Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer
File: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer (raw, json)
Hash identifier: VAEndne70RwjchB4Uq7P15K/iKx6dG00NF8XyEbkfAg=
Subject key identifier: 50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0285EB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 13 Jan 2026 13:47:41 +0000
Certificate not after: Sun 31 Jan 2027 00:00:00 +0000
Subordinate resources: AS: 132080
IP: 103.11.216.0/22
IP: 2400:fa60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165355 (0x285eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 13 13:47:41 2026 GMT
Not After : Jan 31 00:00:00 2027 GMT
Subject: CN=A91A3D65, serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d1:6c:1f:50:6e:e3:0d:eb:53:b4:29:c8:ae:
c7:2a:b8:b7:b1:c3:ff:80:d9:76:72:5d:3e:88:f9:
bd:12:38:e5:0a:91:85:67:67:63:8d:10:ff:4e:90:
b5:27:f8:0b:94:99:87:f4:d8:fd:5d:82:56:71:ec:
cb:71:ed:4e:a1:b0:44:8e:c0:98:0e:5d:61:6e:bd:
e1:89:5a:1a:54:3b:bf:c9:6c:af:1a:bf:04:da:fd:
3e:c1:4c:02:20:c0:84:20:aa:a5:29:25:37:1f:7e:
a6:6c:ca:71:29:fb:b4:39:ee:a0:07:06:b4:3b:a4:
b9:77:b1:2e:24:fd:48:e0:74:9a:90:34:42:3e:15:
70:3a:53:87:ca:ec:5a:9f:ed:ae:20:de:b6:af:50:
a2:d4:23:c8:29:4a:d2:fd:ab:cd:6e:e3:b7:90:3c:
ff:f3:98:3f:da:8d:8d:a1:a9:10:01:32:d2:a2:cd:
76:79:62:ab:b8:ec:ff:23:81:16:18:2c:f2:80:e9:
55:6c:73:d1:f9:a3:58:ce:1b:ad:1f:0e:d1:52:4b:
38:67:66:03:8e:2c:7b:d7:bf:e5:08:cc:59:55:50:
66:45:20:56:d0:11:06:31:40:bc:65:30:97:a0:f8:
b4:58:44:44:34:c2:71:ee:47:f5:d9:e4:bc:0f:29:
39:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132080
sbgp-ipAddrBlock: critical
IPv4:
103.11.216.0/22
IPv6:
2400:fa60::/32
Signature Algorithm: sha256WithRSAEncryption
71:6a:97:b9:5c:43:c8:cd:d7:5f:61:3d:5d:23:50:6a:d7:7e:
75:6a:3e:65:b3:9b:f8:f0:c3:40:02:ee:ba:91:12:73:8d:f2:
ff:4d:04:1a:2e:7f:b4:cf:df:92:5b:98:0c:0a:3f:f3:b1:88:
b9:d2:d3:cf:a9:6d:9d:e1:c6:23:ab:0e:47:ec:77:f0:5e:dc:
e8:45:99:f0:f7:34:cf:68:10:a5:52:19:b0:a6:bc:f6:c4:73:
a8:04:04:16:82:09:98:d8:82:e9:71:30:e9:22:76:78:ba:af:
5c:42:de:2f:b7:bf:9e:fc:e2:d1:15:c4:70:0a:e9:e0:10:2e:
f8:2e:78:26:48:eb:09:49:75:14:28:ab:9c:fd:78:6c:15:e6:
d2:df:32:b5:a6:e2:a2:1f:79:41:66:0d:a5:a1:27:b1:5a:e9:
ba:87:b5:71:9b:c0:7b:fd:a0:bb:fb:b6:3f:61:a0:49:10:6a:
a8:a7:70:09:64:b9:45:11:38:2a:4b:f0:9e:2c:65:e6:61:a8:
dd:a6:84:52:cf:50:85:e9:3a:70:e0:63:06:ac:a8:be:43:27:
77:f7:36:23:97:26:c9:94:ee:e7:34:f8:cf:8e:fe:46:ac:bf:
db:05:55:ae:0a:f2:af:8e:b0:92:93:e8:f8:d3:e4:eb:08:d2:
6c:45:7e:56
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAoXrMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDExMzEzNDc0MVoXDTI3MDEzMTAwMDAwMFowRjERMA8G
A1UEAwwIQTkxQTNENjUxMTAvBgNVBAUTKDUwMDhCRTA0MUY5OTk3QjI1OUQyNTg0
NDgzQTUzQTBERkYwQjE3OEMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDQ0WwfUG7jDetTtCnIrscquLexw/+A2XZyXT6I+b0SOOUKkYVnZ2ONEP9OkLUn
+AuUmYf02P1dglZx7Mtx7U6hsESOwJgOXWFuveGJWhpUO7/JbK8avwTa/T7BTAIg
wIQgqqUpJTcffqZsynEp+7Q57qAHBrQ7pLl3sS4k/UjgdJqQNEI+FXA6U4fK7Fqf
7a4g3ravUKLUI8gpStL9q81u47eQPP/zmD/ajY2hqRABMtKizXZ5Yqu47P8jgRYY
LPKA6VVsc9H5o1jOG60fDtFSSzhnZgOOLHvXv+UIzFlVUGZFIFbQEQYxQLxlMJeg
+LRYREQ0wnHuR/XZ5LwPKTmtAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUUAi+BB+Z
l7JZ0lhEg6U6Df8LF4wwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUEzRDY1L0VBMUU2MkQ2N0M3NTExRUQ4QkU2NUIzOEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBM0Q2NS9FQTFFNjJENjdDNzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkIt
Wmw3SlowbGhFZzZVNkRmOExGNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgPwMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZwvYMA0EAgAC
MAcDBQAkAPpgMA0GCSqGSIb3DQEBCwUAA4IBAQBxape5XEPIzddfYT1dI1Bq1351
aj5ls5v48MNAAu66kRJzjfL/TQQaLn+0z9+SW5gMCj/zsYi50tPPqW2d4cYjqw5H
7HfwXtzoRZnw9zTPaBClUhmwprz2xHOoBAQWggmY2ILpcTDpInZ4uq9cQt4vt7+e
/OLRFcRwCungEC74LngmSOsJSXUUKKuc/XhsFebS3zK1puKiH3lBZg2loSexWum6
h7Vxm8B7/aC7+7Y/YaBJEGqop3AJZLlFETgqS/CeLGXmYajdpoRSz1CF6Tpw4GMG
rKi+Qyd39zYjlybJlO7nNPjPjv5GrL/bBVWuCvKvjrCSk+j40+TrCNJsRX5W
-----END CERTIFICATE-----
Generated at Thu Feb 19 18:50:27 2026 by rpki-client