Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer
File: HdG4aHiGkkxGExFgUO6Q6dSUJp4.cer (raw, json)
Hash identifier: dc3fY5T5MikwIzBx2wO0GJRqUfx+UJJEQlDNDmr3ZDo=
Subject key identifier: 1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028BB4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Feb 2026 12:31:30 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 9266
AS: 24219
AS: 24231
AS: 56273
IP: 103.36.152.0/22
IP: 103.65.216.0/22
IP: 103.225.108.0/22
IP: 202.1.116.0/22
IP: 203.5.244.0/24
IP: 203.8.204.0/24
IP: 203.10.124.0/24
IP: 203.12.116.0/24
IP: 203.14.106.0/24
IP: 203.14.193.0/24
IP: 203.18.151.0/24
IP: 203.19.52.0/24
IP: 203.19.220.0/23
IP: 203.20.110.0/23
IP: 203.21.22.0/24
IP: 203.22.169.0/24
IP: 203.23.50.0/24
IP: 203.23.71.0/24
IP: 203.24.174.0/23
IP: 203.25.68.0/22
IP: 203.25.123.0/24
IP: 203.25.158.0/24
IP: 203.26.157.0/24
IP: 203.26.171.0/24
IP: 203.26.226.0/23
IP: 203.29.21.0/24
IP: 203.29.127.0/24
IP: 203.30.78.0/24
IP: 203.31.214.0/24
IP: 203.32.44.0/23
IP: 203.32.47.0/24
IP: 203.32.190.0/23
IP: 203.33.28.0/24
IP: 203.33.58.0/23
IP: 203.33.108.0/23
IP: 203.33.142.0/24
IP: 203.34.167.0/24
IP: 203.55.194.0/23
IP: 203.56.251.0/24
IP: 203.62.147.0/24
IP: 2403:6400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166836 (0x28bb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 2 12:31:30 2026 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A911D848, serialNumber=1DD1B8687886924C4613116050EE90E9D494269E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:73:a9:77:15:1e:50:f9:f6:55:23:0b:96:aa:
a7:2a:66:2d:15:20:20:a1:a0:1c:0e:12:7e:92:d7:
5e:ac:ae:11:3f:62:05:bf:74:75:9c:dc:2e:9b:60:
14:09:da:a1:3f:66:40:29:1b:64:47:c8:70:18:31:
95:23:ee:4e:52:eb:c4:f9:61:6a:6c:2b:ce:6a:7e:
19:c6:03:4f:6c:74:00:26:55:93:46:5d:5a:f3:7c:
4a:3d:80:f4:40:6b:13:b6:11:a8:91:7f:ac:cc:c9:
6c:29:a9:91:00:f7:b8:4f:03:72:da:97:5a:00:b4:
73:02:ab:71:42:33:c8:ef:1f:71:03:a0:c6:de:cd:
86:c5:8f:a0:10:dd:b5:03:29:ee:42:e1:eb:99:94:
33:96:20:7a:61:66:ff:68:ca:a8:d6:37:25:74:80:
03:49:45:3f:45:24:b3:c6:c7:ba:22:d3:ae:bb:4d:
0a:a0:2e:e6:5f:91:43:4a:42:0e:c5:2f:de:b1:5f:
80:09:b5:67:12:1c:03:2b:f8:72:60:59:04:46:4d:
33:8f:91:33:e8:cf:ff:ed:33:32:c9:20:40:3c:f6:
47:89:cf:1a:57:4e:60:92:e2:bb:3e:2a:70:de:c7:
f1:1e:68:3f:8f:af:ed:b8:4e:c6:0c:a0:65:b0:3a:
35:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D1:B8:68:78:86:92:4C:46:13:11:60:50:EE:90:E9:D4:94:26:9E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911D848/C251B5B29B1011EFA72BA020C4F9AE02/HdG4aHiGkkxGExFgUO6Q6dSUJp4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9266
24219
24231
56273
sbgp-ipAddrBlock: critical
IPv4:
103.36.152.0/22
103.65.216.0/22
103.225.108.0/22
202.1.116.0/22
203.5.244.0/24
203.8.204.0/24
203.10.124.0/24
203.12.116.0/24
203.14.106.0/24
203.14.193.0/24
203.18.151.0/24
203.19.52.0/24
203.19.220.0/23
203.20.110.0/23
203.21.22.0/24
203.22.169.0/24
203.23.50.0/24
203.23.71.0/24
203.24.174.0/23
203.25.68.0/22
203.25.123.0/24
203.25.158.0/24
203.26.157.0/24
203.26.171.0/24
203.26.226.0/23
203.29.21.0/24
203.29.127.0/24
203.30.78.0/24
203.31.214.0/24
203.32.44.0/23
203.32.47.0/24
203.32.190.0/23
203.33.28.0/24
203.33.58.0/23
203.33.108.0/23
203.33.142.0/24
203.34.167.0/24
203.55.194.0/23
203.56.251.0/24
203.62.147.0/24
IPv6:
2403:6400::/32
Signature Algorithm: sha256WithRSAEncryption
1b:14:f8:7c:24:5c:37:5f:af:47:de:da:72:1f:ad:18:3d:04:
a6:e4:71:cf:69:ff:6c:ce:6e:98:2b:5b:8c:07:bb:cf:a5:7c:
10:34:e0:54:ff:d0:a5:f3:48:79:8b:bf:97:ae:bb:30:cd:f9:
4d:d7:2a:ef:96:a3:c2:0a:48:c4:8f:85:cc:ed:d8:1e:17:72:
81:72:26:af:f3:c6:94:9c:64:54:48:b9:e3:e6:1f:42:cd:46:
d8:e0:b9:54:a4:9c:6f:10:ef:c7:1d:a9:13:fa:17:58:49:d2:
a5:af:6c:bb:18:2a:6f:44:fb:55:cf:35:2a:3e:68:9c:aa:de:
4b:f2:ee:52:4e:43:82:02:20:02:78:31:41:1e:b0:cd:e6:2d:
a4:46:b3:22:7c:9c:7e:a9:6b:ae:f4:1f:5a:06:fc:48:a4:ef:
19:4d:d0:df:1c:43:38:b0:2f:5c:67:c5:4b:01:02:ca:c7:b9:
3d:d1:ef:ed:d1:ea:df:4e:a9:4f:9a:e1:2d:e1:c1:32:4a:66:
7e:c9:5d:4f:f7:eb:1d:63:76:b7:17:0d:b6:7f:55:1c:a5:41:
c8:3f:19:7c:88:8c:55:1a:44:0c:b3:56:7f:ce:fe:5a:d1:6e:
d6:bd:c9:9c:89:8a:f3:b0:74:99:da:51:43:61:ef:6c:1c:37:
93:b3:ab:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 17:25:24 2026 by rpki-client