Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-GGkJMXdlLdB2BgJtff_OVVjdl4.cer
File: -GGkJMXdlLdB2BgJtff_OVVjdl4.cer (raw, json)
Hash identifier: YtwrYWn1hhaXBbA1tjZtS2YQjjWFemBVRyezNzoIRDc=
Subject key identifier: F8:61:A4:24:C5:DD:94:B7:41:D8:18:09:B5:F7:FF:39:55:63:76:5E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028DA9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Feb 2026 13:05:10 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 149496
IP: 103.180.244.0/23
IP: 2001:df0:6340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 13:09:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167337 (0x28da9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 6 13:05:10 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A915B6E9, serialNumber=F861A424C5DD94B741D81809B5F7FF395563765E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a4:37:e8:88:c1:00:1a:b7:8d:82:8d:87:ba:
51:76:dd:43:5d:c8:04:3b:35:c3:84:51:15:ac:5c:
f6:7f:7f:03:b3:47:80:96:72:70:2d:b8:d5:40:fd:
be:4c:0b:fd:a0:c4:81:fc:57:2b:cc:82:ca:92:3a:
4f:dd:d6:c5:71:8c:0f:30:e9:63:fa:7a:36:f5:81:
9a:8e:9c:b0:00:00:55:51:15:9e:b2:b6:76:1a:b6:
a0:b9:6c:99:0f:0a:56:02:37:62:a5:f0:0a:28:2d:
a3:cb:08:38:26:d0:29:bc:3d:39:b6:70:e4:1f:dc:
45:8d:37:ee:1e:88:af:57:da:6d:b0:68:bd:bd:29:
c6:b6:fb:1e:e5:43:3b:63:6d:5c:ac:91:fa:04:fe:
19:1d:75:ab:18:43:1f:a3:88:2a:9f:28:e8:86:fe:
bc:6f:37:6d:30:2c:b8:e1:9a:b9:32:b4:8c:af:ef:
d7:34:d9:85:76:26:03:f2:f4:a6:b7:97:c6:51:12:
e0:49:c0:59:b2:1b:b1:25:47:93:18:e9:71:ab:b4:
5c:ac:32:1b:0c:6e:ed:d9:ac:8e:45:e3:2a:e4:11:
20:58:fb:e4:ce:07:15:11:f8:5c:7e:df:34:44:5b:
a7:f1:01:07:f9:f6:76:d9:98:f3:83:03:09:d2:56:
81:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:61:A4:24:C5:DD:94:B7:41:D8:18:09:B5:F7:FF:39:55:63:76:5E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149496
sbgp-ipAddrBlock: critical
IPv4:
103.180.244.0/23
IPv6:
2001:df0:6340::/48
Signature Algorithm: sha256WithRSAEncryption
82:bf:7e:2b:cb:01:81:f7:76:1b:80:80:05:7b:75:90:56:0d:
cd:2f:61:f4:b1:44:3f:02:c9:bb:d7:87:0e:52:f1:7e:07:50:
b7:4d:17:57:9b:8a:e0:c7:61:4b:d6:d1:4a:85:30:78:df:5e:
8a:d1:14:8e:a9:19:21:88:67:53:3f:1c:76:84:e4:d4:af:5f:
a7:02:1e:c1:fa:31:af:89:3a:7b:7e:8e:89:c1:2d:25:d0:f9:
37:c3:6b:8f:fb:4a:64:37:49:ed:9b:2d:4b:0a:99:45:47:f5:
00:0b:de:5a:50:a9:73:84:0b:32:b2:ae:3c:1d:78:1e:4e:ca:
f5:be:c4:38:e5:49:03:03:8c:29:35:63:a2:b1:66:d6:58:ab:
72:4c:22:c1:66:da:ab:88:34:5c:e3:0e:30:0c:4b:a8:75:02:
ee:28:c6:d0:ac:d0:1e:f1:14:9f:63:f5:15:d0:3f:4c:3a:cd:
57:2f:89:6f:f1:e4:4d:c9:e8:f6:7c:95:62:30:28:ce:4e:58:
76:50:1e:77:c4:6e:e8:34:1e:01:b5:63:e6:f2:ed:f0:01:8a:
01:62:86:e4:99:2d:0d:f1:a3:d7:4a:0a:16:e5:37:da:54:a0:
bb:4f:f9:00:3b:a1:09:82:8f:7a:89:e2:11:46:9a:67:90:d1:
06:ea:dc:eb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Feb 19 15:05:10 2026 by rpki-client