Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer
File: XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer (raw, json)
Hash identifier: KVVeDlRT3naA2hxLSM44jAyjG0+rQpLqT+TLqRBOdXc=
Subject key identifier: 5C:45:AD:00:0B:BD:50:A7:0F:93:A5:CB:70:B6:66:80:A5:28:ED:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A748
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Mar 2026 12:56:55 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: IP: 103.162.102.0/23
IP: 2407:1740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Apr 2026 14:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173896 (0x2a748)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 30 12:56:55 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A9142812, serialNumber=5C45AD000BBD50A70F93A5CB70B66680A528EDC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0e:9b:08:1e:09:47:17:bc:f0:2a:8c:87:e3:
c1:41:8f:e9:77:20:c3:a3:fb:28:fe:9a:fa:13:d2:
05:cb:5f:19:7e:0a:d3:db:9b:94:91:ca:1d:f2:95:
a1:8c:95:f7:da:a3:3a:21:aa:21:b4:75:87:f3:8e:
ec:26:26:bd:ac:cd:7e:50:41:42:64:cf:0b:1d:1e:
71:3c:10:79:d1:05:9e:51:05:2b:82:82:73:71:e4:
18:1c:bf:b5:11:63:83:fa:8a:c5:07:e9:d9:1d:3b:
b2:ea:ae:49:40:d3:aa:9a:8f:72:68:63:a2:f7:dd:
04:1d:3b:f5:c4:07:c9:ff:33:88:75:6d:e3:26:da:
70:00:62:86:a6:52:71:6b:c1:96:d6:d6:48:52:41:
62:de:76:0a:27:b9:e6:39:bc:c7:b7:00:ed:5d:29:
51:03:17:6b:5e:28:f7:e0:e6:b4:3c:47:52:f6:78:
81:ef:e0:9b:0c:31:fc:1f:59:49:e5:9a:74:e9:c3:
79:f1:d2:ed:ba:6a:7a:ac:92:d7:7e:f1:01:59:9d:
cb:96:e7:a2:d3:d6:b5:57:48:ee:4e:e0:70:d6:6c:
0d:81:17:9c:73:0b:a1:d7:d5:3b:38:d7:9d:ae:83:
53:45:26:08:16:fb:b0:c0:d0:53:2c:dc:aa:48:47:
54:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:45:AD:00:0B:BD:50:A7:0F:93:A5:CB:70:B6:66:80:A5:28:ED:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.162.102.0/23
IPv6:
2407:1740::/32
Signature Algorithm: sha256WithRSAEncryption
88:ca:78:df:b2:24:45:bb:46:8b:f5:f7:5c:52:09:ab:12:b6:
ca:8d:cf:e7:3d:18:f3:40:98:67:f3:ef:55:99:59:89:14:71:
7c:9d:b1:76:75:e7:ba:9b:3d:4c:93:41:f8:7d:53:a2:5d:11:
8c:6d:cc:44:43:8e:2c:1e:7b:f4:c3:49:6c:c4:09:be:9e:12:
4f:a8:b1:39:fd:2a:4c:c0:99:2c:9f:b2:37:95:48:20:67:f0:
83:b1:a4:75:9e:ea:90:c7:6e:99:b6:75:a3:b8:92:5a:bb:fe:
04:ea:88:f6:ba:06:eb:2b:7a:3e:35:09:14:b0:b2:d8:f8:d8:
73:a0:c4:cd:82:0e:2e:1d:9c:47:c7:ca:fc:30:8a:0c:87:d0:
0b:2c:e0:94:11:a3:ec:72:98:b0:1c:7a:f9:db:64:e3:e7:2b:
c3:4c:29:90:ea:0d:4a:79:4c:3d:26:85:65:47:4e:a0:69:85:
5b:ef:27:c7:6c:ae:34:45:00:36:f8:f5:cb:91:f3:f4:50:6b:
9b:8f:6e:c9:d1:ce:0c:1d:fc:01:30:10:f4:1e:92:02:3c:ca:
d0:67:93:23:e2:ce:fa:e3:00:93:29:34:93:e0:0d:cd:76:46:
4e:cc:f1:e1:02:67:99:8b:6b:3e:d9:ea:e2:75:37:0b:04:c4:
19:bc:30:d5
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgIDAqdIMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDMzMDEyNTY1NVoXDTI3MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNDI4MTIxMTAvBgNVBAUTKDVDNDVBRDAwMEJCRDUwQTcwRjkzQTVD
QjcwQjY2NjgwQTUyOEVEQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC7DpsIHglHF7zwKoyH48FBj+l3IMOj+yj+mvoT0gXLXxl+CtPbm5SRyh3ylaGM
lffaozohqiG0dYfzjuwmJr2szX5QQUJkzwsdHnE8EHnRBZ5RBSuCgnNx5Bgcv7UR
Y4P6isUH6dkdO7LqrklA06qaj3JoY6L33QQdO/XEB8n/M4h1beMm2nAAYoamUnFr
wZbW1khSQWLedgonueY5vMe3AO1dKVEDF2teKPfg5rQ8R1L2eIHv4JsMMfwfWUnl
mnTpw3nx0u26anqsktd+8QFZncuW56LT1rVXSO5O4HDWbA2BF5xzC6HX1Ts4152u
g1NFJggW+7DA0FMs3KpIR1R/AgMBAAGjggMCMIIC/jAdBgNVHQ4EFgQUXEWtAAu9
UKcPk6XLcLZmgKUo7cAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQyODEyL0MxRTVERDFFODA3QjExRUJBODNBQzAxREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0MjgxMi9DMUU1REQxRTgwN0IxMUVCQTgzQUMwMURDNEY5QUUwMi9YRVd0QUF1
OVVLY1BrNlhMY0xabWdLVW83Y0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8EHzAd
MAwEAgABMAYDBAFnomYwDQQCAAIwBwMFACQHF0AwDQYJKoZIhvcNAQELBQADggEB
AIjKeN+yJEW7Rov191xSCasStsqNz+c9GPNAmGfz71WZWYkUcXydsXZ157qbPUyT
Qfh9U6JdEYxtzERDjiwee/TDSWzECb6eEk+osTn9KkzAmSyfsjeVSCBn8IOxpHWe
6pDHbpm2daO4klq7/gTqiPa6Busrej41CRSwstj42HOgxM2CDi4dnEfHyvwwigyH
0Ass4JQRo+xymLAcevnbZOPnK8NMKZDqDUp5TD0mhWVHTqBphVvvJ8dsrjRFADb4
9cuR8/RQa5uPbsnRzgwd/AEwEPQekgI8ytBnkyPizvrjAJMpNJPgDc12Rk7M8eEC
Z5mLaz7Z6uJ1NwsExBm8MNU=
-----END CERTIFICATE-----
Generated at Sun Apr 5 19:39:41 2026 by rpki-client