Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sumTicSsA0jYrsh1t0aJ0E5wyDo.cer
File: sumTicSsA0jYrsh1t0aJ0E5wyDo.cer (raw, json)
Hash identifier: i6+bfk8OlQgceux2JyXdzRnQ6EoDUiKAQrh80/GH1r4=
Subject key identifier: B2:E9:93:89:C4:AC:03:48:D8:AE:C8:75:B7:46:89:D0:4E:70:C8:3A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A829
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/sumTicSsA0jYrsh1t0aJ0E5wyDo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Mar 2026 14:52:01 +0000
Certificate not after: Sat 01 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 136986
IP: 103.149.39.0/24
IP: 103.162.126.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Apr 2026 14:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174121 (0x2a829)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 31 14:52:01 2026 GMT
Not After : Aug 1 00:00:00 2026 GMT
Subject: CN=A91E77A1, serialNumber=B2E99389C4AC0348D8AEC875B74689D04E70C83A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:43:f5:41:51:96:94:45:00:93:ee:71:46:e0:
d8:a8:b0:23:8a:ab:58:c8:5c:2f:e5:37:5a:d8:97:
c2:41:65:79:99:05:83:b7:59:dc:2c:f5:f6:25:f9:
65:54:0a:dd:64:e2:a6:8a:fc:75:1a:25:3c:06:00:
77:49:03:b7:86:de:0c:1a:cf:0f:2d:2d:53:2d:ec:
c3:27:fb:a8:b7:53:06:61:c4:6b:1d:e8:30:e1:fe:
10:9d:e1:8a:61:6a:83:45:54:52:2c:49:d5:d3:b3:
0f:5b:8e:eb:3a:7b:33:ca:ad:20:93:62:fa:76:ea:
3a:ed:82:9b:13:70:be:3d:10:5f:3d:a7:d5:2d:21:
35:95:8c:f5:8d:6b:15:5a:72:e5:cc:d2:cd:27:89:
94:02:fc:5f:13:99:34:89:d8:eb:30:98:b7:74:a3:
da:d2:98:36:06:58:32:99:14:66:9e:98:9f:d9:07:
ef:a3:3b:b3:02:2b:b7:7f:1d:f6:b2:9a:3e:16:62:
d9:08:75:db:d6:0d:5a:cf:d5:0c:6f:66:63:b5:dc:
ab:15:f9:a2:81:41:85:45:36:96:53:b2:c5:f9:f6:
7c:d4:df:97:7a:92:30:e9:0a:33:5e:09:21:47:3f:
06:c9:38:34:48:69:cf:22:e6:60:fd:76:80:27:95:
e3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E9:93:89:C4:AC:03:48:D8:AE:C8:75:B7:46:89:D0:4E:70:C8:3A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/sumTicSsA0jYrsh1t0aJ0E5wyDo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136986
sbgp-ipAddrBlock: critical
IPv4:
103.149.39.0/24
103.162.126.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:4f:dc:09:a0:09:66:22:2e:3d:85:fb:d1:22:dd:18:c6:fd:
b2:94:ec:9b:db:4d:76:aa:e5:9f:b3:db:c7:9c:3a:c1:4d:44:
b6:67:18:69:9f:19:ae:c1:60:a8:21:d2:54:7a:f3:f5:d5:0f:
95:a3:34:a9:ea:83:47:32:71:03:19:b1:ef:98:36:45:6a:68:
79:49:cc:91:88:74:21:d5:99:be:af:23:e1:de:87:31:d6:4e:
d8:35:0b:69:62:bb:dc:b2:c4:cf:5d:63:f9:7b:ac:29:33:fe:
ff:4c:ed:27:a3:86:84:c5:1b:34:76:57:55:4b:e7:70:4e:93:
05:1e:7c:f9:f6:9f:3c:f3:2e:ec:b2:a7:04:8b:42:dd:e6:1a:
d6:67:56:72:00:45:44:f8:6d:f0:8a:ee:33:a3:69:d4:fe:48:
f9:4f:ae:5f:d7:9f:c5:f9:d3:dd:6f:39:fb:9d:f8:f0:db:63:
77:70:52:f7:8d:4b:16:bb:da:31:19:2f:68:7a:1d:f4:25:57:
af:75:69:b0:d1:29:a2:e2:1e:3c:40:5c:3a:5d:31:62:ae:88:
49:36:4f:5a:dc:d1:24:85:8b:50:c5:e3:cb:5c:b5:02:f7:00:
39:53:d4:1d:3e:9e:d5:32:73:ed:12:37:7e:23:5d:b3:b6:fa:
95:33:0a:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 5 18:33:19 2026 by rpki-client