Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer
File: PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer (raw, json)
Hash identifier: xBYDb6kT6qHWGWdceDHFJYRBlVHxC12zVdND4NyeImA=
Subject key identifier: 3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A0CD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 01 Mar 2026 13:09:08 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 141459
IP: 103.160.22.0/23
IP: 2406:e1c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172237 (0x2a0cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 1 13:09:08 2026 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A914E6AA, serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fc:3d:a0:10:fe:d5:f0:76:b8:e3:7d:6b:63:
cd:b9:d7:be:6e:66:15:b9:28:cf:8e:37:b2:e4:eb:
f9:a2:a9:8a:f3:e7:f9:e7:26:f3:3a:19:08:7e:1e:
74:89:e1:40:ed:57:e4:f9:ac:60:dd:88:c0:fb:e7:
08:c0:0c:35:52:27:7b:9e:b4:dd:d2:01:5d:18:e4:
82:fe:0f:22:46:6a:33:5a:3b:88:4f:c6:c7:12:40:
5c:4b:5d:e9:75:ff:a6:f2:4f:39:88:6f:75:43:9e:
35:8b:ce:8b:5c:f0:87:54:3d:e1:b6:3f:cd:12:ca:
aa:da:57:28:7d:da:4f:1c:3f:3c:9d:9b:c6:61:fd:
13:45:de:a6:55:b7:bf:37:13:a3:46:a0:47:49:41:
8c:9f:c5:5c:b0:29:27:64:bd:0e:7c:90:bc:aa:92:
c6:92:4f:e4:fc:8c:1a:08:75:9a:b3:03:66:0d:55:
c2:84:84:1c:48:86:47:54:f6:a5:17:8f:12:44:f1:
e5:45:90:ae:5c:68:eb:d3:1c:c2:3d:a5:4f:16:14:
4f:d2:ff:4f:c6:ae:56:e7:a2:fc:6f:77:c0:86:e8:
77:03:0b:ff:a9:8d:0f:af:21:24:88:f5:d5:98:f0:
c4:28:a0:c8:58:e7:76:f7:63:44:09:63:1f:10:d5:
76:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141459
sbgp-ipAddrBlock: critical
IPv4:
103.160.22.0/23
IPv6:
2406:e1c0::/32
Signature Algorithm: sha256WithRSAEncryption
98:31:f7:9c:60:33:19:ab:41:64:e3:d6:a9:b4:7f:76:b0:82:
ba:45:fc:a7:9e:96:67:b3:16:9b:b3:a8:bb:6e:ae:55:cc:01:
eb:8c:ac:09:b6:85:48:88:84:92:89:8c:89:dd:96:00:b5:b1:
98:10:ed:75:c6:66:f8:45:9e:8f:4d:6f:1c:86:67:94:f7:99:
31:a8:40:94:8d:71:e0:ce:21:e2:a4:13:27:5d:8f:19:65:5b:
33:85:78:77:69:a3:45:14:a4:9d:c2:0f:79:58:df:ab:61:36:
cc:96:46:ff:dd:6e:46:92:da:05:fc:6e:dc:63:9a:25:df:07:
d0:fe:c4:c7:8d:8a:1e:2c:fa:c9:e6:06:55:5b:68:ec:a4:53:
ef:1c:73:62:65:e4:bc:20:40:9b:96:67:68:83:c6:14:d8:2c:
43:7c:49:51:be:67:cb:7d:a2:6a:b5:ba:10:ef:a3:2c:49:76:
89:34:46:fd:01:34:50:65:53:1d:24:ae:36:03:73:59:3b:64:
96:2d:31:28:96:e6:ea:3d:ef:2b:3e:c2:a5:ee:82:36:49:3f:
b8:5c:bf:38:e6:4d:5f:ce:2d:64:68:3d:53:90:de:ae:b8:7f:
6f:0d:e6:f4:b1:c3:8b:38:50:ab:5d:fb:a4:dc:1c:f6:91:c4:
26:06:d3:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:13:49 2026 by rpki-client