Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer
File: Klbs8PH_OfsVFWANEgo0cr4UtzI.cer (raw, json)
Hash identifier: fmFngYn/HIbUjtbX8h/sHYgYM9IGNAPoUPFf/oCKMRI=
Subject key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B973
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Jun 2026 14:56:44 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: AS: 132845
IP: 43.230.12.0/22
IP: 103.248.252.0/22
IP: 2407:900::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178547 (0x2b973)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 1 14:56:44 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dd:1a:5b:c4:0f:bd:41:12:90:9a:ca:25:29:
4b:f5:ff:57:e8:4b:d7:d4:fc:a6:40:e4:19:41:ce:
ba:3c:9d:56:d6:67:64:bc:3f:fd:12:5d:38:a9:cc:
b4:da:fd:b0:44:99:20:0e:42:4b:fd:c6:33:c7:68:
d1:4d:2d:78:59:3f:b7:4c:37:54:21:ce:bd:b0:61:
b1:87:62:2d:f8:d9:ef:1a:5b:6d:a0:e2:f4:cc:e4:
d0:dd:61:de:aa:63:d7:6c:a8:1f:cc:7a:22:f6:58:
e1:00:12:58:14:43:92:94:75:55:a1:47:2a:8e:aa:
fa:32:27:ce:44:e5:73:23:12:48:e5:6d:5f:72:4e:
4b:ad:1f:0d:dc:82:e0:58:dc:53:bf:f8:cb:e0:2e:
a5:f3:bc:62:5b:5c:b5:db:b5:d2:03:bb:33:05:43:
f5:95:a8:f4:a3:e0:44:7d:88:ef:62:02:55:89:cb:
51:66:ef:83:23:f5:63:cc:7e:6c:01:9d:1b:99:d0:
d5:2b:8f:bc:b6:f4:2b:31:6b:06:01:23:f3:74:53:
e1:9f:15:df:a7:85:e9:ad:a9:7c:da:2b:d1:88:8e:
7d:a9:b8:b3:18:71:e7:34:86:4d:34:4a:a0:c1:38:
38:54:4e:cc:78:58:17:0a:64:65:1a:20:c6:bc:e4:
8c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132845
sbgp-ipAddrBlock: critical
IPv4:
43.230.12.0/22
103.248.252.0/22
IPv6:
2407:900::/32
Signature Algorithm: sha256WithRSAEncryption
46:0d:a0:dc:bf:99:67:3f:08:6b:cb:67:06:70:25:02:84:05:
f5:ce:d1:5b:81:9b:de:e9:ba:73:1e:e0:30:e6:bd:74:81:b3:
49:9e:17:7f:e3:d1:88:2f:bc:b6:d6:6c:28:07:11:cb:1a:d9:
46:79:2b:40:8f:c3:b6:0f:fa:c5:79:35:fd:29:16:17:8a:1b:
d9:de:01:32:19:fb:b3:6e:c5:e4:61:45:f2:6d:3d:0d:d1:f5:
ef:e7:5a:4d:67:5d:94:f5:6a:ce:2f:5e:74:be:5a:a8:1a:82:
22:c8:7b:0d:a5:06:b3:69:46:4e:e5:45:ce:36:48:72:cd:fa:
30:42:22:1e:85:39:a5:d1:9f:17:d8:8a:6e:3a:b1:86:6d:10:
67:67:d8:db:c2:f2:81:b5:eb:8a:fb:cb:2c:91:c5:05:f5:93:
87:ba:d1:6e:87:a6:22:db:5c:0c:23:fc:b9:1b:11:e3:f2:68:
60:d2:f5:d3:39:8e:21:4c:15:2d:d4:41:9f:d2:8b:63:d4:11:
b2:4f:27:9f:f5:d8:ad:b0:3c:90:7c:30:c1:4e:68:bb:28:d5:
23:18:f7:0a:8a:3a:c4:91:af:ba:f4:10:9b:82:7e:a4:25:12:
de:41:8f:9e:ea:a9:9d:fb:19:c6:d0:99:68:ee:28:f9:87:b4:
41:1a:ae:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:06:01 2026 by rpki-client