9DL91I27ZaGrk8AFV_34.cer
File: Gv1CZeY9DL91I27ZaGrk8AFV_34.cer (raw, json)
Hash identifier: UXSwWa5O2AQC4vWC4H0SfgIP2ah6p2vGRFQiUAitGWE=
Subject key identifier: 1A:FD:42:65:E6:3D:0C:BF:75:23:6E:D9:68:6A:E4:F0:01:55:FF:7E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A032
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 14:21:24 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 136230
AS: 149781
AS: 150151
AS: 150794
IP: 103.84.96.0/24
IP: 103.101.172.0/24
IP: 103.101.174.0/23
IP: 2001:df0:d00::/47
IP: 2400:e720::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172082 (0x2a032)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 14:21:24 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91CBA26, serialNumber=1AFD4265E63D0CBF75236ED9686AE4F00155FF7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:40:de:74:a9:27:c4:34:7b:41:0f:c4:f5:7e:
2d:50:95:60:a1:a1:b0:cf:cf:61:3b:c0:7b:87:a3:
3d:ed:8d:7d:46:26:0a:a5:41:5e:2c:e7:1c:99:58:
61:8b:df:54:cb:e0:39:b4:71:e6:d1:80:f4:69:dc:
eb:4f:12:c7:b4:7e:c1:bc:54:4c:16:3a:95:11:24:
46:54:5d:64:c7:a4:02:3b:97:0e:4f:a5:71:be:7f:
52:8d:33:7e:49:8c:e3:c3:2c:2e:ab:44:a3:1e:e0:
18:ca:b8:0c:df:10:c4:5a:01:11:e7:24:e1:bc:96:
7c:d9:01:a4:4c:3b:5b:fc:45:a0:0e:4f:83:c6:ee:
70:7d:5c:2f:9a:81:be:07:dc:f6:8b:5f:2e:83:4b:
ea:02:6d:ae:80:55:b7:e3:2a:e7:52:e2:1c:77:76:
95:2b:97:38:95:7c:77:24:9f:93:25:47:9c:4b:90:
a0:fd:47:59:2a:6c:3c:7d:9c:d1:bb:31:f0:0e:3e:
66:8e:ba:74:81:a5:d3:1c:8f:7f:60:32:7c:32:3f:
5f:c1:f8:41:a5:c1:7d:11:56:e6:c1:d1:e5:66:ab:
60:b1:bc:0c:d2:9f:42:0e:cd:a8:3f:a7:a3:bc:a7:
50:fc:e9:d3:a9:d1:6d:b5:ca:0a:0e:1e:6a:f3:37:
04:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FD:42:65:E6:3D:0C:BF:75:23:6E:D9:68:6A:E4:F0:01:55:FF:7E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136230
149781
150151
150794
sbgp-ipAddrBlock: critical
IPv4:
103.84.96.0/24
103.101.172.0/24
103.101.174.0/23
IPv6:
2001:df0:d00::/47
2400:e720::/32
Signature Algorithm: sha256WithRSAEncryption
89:57:b2:7e:b5:29:1e:03:ef:cf:9e:dd:93:97:9a:43:4b:d2:
f7:a5:30:c6:7f:a1:33:35:c0:c5:3e:f2:51:0d:0a:86:61:bb:
6a:a0:de:5c:4f:b3:e5:a9:10:81:4c:eb:d5:dd:23:6c:b6:4c:
8a:fb:78:87:31:a6:d3:66:d9:32:2f:6f:b9:c2:bb:20:70:16:
b7:ca:60:ae:29:db:78:8e:45:00:fb:c4:d3:62:46:d1:d2:7f:
ac:4e:e1:c3:27:35:79:5f:5a:58:b7:82:10:e0:51:3e:5c:8e:
e2:24:f8:89:6b:c5:1e:82:0d:4b:f1:f1:e9:ac:43:9f:f3:f1:
69:0e:0e:23:65:12:35:7e:71:4f:a6:85:87:f0:05:8a:cc:21:
72:80:5a:57:ae:0a:3d:90:6d:31:51:d1:f1:5c:7a:77:f6:67:
4b:80:68:5c:16:a9:6d:c7:ac:46:72:90:9b:4e:96:6f:e0:74:
e6:f7:82:6f:b8:26:cd:20:f1:8a:c1:a4:d3:fc:1f:21:dd:f6:
33:cc:bd:b3:03:72:d2:96:4a:ff:65:df:fb:d4:d0:5e:c0:06:
09:bf:5a:7a:ec:25:16:5c:1f:9c:ad:01:72:8f:2c:62:e9:4a:
07:d8:47:98:14:9c:38:4b:e1:4d:30:bd:3b:6d:61:32:3b:48:
50:5b:a8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:22:53 2026 by rpki-client