Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer
File: ficJop5GIOVCf3NfN8A0c-NrWXo.cer (raw, json)
Hash identifier: fO9m7x11N93CNPP90I387SUHmmk7MMwMQwF+8/gvv/I=
Subject key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0295CC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:26:04 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 138663
IP: 43.239.204.0/23
IP: 103.106.6.0/23
IP: 103.117.164.0/23
IP: 203.2.144.0/24
IP: 203.78.162.0/24
IP: 2407:6540::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169420 (0x295cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:26:04 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ab:d8:02:8f:21:31:df:ad:0f:cb:12:a8:aa:
58:7f:1f:82:e2:f9:c3:5a:5f:b4:85:f9:ab:a2:10:
79:e4:fe:c7:33:07:c3:e4:b7:04:93:b6:f3:69:27:
cb:40:01:22:32:5e:f4:58:0b:52:5d:a9:14:41:69:
f8:6f:83:d8:bf:0a:01:db:4a:ac:32:61:48:5c:1e:
2d:4e:4a:39:9a:19:4e:8f:58:b9:ae:55:d3:4e:ec:
1a:38:01:26:df:8b:fe:a3:9a:a0:98:a7:79:b5:1c:
46:90:6d:c9:c6:78:99:c5:5a:a4:2f:21:5f:48:b2:
84:81:48:81:c2:f5:80:f0:27:04:26:bd:bc:b8:61:
2c:ad:0b:82:a4:60:7c:14:ab:ec:56:69:1e:47:bf:
e7:22:5f:f6:29:29:72:35:31:4d:eb:c0:dd:0f:d6:
dd:31:95:0b:87:38:55:49:2c:dc:6a:ab:66:4b:7b:
4b:7d:39:d4:af:8a:7b:46:ec:29:78:2c:ec:3a:33:
51:65:0b:58:4f:99:cc:78:0d:64:82:be:91:15:c3:
a2:e6:5b:3a:bb:bb:83:83:6d:c2:03:ec:b9:55:36:
dd:85:a8:05:28:3e:b5:22:55:01:58:bf:e6:4d:68:
80:09:31:b0:d4:d4:d6:53:9e:31:2b:74:63:74:94:
43:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138663
sbgp-ipAddrBlock: critical
IPv4:
43.239.204.0/23
103.106.6.0/23
103.117.164.0/23
203.2.144.0/24
203.78.162.0/24
IPv6:
2407:6540::/32
Signature Algorithm: sha256WithRSAEncryption
21:e7:7f:78:23:0e:d1:00:10:ae:8e:1b:6a:03:78:4b:3e:b2:
41:5c:bb:34:cb:6a:eb:80:b3:a8:a5:e4:15:46:82:15:0d:39:
21:63:86:d0:c0:80:3d:e7:8f:5e:81:d7:43:4f:fe:b4:8f:65:
91:04:93:d3:c5:05:ae:a1:51:7a:fc:1b:38:99:c9:84:f9:13:
76:16:1f:9f:ff:49:19:3e:82:7b:1f:bb:b5:aa:18:31:45:7a:
4f:30:9c:37:e7:89:6c:3a:58:24:71:84:df:34:cc:ce:7a:84:
d2:bc:91:65:5b:61:a2:39:0b:2f:35:7b:3a:83:79:19:d0:28:
a9:06:07:d6:ab:55:f7:e0:53:17:c3:46:d9:5f:17:71:1c:f7:
5d:43:f9:5c:12:c9:ac:db:31:99:9c:48:36:35:07:c6:6f:c5:
cf:c6:7c:75:4b:12:69:bb:ad:c1:9c:a9:2a:1b:df:02:8f:5a:
21:d2:0c:80:d2:69:00:71:b0:5a:72:8e:42:e0:04:1a:19:53:
b4:57:b0:2c:25:c7:30:91:d2:a7:97:3b:a7:cd:fd:52:31:bf:
42:4e:ae:89:39:ef:f6:ef:6a:99:6d:57:65:01:82:59:57:c0:
28:6b:7d:e1:7a:84:67:17:09:8a:af:63:01:81:6a:94:6f:ce:
d8:21:44:a9
-----BEGIN CERTIFICATE-----
MIIGQTCCBSmgAwIBAgIDApXMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDIyNzAzMjYwNFoXDTI3MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxREQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1
RjM3QzAzNDczRTM2QjU5N0EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCdq9gCjyEx360PyxKoqlh/H4Li+cNaX7SF+auiEHnk/sczB8PktwSTtvNpJ8tA
ASIyXvRYC1JdqRRBafhvg9i/CgHbSqwyYUhcHi1OSjmaGU6PWLmuVdNO7Bo4ASbf
i/6jmqCYp3m1HEaQbcnGeJnFWqQvIV9IsoSBSIHC9YDwJwQmvby4YSytC4KkYHwU
q+xWaR5Hv+ciX/YpKXI1MU3rwN0P1t0xlQuHOFVJLNxqq2ZLe0t9OdSvintG7Cl4
LOw6M1FlC1hPmcx4DWSCvpEVw6LmWzq7u4ODbcID7LlVNt2FqAUoPrUiVQFYv+ZN
aIAJMbDU1NZTnjErdGN0lENlAgMBAAGjggM2MIIDMjAdBgNVHQ4EFgQUficJop5G
IOVCf3NfN8A0c+NrWXowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUREMEE0Lzk1RDVFMzkyQUE3MzExRUFBMTBBQ0M4NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFERDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1
R0lPVkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh2nMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQBK+/MAwQBZ2oG
AwQBZ3WkAwQAywKQAwQAy06iMA0EAgACMAcDBQAkB2VAMA0GCSqGSIb3DQEBCwUA
A4IBAQAh5394Iw7RABCujhtqA3hLPrJBXLs0y2rrgLOopeQVRoIVDTkhY4bQwIA9
549egddDT/60j2WRBJPTxQWuoVF6/Bs4mcmE+RN2Fh+f/0kZPoJ7H7u1qhgxRXpP
MJw354lsOlgkcYTfNMzOeoTSvJFlW2GiOQsvNXs6g3kZ0CipBgfWq1X34FMXw0bZ
XxdxHPddQ/lcEsms2zGZnEg2NQfGb8XPxnx1SxJpu63BnKkqG98Cj1oh0gyA0mkA
cbBaco5C4AQaGVO0V7AsJccwkdKnlzunzf1SMb9CTq6JOe/272qZbVdlAYJZV8Ao
a33heoRnFwmKr2MBgWqUb87YIUSp
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:21:02 2026 by rpki-client