Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer
File: NAcahjo8bvLdNnlfRVQOL7aJUKA.cer (raw, json)
Hash identifier: Rnh3ZRcbUJnAJD2P5Wx8UAYpDLzxxJ75o15Rwdz0AsQ=
Subject key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 029643
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft
caRepository: rsync://rpki.owl.net/rrdp/owl/0/
Notify URL: https://rpki.owl.net/rrdp/notification.xml
Certificate not before: Fri 27 Feb 2026 03:28:10 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 23959
IP: 103.125.232.0/22
IP: 2403:fbc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169539 (0x29643)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:28:10 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:aa:3c:f4:dd:42:d0:04:c1:b3:5c:46:6a:32:
76:35:c5:02:2c:44:c5:79:8d:3c:b5:c0:8b:1e:2f:
3e:48:cc:fb:9a:ce:e2:7c:1e:2e:fa:09:47:31:08:
96:ca:2b:7f:80:7a:29:51:98:65:1c:48:7c:31:c4:
e4:e3:bd:f9:78:21:2e:c9:76:34:40:4e:48:d4:d1:
da:3b:ea:db:9e:7e:18:1a:15:46:e3:1d:c2:59:a3:
f9:dc:13:2b:19:8d:5c:2e:1d:c6:29:27:d3:53:36:
21:8b:22:3d:ec:31:6c:82:bb:d3:7f:70:b0:1e:78:
10:8e:8e:f5:52:64:d0:8c:50:a0:fc:17:81:a6:b6:
9b:ab:95:af:c3:a7:48:4d:b0:6f:1e:4d:17:42:29:
ad:31:20:73:33:82:d8:6f:5f:88:61:92:40:0f:e2:
e5:dc:c9:7b:9b:85:99:14:dd:24:2b:ac:05:17:ac:
1a:84:10:b7:1a:bc:12:bc:29:c4:83:e9:b5:2d:3f:
db:5e:11:c7:bb:86:f1:46:53:26:a1:74:16:58:a3:
1f:d9:13:21:d2:56:31:a3:53:1d:f2:b5:af:e3:49:
65:2e:51:e2:8d:fc:c2:3e:09:1b:9b:4a:f0:20:9c:
b9:be:63:e1:55:70:f2:01:9b:44:b9:7e:38:4c:ed:
5c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.owl.net/rrdp/owl/0/
RPKI Manifest - URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft
RPKI Notify - URI:https://rpki.owl.net/rrdp/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23959
sbgp-ipAddrBlock: critical
IPv4:
103.125.232.0/22
IPv6:
2403:fbc0::/32
Signature Algorithm: sha256WithRSAEncryption
cc:41:ae:d1:51:2a:f7:1a:10:ca:7e:08:d5:a1:56:a1:72:3a:
50:db:e1:cf:71:62:6f:66:b7:55:83:52:90:e2:d5:7f:88:19:
3e:aa:0e:8e:a0:10:a3:b1:fd:5e:7d:d2:43:1f:9e:fc:c8:f4:
15:33:eb:46:3c:a6:97:64:43:62:c9:b3:27:e0:9f:cd:0f:f8:
21:88:b9:4a:75:df:f5:c3:f7:0a:3b:ba:bd:78:09:a2:18:b6:
69:c4:18:a8:d3:d6:44:1f:ab:a3:c4:38:34:03:35:4c:c8:ab:
63:6c:af:37:0c:6e:3d:98:0d:32:9c:e7:03:15:7d:9a:89:d0:
ce:6c:e2:a3:9f:67:95:4c:a2:2a:e8:ca:5f:45:1c:e9:7b:d4:
b3:2b:13:0c:85:91:df:41:31:f9:4e:51:a3:41:a9:ac:7a:fb:
fa:27:c3:18:bc:ff:a7:01:1e:a1:f8:3d:9c:9c:09:ff:29:4a:
c7:1e:80:ed:4f:72:6d:cb:f5:1b:66:c4:8e:0f:9a:30:1b:24:
9c:62:9c:32:b6:e5:03:a7:41:9f:55:77:7b:72:c6:dc:09:7a:
35:73:5f:2b:11:a1:0c:3b:3b:6a:ad:8f:ca:b0:59:67:b4:97:
3d:cf:83:2a:64:05:2e:f5:e2:c6:b7:2f:79:ee:3e:d4:5a:7f:
21:d8:eb:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:24:52 2026 by rpki-client