Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ks6UC13DAzfS5UIXIhkauSOqdcc.cer
File: Ks6UC13DAzfS5UIXIhkauSOqdcc.cer (raw, json)
Hash identifier: KOdc4H7fQnN/LSdNdrIXbTglMKpv0xwOSrI5et8ahaM=
Subject key identifier: 2A:CE:94:0B:5D:C3:03:37:D2:E5:42:17:22:19:1A:B9:23:AA:75:C7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02ACB1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9138A9F/82C67EA6C56D11EEB278534AC4F9AE02/Ks6UC13DAzfS5UIXIhkauSOqdcc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9138A9F/82C67EA6C56D11EEB278534AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 15 Apr 2026 03:53:04 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 103.136.120.0/24
IP: 2001:df0:780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Apr 2026 00:25:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175281 (0x2acb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 15 03:53:04 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A9138A9F, serialNumber=2ACE940B5DC30337D2E5421722191AB923AA75C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bf:fd:0f:06:d1:3f:61:2c:a9:7d:ac:d3:b3:
94:b3:5e:4b:1e:02:a1:54:93:4b:ab:9b:d5:3b:e8:
db:00:38:cb:2a:7a:9f:bd:77:9e:ac:04:1b:25:1f:
d2:25:6a:9f:a3:79:8b:c4:a4:4d:6a:7f:02:69:b3:
fa:09:4c:9a:a4:b6:6e:9a:71:5d:c5:50:45:84:76:
ba:d7:3c:3f:04:d8:72:a6:81:7f:55:49:cd:b0:a3:
49:b6:2a:c9:de:93:f0:cc:c8:e4:bb:aa:47:39:1b:
80:48:47:3b:b0:c6:56:05:fe:bc:ee:30:49:8a:23:
72:ac:13:c0:33:cb:65:84:39:81:30:03:61:79:e9:
db:54:01:21:e8:05:24:4c:56:95:a2:be:bd:a0:cd:
72:a1:7d:2c:39:e0:f5:61:ef:1e:5b:a7:4a:d8:5f:
f6:a5:42:cc:7a:48:1d:f3:5f:ae:a3:fd:97:3b:aa:
67:00:27:fe:24:f9:cb:da:49:81:63:c5:cc:66:f9:
9f:67:f6:e2:2e:80:07:c4:2d:1f:50:2e:80:af:77:
d4:93:47:1c:67:a5:13:3b:38:8a:2a:a3:93:57:8a:
8b:f1:1a:97:68:5f:06:1a:2b:53:d9:23:37:9d:94:
2e:bf:01:3f:94:cb:8f:f6:05:f0:77:98:ac:55:79:
9c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:CE:94:0B:5D:C3:03:37:D2:E5:42:17:22:19:1A:B9:23:AA:75:C7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9138A9F/82C67EA6C56D11EEB278534AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9138A9F/82C67EA6C56D11EEB278534AC4F9AE02/Ks6UC13DAzfS5UIXIhkauSOqdcc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.120.0/24
IPv6:
2001:df0:780::/48
Signature Algorithm: sha256WithRSAEncryption
cf:c5:cc:bd:e6:f8:d9:73:8f:c3:23:e4:fc:a7:fa:09:96:a0:
78:ff:16:dc:e2:88:ba:08:60:b7:52:9f:d8:0c:f7:30:39:d9:
ec:4f:b6:e1:a0:a7:f5:90:87:79:38:35:fe:6f:0b:d6:12:30:
49:b3:84:d8:09:c5:0c:14:85:f3:4b:b5:19:a8:7c:31:6d:40:
64:9d:5d:8e:3f:e7:60:66:16:e2:6e:9b:6c:5c:fb:c3:8e:8a:
1c:23:c8:66:b9:dd:aa:ef:a0:f7:43:c0:1f:8a:98:3f:50:6c:
c8:76:ff:73:c9:8f:20:bd:36:03:4b:1a:31:8c:d5:81:dd:f8:
78:97:a2:b7:f6:ca:72:a3:2d:ca:bb:65:90:5e:dc:6d:f7:41:
23:ea:23:80:b2:cb:ea:1e:f4:2c:70:4f:fa:78:17:f7:c9:46:
22:c5:24:d5:cb:3a:11:74:e9:f2:94:ff:42:1d:14:63:8b:cd:
e4:95:5d:ce:0b:cb:50:22:35:9e:83:c6:3a:56:5e:bb:24:cd:
ce:61:bb:0f:80:26:d8:cd:90:bf:e8:0f:66:fd:df:0f:81:ee:
51:2e:b5:96:34:23:19:68:28:32:6e:3e:b9:b5:31:f8:49:9b:
4b:58:40:3b:9d:bd:b0:0c:7d:7d:42:b8:74:ef:f6:17:6d:f6:
ab:70:89:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:04:50 2026 by rpki-client