Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lA0nrhRKrcqeNFLLOMMjasv3Als.cer
File: lA0nrhRKrcqeNFLLOMMjasv3Als.cer (raw, json)
Hash identifier: yhEJRLEsnDYV9eVWDKz3jNQWZEPxI6YUA4AjlyvBeaA=
Subject key identifier: 94:0D:27:AE:14:4A:AD:CA:9E:34:52:CB:38:C3:23:6A:CB:F7:02:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02923D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919B460/02AE4672ED2A11F098C63121456F56BC/lA0nrhRKrcqeNFLLOMMjasv3Als.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919B460/02AE4672ED2A11F098C63121456F56BC/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:08:31 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 103.100.108.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168509 (0x2923d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:08:31 2026 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A919B460, serialNumber=940D27AE144AADCA9E3452CB38C3236ACBF7025B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ab:3e:c3:4c:a6:36:83:2c:60:c5:c0:3d:c2:
0c:7e:6f:e4:c9:29:84:70:31:ea:ea:e1:f1:2a:43:
a3:27:61:96:21:c0:4e:b4:d8:4c:9b:a0:ad:92:0f:
57:66:ce:fc:03:fe:37:b4:84:be:4a:93:b1:3a:df:
d1:17:8f:22:52:d7:fa:96:c1:8b:c1:92:38:a8:a1:
59:03:65:ec:cd:c4:0c:71:dc:70:64:86:ea:30:c7:
e3:3c:fa:bc:b4:58:96:e8:f9:46:af:2d:b9:a6:0a:
8a:b7:6f:f1:aa:8d:58:d5:63:6c:fb:68:e3:4f:cf:
ab:2b:cc:29:d4:be:2e:22:fe:48:6c:26:37:4b:07:
9e:2c:45:df:e5:94:eb:f8:d9:40:45:64:fc:7b:94:
cb:bc:7b:e8:22:5b:fd:f7:0d:15:b3:3c:d0:6c:e6:
60:0a:17:e3:b6:2d:d2:b4:1b:dd:50:ab:42:19:31:
72:67:18:49:9f:af:fb:83:4c:aa:cd:98:75:7a:23:
38:e5:00:01:75:12:96:e1:6c:a9:b8:55:32:0e:73:
f5:09:64:80:c2:4d:dc:41:29:51:40:f3:cc:28:97:
b3:df:a1:3e:98:13:1d:e1:f0:5f:9a:7a:42:51:c0:
c4:0a:9f:32:1e:1f:4a:b7:9f:c3:39:3e:77:c9:7c:
7d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:0D:27:AE:14:4A:AD:CA:9E:34:52:CB:38:C3:23:6A:CB:F7:02:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919B460/02AE4672ED2A11F098C63121456F56BC/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919B460/02AE4672ED2A11F098C63121456F56BC/lA0nrhRKrcqeNFLLOMMjasv3Als.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.108.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:33:58:39:78:2d:b3:ab:7a:13:03:ed:79:e6:2f:45:af:20:
ca:d2:46:73:0a:4a:cd:ca:45:f5:57:25:0b:1b:84:e3:7c:30:
8a:a3:65:e4:97:4b:9f:2f:61:66:51:33:06:74:96:9a:92:bf:
39:73:f9:aa:35:6e:48:b8:a4:a8:a8:5b:9a:00:14:1d:1e:27:
51:84:9e:2f:af:75:bc:2f:76:51:47:a5:bd:99:d4:f9:df:15:
bb:00:37:ce:3b:1f:13:a0:54:2e:61:b1:bf:ec:39:d0:35:ca:
ae:c9:40:a3:cf:ef:6a:39:e1:41:07:5d:f2:ed:29:2f:27:9b:
85:d2:0a:78:db:1d:88:a8:d5:fc:0f:7d:79:c5:5d:28:a8:bf:
51:11:51:ab:0e:95:a9:11:e1:69:b9:f2:5e:56:e4:08:a2:7e:
dd:07:7a:ac:ff:2c:0f:dd:96:a0:cc:ae:4d:ef:90:04:3e:b4:
96:23:64:85:c8:b5:34:18:dc:ec:6f:d8:2a:6d:8d:46:65:f2:
34:8a:25:f8:c8:cf:6b:f9:8f:92:bf:df:b7:f7:4e:aa:9a:ad:
20:68:11:b0:9c:79:c1:81:e2:2d:64:80:30:fa:2f:90:64:92:
42:a5:01:dd:44:bd:cb:72:3b:24:07:bd:6e:fa:b9:18:99:cd:
b5:90:af:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:08:50 2026 by rpki-client