Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer
File: 2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer (raw, json)
Hash identifier: 2LL6G2rz/LnQ3lzFGZ+G5Gut+tIJ0X3uERCC35CmdG4=
Subject key identifier: DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02AA27
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 Apr 2026 13:40:17 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 151049
IP: 103.121.64.0/23
IP: 2400:efa0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174631 (0x2aa27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 3 13:40:17 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A918A56A, serialNumber=DA4310B2F0879DF4BD9839A14C8E3FBBB6F1EBF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:72:0b:17:3c:8b:fb:99:df:44:8a:16:da:06:
98:43:c9:8c:50:73:7c:1a:3d:54:7c:7f:74:e0:bc:
c1:a4:f3:a8:d1:16:13:9e:40:c6:8f:39:b4:01:cf:
b5:93:ac:05:03:fd:a0:ce:4d:3e:a0:88:7a:b5:95:
d3:8a:4c:81:73:96:6d:79:32:1f:28:52:47:70:55:
af:49:44:ab:0a:f6:9c:4a:ad:3e:f2:6c:d3:da:5f:
57:6a:74:08:8d:b9:ec:96:f4:25:4f:bf:21:48:34:
79:76:e0:e3:21:97:4c:10:48:76:f7:e5:87:07:c7:
e0:54:54:1e:e9:4e:83:7f:cf:04:61:9c:ca:9b:12:
e4:e7:4d:b5:d0:74:8e:e9:87:9b:86:bd:87:bc:90:
86:9e:fc:0e:9e:1f:7e:cf:cc:9b:1f:d0:4f:97:93:
4f:d0:53:f4:c0:5b:91:12:00:40:f5:39:49:33:03:
70:89:b0:8e:ff:8c:4b:0d:89:ad:03:5d:3f:42:ff:
54:9d:82:c9:85:fd:5c:ae:bb:9e:b4:8f:26:e1:b1:
4d:85:b2:dd:a9:a9:c9:d1:9d:76:fe:fa:63:5c:67:
9b:4d:99:8c:5a:7d:3e:25:a6:e5:c9:db:27:65:64:
10:9c:5f:60:42:ef:d8:07:6d:47:f1:13:69:e3:07:
af:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151049
sbgp-ipAddrBlock: critical
IPv4:
103.121.64.0/23
IPv6:
2400:efa0::/32
Signature Algorithm: sha256WithRSAEncryption
5c:70:6e:97:e4:d6:32:95:af:94:c9:75:6f:dd:d5:14:b5:dc:
ed:d3:09:04:90:1f:b3:e6:d4:00:14:55:54:43:25:32:ea:b7:
2c:4f:b1:76:60:25:ea:be:6b:34:cf:49:56:1c:50:97:98:93:
08:24:fb:ac:bd:d2:cd:22:90:35:e0:cb:a8:a5:f7:b9:b8:3c:
49:81:45:07:ed:e3:fd:37:63:70:97:bc:53:8c:9a:15:51:82:
d6:4f:e4:50:14:cc:a9:da:17:fa:7e:9d:9e:83:c7:69:d2:48:
9a:e6:62:a9:37:8e:bd:3d:01:fe:68:ed:30:bc:4e:12:4b:d2:
09:78:29:38:45:ed:02:09:9f:8d:69:81:c9:aa:9f:a5:eb:ba:
9c:c7:37:5f:ab:1d:58:6a:ba:3a:97:3f:c8:b8:50:1e:0f:a2:
26:bd:99:11:6b:65:11:5a:e0:34:22:f8:84:d8:6a:63:16:1a:
20:ab:c8:b9:4a:66:d1:37:fe:8d:f4:6a:72:84:15:e9:a6:70:
ca:69:0e:fa:ca:7f:38:57:4f:52:a6:14:07:af:1f:03:4c:12:
65:d3:b2:1a:98:b7:81:95:08:19:c7:af:29:cb:cd:43:4e:ca:
e1:02:8b:f9:09:bb:f2:29:68:11:bd:90:fc:be:29:96:c2:6a:
8e:86:f3:eb
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAqonMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDQwMzEzNDAxN1oXDTI3MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOEE1NkExMTAvBgNVBAUTKERBNDMxMEIyRjA4NzlERjRCRDk4MzlB
MTRDOEUzRkJCQjZGMUVCRjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCecgsXPIv7md9EihbaBphDyYxQc3waPVR8f3TgvMGk86jRFhOeQMaPObQBz7WT
rAUD/aDOTT6giHq1ldOKTIFzlm15Mh8oUkdwVa9JRKsK9pxKrT7ybNPaX1dqdAiN
ueyW9CVPvyFINHl24OMhl0wQSHb35YcHx+BUVB7pToN/zwRhnMqbEuTnTbXQdI7p
h5uGvYe8kIae/A6eH37PzJsf0E+Xk0/QU/TAW5ESAED1OUkzA3CJsI7/jEsNia0D
XT9C/1SdgsmF/Vyuu560jybhsU2Fst2pqcnRnXb++mNcZ5tNmYxafT4lpuXJ2ydl
ZBCcX2BC79gHbUfxE2njB6/VAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQU2kMQsvCH
nfS9mDmhTI4/u7bx6/EwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThBNTZBLzI2RkExODE4NzcyNDExRUVBMTY3NEUxRkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4QTU2QS8yNkZBMTgxODc3MjQxMUVFQTE2NzRFMUZDNEY5QUUwMi8ya01Rc3ZD
SG5mUzltRG1oVEk0X3U3Yng2X0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAk4JMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ3lAMA0EAgAC
MAcDBQAkAO+gMA0GCSqGSIb3DQEBCwUAA4IBAQBccG6X5NYyla+UyXVv3dUUtdzt
0wkEkB+z5tQAFFVUQyUy6rcsT7F2YCXqvms0z0lWHFCXmJMIJPusvdLNIpA14Muo
pfe5uDxJgUUH7eP9N2Nwl7xTjJoVUYLWT+RQFMyp2hf6fp2eg8dp0kia5mKpN469
PQH+aO0wvE4SS9IJeCk4Re0CCZ+NaYHJqp+l67qcxzdfqx1Yaro6lz/IuFAeD6Im
vZkRa2URWuA0IviE2GpjFhogq8i5SmbRN/6N9GpyhBXppnDKaQ76yn84V09SphQH
rx8DTBJl07IamLeBlQgZx68py81DTsrhAov5CbvyKWgRvZD8vimWwmqOhvPr
-----END CERTIFICATE-----
Generated at Mon Apr 6 07:09:38 2026 by rpki-client