Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fKdQzAmQd9S0MpCnYoOre_C2Smg.cer
File: fKdQzAmQd9S0MpCnYoOre_C2Smg.cer (raw, json)
Hash identifier: BYTUbXwDlHP83lI94xniHKKWgNEJSYvtqxuI6TG0SEM=
Subject key identifier: 7C:A7:50:CC:09:90:77:D4:B4:32:90:A7:62:83:AB:7B:F0:B6:4A:68
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 029978
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91300ED/0EC94A88622911EB8E1BC27CC4F9AE02/fKdQzAmQd9S0MpCnYoOre_C2Smg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91300ED/0EC94A88622911EB8E1BC27CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:44:20 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: AS: 141701
IP: 103.162.58.0/23
IP: 2401:cde0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 18:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170360 (0x29978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:44:20 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A91300ED, serialNumber=7CA750CC099077D4B43290A76283AB7BF0B64A68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e9:80:5f:d7:1f:ab:9b:ae:45:99:49:41:dd:
3b:c1:00:94:44:cc:5e:21:75:82:76:89:4b:d4:04:
e3:67:d8:34:2f:f0:98:02:3c:07:4e:54:1e:ba:7d:
56:85:ff:86:9c:10:63:cd:83:c4:57:89:71:fe:33:
dc:b6:0d:52:64:96:a0:52:4d:1d:4a:fb:e3:57:0c:
d7:91:2c:5a:97:8a:2a:88:60:d6:2d:25:b5:24:01:
f7:be:06:59:0b:e0:7e:a1:df:ac:24:7a:0b:4c:6a:
63:1d:11:17:1d:57:43:c9:24:9f:46:06:cc:db:bb:
ed:c7:3b:49:ec:d3:af:7d:8b:87:ce:c1:35:31:6c:
12:c2:0e:c1:55:dd:44:29:34:be:79:cc:7f:d3:e1:
7a:ff:81:1f:33:3a:4c:16:66:f0:2b:d6:02:7c:56:
4d:6a:24:a7:5c:45:f1:42:3f:bc:c4:26:fc:35:a2:
df:4b:b9:3d:bb:f1:2a:7f:34:8a:83:cb:03:e5:b7:
ef:f3:5f:c8:f9:e6:1f:7c:d4:d8:06:09:66:cb:24:
03:0b:1f:f1:a8:34:67:5f:4c:69:64:d9:39:64:c8:
21:a2:17:5f:a4:b6:99:f1:11:74:0a:8c:95:6f:4d:
3f:0b:aa:c9:b0:68:35:ac:b9:c7:ca:d3:04:81:04:
37:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A7:50:CC:09:90:77:D4:B4:32:90:A7:62:83:AB:7B:F0:B6:4A:68
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91300ED/0EC94A88622911EB8E1BC27CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91300ED/0EC94A88622911EB8E1BC27CC4F9AE02/fKdQzAmQd9S0MpCnYoOre_C2Smg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141701
sbgp-ipAddrBlock: critical
IPv4:
103.162.58.0/23
IPv6:
2401:cde0::/32
Signature Algorithm: sha256WithRSAEncryption
88:0c:9f:ac:75:58:b3:57:dc:f5:ef:d3:94:ff:f5:66:df:68:
00:7d:ac:6a:86:85:10:81:a0:8d:ac:fd:75:6d:b4:b4:61:a5:
35:94:ab:6a:6b:1a:f4:83:dc:a4:b9:93:fd:67:6d:e7:de:ed:
69:e7:fe:18:e7:28:a0:57:2e:9d:cc:20:bd:e3:74:5f:4c:4f:
36:af:f6:ef:2d:9a:24:80:04:6d:bc:d3:1d:a4:91:16:9c:0f:
71:47:8c:04:da:22:06:d0:4e:b9:4c:b5:b8:d2:d3:44:b3:0e:
76:2d:b0:ee:1c:a8:9b:c8:4b:fa:2a:46:53:d2:11:ad:fe:ff:
25:25:ee:91:fc:e4:c1:db:f1:ed:44:d7:24:46:3e:9a:69:1d:
69:0a:41:b1:7d:f5:c4:93:3c:12:c0:13:eb:3d:b9:68:f7:31:
7e:35:bd:ba:cb:d7:8b:f7:75:41:94:a9:32:34:b3:d3:bf:28:
56:10:48:bb:e9:f3:f1:0c:fa:05:b2:90:70:f8:a2:e0:00:76:
73:62:62:97:c4:56:3a:a3:0b:bb:f9:d5:be:5a:de:11:3d:17:
2d:a7:26:db:b0:37:0b:59:8d:7e:81:57:a7:7d:3e:d1:27:85:
c7:61:eb:ae:32:45:58:e6:c5:a6:d7:cd:e9:36:44:6c:83:bd:
1f:4f:67:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:11:48 2026 by rpki-client