Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer
File: TLC5W0vcIzFPKD73OalqfGWMCmw.cer (raw, json)
Hash identifier: I7CqFuJIBe19q3y9kqVJ+M6UhPcylVD0y6LYXEJ7aoI=
Subject key identifier: 4C:B0:B9:5B:4B:DC:23:31:4F:28:3E:F7:39:A9:6A:7C:65:8C:0A:6C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0289F5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 Jan 2026 12:31:39 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: AS: 137248
IP: 2001:df4:e5c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166389 (0x289f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 30 12:31:39 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A911E660, serialNumber=4CB0B95B4BDC23314F283EF739A96A7C658C0A6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cb:15:4e:e5:52:0b:f4:5a:d1:36:96:9d:8c:
3b:79:ca:a7:56:b2:d5:8c:77:7c:de:07:31:ec:55:
9a:c7:a5:bc:51:2a:83:32:c5:d4:21:38:cc:e8:5f:
c3:c0:f6:15:0b:9b:cc:f4:a8:15:10:0c:64:e1:e2:
24:c6:23:13:32:32:05:f7:24:e8:e0:28:ac:c6:ae:
27:e4:13:b1:e3:74:90:5f:96:4c:10:c9:7e:08:02:
9d:4b:b5:9a:6b:a3:4d:34:8c:d6:d1:ff:ff:5f:f9:
91:d2:a1:c4:b1:25:60:37:91:23:7b:a0:b0:eb:aa:
7a:c4:9b:90:c8:74:70:37:dc:69:42:39:4c:e9:d0:
5d:ee:ab:a7:6c:9b:86:b5:c5:0d:a5:b0:b4:67:4f:
8b:f0:24:1f:5f:07:a9:9c:62:3b:ed:cd:a3:7e:e3:
5e:9c:9c:1e:2c:8e:33:c8:cf:01:20:2c:2f:12:30:
9a:03:2e:06:da:6d:9e:6e:00:d0:e1:ff:b5:7f:72:
3e:61:e4:76:58:35:3f:33:28:8a:5b:25:92:97:d8:
ea:9e:c8:42:0d:74:9a:e3:bc:eb:1e:53:e9:25:6f:
9f:b9:65:bc:da:b6:18:05:c9:65:5d:53:45:b9:92:
9b:01:2c:6c:e2:35:82:55:ce:23:61:5c:1c:b1:af:
24:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B0:B9:5B:4B:DC:23:31:4F:28:3E:F7:39:A9:6A:7C:65:8C:0A:6C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137248
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:e5c0::/48
Signature Algorithm: sha256WithRSAEncryption
d0:3a:f9:d6:40:1f:08:7d:30:1f:ef:ab:c9:c8:d8:9e:7f:1a:
e8:46:5a:5d:c8:3f:a8:47:aa:f8:f5:d3:f1:ef:fe:80:df:26:
92:6b:af:79:d2:a8:73:6c:ca:fa:5f:b7:08:a7:99:3f:d5:31:
8b:9c:61:7f:aa:20:b5:aa:26:ca:c8:75:1f:0e:c5:da:64:f3:
8f:a0:a9:ae:2c:4e:19:83:d8:86:a9:49:a8:86:cc:6a:93:33:
1e:9f:2e:cf:4f:a9:ea:7d:dc:2a:53:d6:23:45:fa:d2:b8:e9:
f0:a4:d3:78:3f:b0:41:97:20:cb:34:87:75:34:33:90:4e:31:
28:a9:62:33:f8:af:26:83:52:4b:ca:57:98:47:79:94:bf:e2:
09:0e:87:70:66:ae:bd:a3:88:1e:05:ea:14:c6:ab:df:26:cd:
e8:33:cb:fb:ae:e1:e1:54:d8:9b:60:81:49:37:55:75:6d:27:
a2:bd:52:d0:18:cc:74:30:b3:de:15:07:de:0f:19:a7:a0:db:
a3:81:53:c0:ad:80:54:8c:8a:54:b0:01:fb:36:35:7b:b1:e7:
63:f1:94:25:55:70:73:dd:ef:23:12:4b:6b:c8:f4:f4:d4:77:
24:9a:6d:19:9b:0a:e9:2d:0c:61:2a:d7:91:34:c0:61:66:8a:
39:2e:ee:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 17:24:47 2026 by rpki-client