Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-unC9P4gRTvpL8qxgsCVgcgTLfE.cer
File: -unC9P4gRTvpL8qxgsCVgcgTLfE.cer (raw, json)
Hash identifier: ps+RZtgJRNRLUnIRnk2dg4JROLd160FOyLRFk+hCEKc=
Subject key identifier: FA:E9:C2:F4:FE:20:45:3B:E9:2F:CA:B1:82:C0:95:81:C8:13:2D:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028CAA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/-unC9P4gRTvpL8qxgsCVgcgTLfE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Feb 2026 09:41:52 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 140646
AS: 152600 -- 152603
IP: 103.12.36.0/22
IP: 103.189.212.0/23
IP: 203.98.89.0/24
IP: 2400:88e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 13:09:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167082 (0x28caa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 3 09:41:52 2026 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A919103F, serialNumber=FAE9C2F4FE20453BE92FCAB182C09581C8132DF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:22:fa:9c:af:40:f9:ae:21:70:4b:9c:1b:2e:
ed:6a:8a:dd:42:54:b9:95:cd:07:e3:7f:f3:4e:bd:
94:ea:da:ef:53:5c:5e:5f:7f:21:20:0d:84:b2:37:
c4:b6:62:43:99:d6:a0:90:0a:3d:ce:a4:81:04:7c:
fe:87:15:b5:11:33:16:6e:cd:dd:e0:28:65:23:a1:
d6:5f:c4:13:30:b6:dc:16:3e:15:14:85:a4:db:6f:
8f:dd:45:9b:2d:70:e8:62:17:50:de:cb:b2:c5:5e:
00:34:34:13:7d:2a:05:8e:e9:eb:d0:c2:be:b6:a0:
24:28:85:b2:e0:42:0f:6d:37:be:b0:6b:0e:99:e0:
ad:8e:4a:fb:e2:25:17:7a:43:8d:02:28:2b:cb:55:
9c:aa:3c:fc:b4:a3:a9:a8:fc:c3:c1:15:d2:c7:93:
76:05:00:f6:ae:a0:6c:b5:e4:bb:6d:fe:cc:65:51:
87:d3:6a:6b:0a:6a:e2:da:b9:a2:95:05:e0:39:24:
d3:af:34:3b:41:45:8d:30:86:30:78:4e:77:35:c1:
f5:b9:80:5c:18:74:a7:45:f4:42:98:0f:b7:dc:57:
c6:ed:b3:e7:7f:54:58:1c:21:c9:2a:3b:e5:58:56:
cc:75:fb:5e:32:3b:2b:75:ff:fe:20:d6:d5:93:92:
26:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E9:C2:F4:FE:20:45:3B:E9:2F:CA:B1:82:C0:95:81:C8:13:2D:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/-unC9P4gRTvpL8qxgsCVgcgTLfE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140646
152600-152603
sbgp-ipAddrBlock: critical
IPv4:
103.12.36.0/22
103.189.212.0/23
203.98.89.0/24
IPv6:
2400:88e0::/32
Signature Algorithm: sha256WithRSAEncryption
ce:69:9c:42:41:65:67:d5:b3:fe:b2:f8:d1:6b:ed:35:47:cf:
c7:47:02:bf:5d:f9:95:23:4f:21:43:00:c5:f0:47:d0:6d:5b:
07:17:3f:f4:90:5c:6d:ae:21:24:11:c4:7b:27:cb:08:fb:77:
8c:0f:e7:47:6d:7c:e2:99:ef:0f:a2:94:94:6d:ad:da:bb:ed:
d9:49:2f:a3:13:45:74:09:89:9d:05:63:3e:b5:ce:da:86:ce:
c3:0e:25:f6:81:38:b2:4d:c4:36:81:17:be:38:d2:29:68:42:
b1:b8:62:4e:a1:6f:45:d2:e8:3c:80:f7:7e:d0:70:20:ca:f2:
c9:2d:ce:e0:d3:3a:3e:e9:03:8d:7c:90:ac:3a:41:6f:70:77:
38:24:73:6d:53:89:08:c9:df:b9:35:46:0a:ca:c0:2a:a0:e5:
0a:af:63:e1:d0:5e:5e:0f:ef:67:25:c3:db:20:5f:31:1c:b1:
f7:1b:f3:5a:1d:7b:37:30:81:5c:0a:01:84:ce:52:c8:21:e5:
85:0c:2a:6e:80:d5:af:35:a8:b5:19:82:d9:57:22:6c:f9:ea:
ba:20:33:10:09:dc:85:e8:bf:26:94:93:0b:02:0b:4b:13:e3:
cb:90:41:9f:ea:92:10:29:01:b8:b8:43:8e:2f:30:0d:6e:8d:
8a:72:00:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 15:08:24 2026 by rpki-client