Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vn-asrLHlpJoXAMFWvlp5gtmuAA.cer
File: Vn-asrLHlpJoXAMFWvlp5gtmuAA.cer (raw, json)
Hash identifier: KnDPeQ6B0akEkM8Bla4oSrkcfHDjnBUvNKte+zsl9rY=
Subject key identifier: 56:7F:9A:B2:B2:C7:96:92:68:5C:03:05:5A:F9:69:E6:0B:66:B8:00
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028A24
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/Vn-asrLHlpJoXAMFWvlp5gtmuAA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 Jan 2026 14:03:25 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 45867
AS: 132621
IP: 203.17.185.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166436 (0x28a24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 30 14:03:25 2026 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A91ADB98, serialNumber=567F9AB2B2C79692685C03055AF969E60B66B800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:06:44:c5:77:c2:4b:1b:fe:b0:0a:ea:c8:37:
9c:dc:ef:6d:8e:6b:04:6d:ed:83:e3:f2:c5:0d:75:
e8:04:eb:c8:02:50:06:c0:dd:f3:dc:38:5e:65:11:
ff:d7:ce:ad:77:ec:31:5a:d7:9b:b9:6a:59:c3:7d:
d9:82:86:22:a9:88:ec:c5:16:2c:a7:85:33:57:e9:
d9:70:a6:a7:fd:a2:97:aa:db:10:fd:7b:a4:f9:d0:
b8:c2:c8:0f:4c:63:51:bf:61:e2:8f:83:69:ab:1b:
28:11:34:10:a6:d3:34:81:a4:13:a1:53:80:7b:6b:
92:b2:31:ee:e1:bb:1a:c7:f9:7b:af:38:d3:7a:62:
ed:4e:b3:57:81:f2:25:28:2e:99:eb:7d:08:4b:48:
bb:10:2d:9c:36:9e:39:31:da:2e:8c:16:8d:4e:90:
27:1d:47:51:e5:bd:66:aa:9d:c0:9d:34:6a:a5:bd:
44:bd:42:5d:38:59:5f:f6:64:ae:40:b7:aa:dc:9c:
fa:34:3c:9a:e5:d4:02:9e:53:d0:f3:53:ff:e3:64:
83:99:59:51:94:86:b8:bf:b2:b7:31:0a:62:df:b6:
9f:37:3f:3d:7f:89:de:64:3f:73:a2:5a:ab:e5:b4:
21:6b:81:f7:50:44:1d:35:07:cf:42:be:39:e2:f6:
03:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:7F:9A:B2:B2:C7:96:92:68:5C:03:05:5A:F9:69:E6:0B:66:B8:00
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/Vn-asrLHlpJoXAMFWvlp5gtmuAA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45867
132621
sbgp-ipAddrBlock: critical
IPv4:
203.17.185.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:27:ba:48:42:41:c3:ff:e4:21:d3:57:f2:5a:ab:e4:07:c4:
71:2f:23:e9:6c:71:0a:5f:8c:a5:23:5f:9c:41:ad:84:e1:6a:
d5:24:98:c5:f6:7a:ed:f5:c5:f9:22:ed:e1:db:51:f3:9e:85:
8f:d6:bf:a1:69:31:be:2d:23:bc:28:f9:c3:cf:fd:14:32:79:
4c:69:38:1b:9f:27:cd:46:c2:2c:45:98:e8:c0:f9:37:f6:31:
2c:b8:32:41:61:a5:fc:d4:13:85:2b:49:e3:96:02:8c:6d:cf:
5c:cf:97:0c:ef:85:27:75:99:25:a3:df:78:62:d1:21:48:c9:
de:67:b7:8e:c6:60:17:d0:aa:db:d0:1c:2e:07:dc:97:27:df:
a2:2a:15:bc:ef:17:36:95:3a:b7:2e:ad:93:8b:00:a3:b7:e6:
1a:b8:4b:7d:b3:b2:af:9e:b4:15:f3:71:d2:0a:8d:58:cc:65:
4e:04:f5:ce:d4:f3:85:2d:ff:e0:e5:85:f4:ca:28:e4:3f:60:
dc:46:62:02:43:b0:5c:24:b0:49:71:25:60:fa:3e:fe:e2:93:
38:8f:54:e2:42:6f:8f:93:b0:0d:30:6b:53:94:80:eb:f9:05:
5e:c3:3f:06:8d:75:d7:6a:7c:7f:1f:88:d7:f9:4f:cc:30:ea:
21:54:15:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 20:36:35 2026 by rpki-client