Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer
File: 433E2CR2A-hIwAZsRFuc2NpzUNY.cer (raw, json)
Hash identifier: 7YcbvvU6walkUGog+kBOXLosTxySU1XbwUu8cs4Uago=
Subject key identifier: E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028D6C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Feb 2026 13:12:57 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: AS: 134244
IP: 103.245.172.0/22
IP: 2406:1700::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167276 (0x28d6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 5 13:12:57 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A916C8F2, serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8c:22:77:b8:66:c3:9a:0d:bb:87:d3:cd:49:
b0:cc:a3:f1:a6:cc:57:e9:31:f6:49:cf:e0:58:c9:
ab:77:fd:f9:fc:f6:35:4d:0f:43:5a:04:f2:3a:1c:
6b:80:c0:55:77:f5:b6:36:25:5e:4b:d8:93:f6:51:
8d:f0:40:0d:38:24:b7:a5:6e:d4:74:ae:5f:0b:cd:
e8:91:02:dd:0d:5e:b5:2f:ba:52:08:d0:1c:21:02:
61:c2:ef:1f:63:91:07:b5:98:a3:b9:38:f3:95:41:
73:c0:d1:75:69:60:1d:9f:8c:77:94:42:a9:e4:11:
a6:be:38:b5:d8:41:9b:18:27:80:c9:e9:76:e1:63:
8a:36:b6:d6:52:ec:05:99:28:08:18:fa:46:a5:cf:
79:73:ad:20:a2:15:49:51:70:22:27:01:65:a7:94:
b7:14:3f:36:af:93:5a:09:dc:a2:4b:11:87:9d:44:
79:12:41:5d:88:19:5a:4b:0e:01:83:dc:9b:8e:98:
6d:a5:27:db:d2:26:16:d0:8a:4c:11:62:08:dd:ea:
4e:72:43:9b:8e:91:e8:ab:e0:2b:4b:aa:31:77:9d:
bf:2c:1b:7a:a4:7b:35:2b:c5:3d:99:91:a3:8f:22:
f0:40:a4:d1:cc:8b:58:54:16:6a:23:d2:36:05:b6:
2f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134244
sbgp-ipAddrBlock: critical
IPv4:
103.245.172.0/22
IPv6:
2406:1700::/32
Signature Algorithm: sha256WithRSAEncryption
74:1b:b1:08:cc:24:e3:2b:be:8b:9a:97:79:ca:bc:68:79:d1:
3c:ef:74:2c:3b:7f:2e:ad:2e:eb:b9:32:69:ac:b8:f2:90:56:
3a:93:6d:d5:51:69:fe:4e:e3:59:dc:a2:bc:25:d2:d0:e0:45:
6c:6b:ba:63:f2:53:e2:dc:6c:26:ea:7b:86:6f:bf:d9:d7:45:
25:b3:90:72:19:65:e3:86:0c:f5:0f:10:f8:76:8a:f7:0b:2c:
a8:9c:66:b2:e8:4a:c6:c1:64:24:c8:f4:9a:f7:74:3b:3d:5d:
6d:7d:c7:5f:f0:9f:d4:1b:a0:c8:8a:b9:90:b3:ca:53:56:02:
71:07:a4:f9:4e:25:b0:0b:8c:80:dd:30:02:e6:15:d7:bc:3a:
55:8b:c8:20:7e:56:36:70:02:61:95:bd:7d:46:b6:78:21:7a:
8f:3d:5a:dd:ca:c7:75:e6:56:3d:94:d5:c5:4e:c2:cd:d6:39:
a4:f4:19:f5:3c:26:d5:72:2e:2c:14:5d:ac:5b:b1:95:b1:a7:
3c:2d:0d:5f:74:f4:fd:11:1a:62:d3:56:cf:6c:71:f4:65:e7:
1f:54:99:a4:ad:8d:ae:f4:78:0a:fe:d4:94:58:bf:58:a4:e7:
e1:bc:94:78:ad:58:25:8d:53:de:0d:e8:e3:9d:c7:8a:6f:6a:
92:a5:e0:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 22:40:22 2026 by rpki-client