Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer
File: AJko8LjNMO2gVjCoumdOdiqdKDM.cer (raw, json)
Hash identifier: Ej+pBMspq8lvZCXkXXTo+UQl5ygwAu4y8eatixf5KNk=
Subject key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A8AF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 Apr 2026 09:13:09 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 1851
IP: 43.241.200.0/22
IP: 45.121.132.0/22
IP: 103.37.128.0/22
IP: 203.26.136.0/24
IP: 2403:7900::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Apr 2026 14:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174255 (0x2a8af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 09:13:09 2026 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91CE5A6, serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fd:b5:cf:7e:9c:dc:0e:ad:af:51:0c:64:40:
1e:8d:05:ce:e0:d8:72:87:b1:47:02:af:e5:b0:45:
1d:83:00:87:d2:23:7e:56:c8:ab:dc:fd:4e:f7:50:
e2:b0:29:cb:d6:59:28:bb:ff:ff:3f:83:99:0d:14:
2e:d7:82:b8:46:3b:16:6f:e6:1d:00:07:2d:ed:be:
8e:4a:1e:8d:28:bd:53:f5:3d:cc:a8:6b:d5:c9:45:
30:4a:3a:2a:80:5e:ea:28:c5:de:43:04:d7:b6:26:
d1:63:8b:fc:c3:74:a8:c9:83:b9:7f:ff:42:d3:68:
6c:5e:fc:7f:57:2a:6b:6c:44:af:46:56:31:f3:58:
9b:30:e2:92:ce:d1:d9:b2:7d:4f:18:e6:4a:32:10:
f8:33:d9:e2:ef:92:27:8e:1a:da:f5:2a:56:52:49:
7b:4c:74:1c:46:d4:b6:51:d3:7e:39:05:d5:ed:02:
aa:19:89:fa:6a:59:6e:db:fd:a9:f4:70:b8:46:49:
72:04:df:c8:89:af:a5:3d:37:f4:0d:3b:72:ee:63:
f6:62:22:26:4d:3c:ba:20:97:67:f0:06:bf:15:88:
11:e9:12:e0:51:41:50:35:70:68:11:80:f5:3c:5b:
d9:37:08:8e:e5:3a:0d:fc:30:dd:16:1c:33:d3:4c:
a4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
1851
sbgp-ipAddrBlock: critical
IPv4:
43.241.200.0/22
45.121.132.0/22
103.37.128.0/22
203.26.136.0/24
IPv6:
2403:7900::/32
Signature Algorithm: sha256WithRSAEncryption
3d:0c:15:70:8e:3d:11:8f:37:98:fe:9e:1b:87:68:e8:c7:d7:
0f:c6:c3:cf:ec:94:db:67:e0:9e:05:d6:31:ae:2f:93:ca:9d:
02:60:94:9f:e8:1f:8a:43:4e:b9:c6:48:a6:c5:52:78:0c:7f:
66:e8:f1:00:fc:7f:01:02:74:df:65:7c:e1:dd:76:d6:fe:95:
44:23:1f:7d:f8:6f:df:cc:ed:c3:64:ed:61:56:2b:34:93:70:
be:57:43:e8:c6:11:af:b3:b4:13:95:34:8b:01:41:81:0f:ff:
91:73:e3:f6:83:86:a1:b0:40:95:87:2a:a6:bf:61:ed:b2:d7:
9f:19:34:24:29:7a:2c:50:cc:59:00:49:5a:25:5a:39:b0:7f:
80:dc:e3:d7:7d:3e:8c:7a:61:be:6e:fa:4f:81:af:28:00:ae:
0c:2b:89:3b:53:3d:4a:55:df:ca:37:d4:99:55:38:9a:54:46:
9c:1b:8f:73:c8:fb:fb:7e:e4:02:f3:70:75:3a:19:2c:f8:e6:
f5:ea:28:7b:a5:37:be:b9:79:6a:c8:ea:ee:95:c1:83:0d:f9:
b3:11:e5:56:b0:6e:dc:96:03:03:11:92:38:46:86:17:b9:c3:
94:89:86:90:ba:26:ad:d7:68:a2:35:92:9f:65:1e:23:4d:7b:
70:89:a3:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 5 19:41:31 2026 by rpki-client