Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KReZ-6UZ0CQCTzDZIxfgiURSFK0.cer
File: KReZ-6UZ0CQCTzDZIxfgiURSFK0.cer (raw, json)
Hash identifier: MLRWknCsFybBQjrhz4Bnv1rdTA/F3jZZo1mgNPIXcnU=
Subject key identifier: 29:17:99:FB:A5:19:D0:24:02:4F:30:D9:23:17:E0:89:44:52:14:AD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A7C3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9137140/F4A78E602CC811F1A1767FCF90833773/KReZ-6UZ0CQCTzDZIxfgiURSFK0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9137140/F4A78E602CC811F1A1767FCF90833773/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Mar 2026 06:15:08 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: AS: 154570
IP: 203.16.185.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Apr 2026 14:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174019 (0x2a7c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 31 06:15:08 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A9137140, serialNumber=291799FBA519D024024F30D92317E089445214AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:29:d0:23:b5:b6:a4:01:98:7e:4b:17:b3:8c:
15:cb:12:c1:8d:f8:93:1e:91:f2:c9:c0:8f:f1:97:
ce:12:25:d9:a4:d9:0b:88:54:57:fc:1b:15:8c:57:
08:cd:68:33:d5:24:c2:62:75:7a:2b:74:ae:4f:27:
57:96:9c:88:0a:9b:ea:dd:81:41:d5:05:d8:99:29:
2f:59:16:da:9c:65:93:80:c2:8c:d1:fb:ac:d3:0f:
95:a4:d3:61:51:51:c9:68:ec:1d:0b:14:57:14:81:
18:51:19:dd:94:34:b0:37:9c:ee:48:df:89:4b:49:
65:1d:23:cc:86:27:9f:61:3f:1c:43:6c:11:58:6e:
f6:be:f5:90:00:12:36:4b:71:9d:8c:11:63:fa:31:
4a:6a:2f:45:a9:69:c0:3e:83:8c:ad:54:ae:ef:0b:
14:1a:75:91:b8:14:54:6a:92:20:40:52:3a:ff:b8:
4f:68:29:47:57:d8:8f:89:2e:cf:eb:d3:6b:12:6d:
2e:20:ba:98:74:a7:b7:28:e9:88:ee:75:54:17:6c:
63:85:24:4e:b1:f5:52:d4:4a:3c:b0:22:b2:51:49:
a5:fc:f8:46:00:b5:08:52:ee:06:4d:6e:bc:b2:04:
5d:04:7b:8a:cb:f8:0a:42:f4:78:5e:10:d9:c4:d3:
49:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:17:99:FB:A5:19:D0:24:02:4F:30:D9:23:17:E0:89:44:52:14:AD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9137140/F4A78E602CC811F1A1767FCF90833773/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9137140/F4A78E602CC811F1A1767FCF90833773/KReZ-6UZ0CQCTzDZIxfgiURSFK0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
154570
sbgp-ipAddrBlock: critical
IPv4:
203.16.185.0/24
Signature Algorithm: sha256WithRSAEncryption
13:9f:8b:73:af:21:72:68:bd:99:53:a3:57:b0:ee:96:d2:b8:
d3:d9:e4:9c:68:f6:cd:94:ce:0c:75:83:3d:03:fc:6e:cb:de:
73:d7:4c:b6:68:6f:72:80:31:85:74:23:8b:6f:e7:f5:5f:1a:
49:99:e7:9f:85:a6:64:0a:86:68:ae:94:9f:32:fc:eb:5c:16:
b6:51:02:4a:ac:ce:04:da:79:23:6c:0c:ca:d6:97:48:de:69:
8a:cb:96:52:3b:fd:6b:c7:99:f4:f6:25:82:c4:4c:fd:7d:02:
d7:6a:8e:27:a1:bc:c5:76:d3:40:5a:a2:95:0e:d4:d3:c7:5e:
6e:41:e3:c9:a0:40:d8:be:81:3b:dd:10:c4:73:fc:17:97:aa:
c7:45:c7:e2:74:50:7c:3f:d3:bd:09:2c:05:66:60:0b:1e:e0:
d3:bf:9b:d7:c7:70:20:1b:c8:ca:fb:74:b0:3d:e7:6b:aa:b6:
7e:35:63:f8:ed:d3:88:49:54:9e:a6:2a:34:2c:c3:b1:5d:69:
b1:b9:41:1d:25:c4:70:2b:78:e4:b8:68:08:0e:54:16:2c:bd:
58:20:39:d4:3b:cd:c4:c7:05:f7:db:31:d1:ae:f1:08:2e:c3:
4c:19:88:aa:b3:58:12:b3:2d:36:c0:e2:36:a4:ca:b1:06:e1:
a4:27:2c:c5
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAqfDMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDMzMTA2MTUwOFoXDTI3MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzcxNDAxMTAvBgNVBAUTKDI5MTc5OUZCQTUxOUQwMjQwMjRGMzBE
OTIzMTdFMDg5NDQ1MjE0QUQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC2KdAjtbakAZh+SxezjBXLEsGN+JMekfLJwI/xl84SJdmk2QuIVFf8GxWMVwjN
aDPVJMJidXordK5PJ1eWnIgKm+rdgUHVBdiZKS9ZFtqcZZOAwozR+6zTD5Wk02FR
Uclo7B0LFFcUgRhRGd2UNLA3nO5I34lLSWUdI8yGJ59hPxxDbBFYbva+9ZAAEjZL
cZ2MEWP6MUpqL0WpacA+g4ytVK7vCxQadZG4FFRqkiBAUjr/uE9oKUdX2I+JLs/r
02sSbS4guph0p7co6YjudVQXbGOFJE6x9VLUSjywIrJRSaX8+EYAtQhS7gZNbryy
BF0Ee4rL+ApC9HheENnE00lVAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUKReZ+6UZ
0CQCTzDZIxfgiURSFK0wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTM3MTQwL0Y0QTc4RTYwMkNDODExRjFBMTc2N0ZDRjkwODMzNzczLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzNzE0MC9GNEE3OEU2MDJDQzgxMUYxQTE3NjdGQ0Y5MDgzMzc3My9LUmVaLTZV
WjBDUUNUekRaSXhmZ2lVUlNGSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlvKMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyxC5MA0GCSqG
SIb3DQEBCwUAA4IBAQATn4tzryFyaL2ZU6NXsO6W0rjT2eScaPbNlM4MdYM9A/xu
y95z10y2aG9ygDGFdCOLb+f1XxpJmeefhaZkCoZorpSfMvzrXBa2UQJKrM4E2nkj
bAzK1pdI3mmKy5ZSO/1rx5n09iWCxEz9fQLXao4nobzFdtNAWqKVDtTTx15uQePJ
oEDYvoE73RDEc/wXl6rHRcfidFB8P9O9CSwFZmALHuDTv5vXx3AgG8jK+3SwPedr
qrZ+NWP47dOISVSepio0LMOxXWmxuUEdJcRwK3jkuGgIDlQWLL1YIDnUO83ExwX3
2zHRrvEILsNMGYiqs1gSsy02wOI2pMqxBuGkJyzF
-----END CERTIFICATE-----
Generated at Sun Apr 5 18:28:01 2026 by rpki-client