Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkgFF3QQdv52Pk6eMvNb1FmJMpI.cer
File: CkgFF3QQdv52Pk6eMvNb1FmJMpI.cer (raw, json)
Hash identifier: okYvZKywfix4bGvTLekppxLN+mFeWfB+Gsjsw6mdf6Q=
Subject key identifier: 0A:48:05:17:74:10:76:FE:76:3E:4E:9E:32:F3:5B:D4:59:89:32:92
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A732
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9124679/F5B78A88619411ED8CDBA23EC4F9AE02/CkgFF3QQdv52Pk6eMvNb1FmJMpI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9124679/F5B78A88619411ED8CDBA23EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Mar 2026 03:45:53 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 134840
IP: 103.56.212.0/22
IP: 103.57.204.0/22
IP: 103.203.132.0/22
IP: 103.237.112.0/22
IP: 116.206.120.0/22
IP: 116.206.192.0/22
IP: 121.46.71.0/24
IP: 180.235.116.0/22
IP: 2403:c280::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173874 (0x2a732)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 30 03:45:53 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A9124679, serialNumber=0A480517741076FE763E4E9E32F35BD459893292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:17:bd:78:1d:9b:8d:ca:c4:23:bc:c4:85:1f:
38:9a:84:1f:6a:ae:5d:07:a3:91:5f:13:46:f2:a2:
fd:6e:e7:d0:bd:1e:e5:6c:6a:e7:39:df:c1:c7:62:
10:85:9b:2d:d5:2a:9f:0d:35:73:28:05:9e:f7:b1:
b9:ef:6c:af:34:79:91:1f:be:be:60:24:bb:9c:58:
79:04:95:bc:12:e5:78:67:8a:15:9e:72:26:51:6b:
a4:65:6f:fd:06:7e:55:3d:5c:13:a4:90:42:eb:43:
90:84:a5:3c:03:a7:dc:6d:19:24:ab:24:e4:38:b3:
00:e3:d3:83:4d:de:19:fb:ae:ff:22:40:1e:2f:e8:
19:27:31:41:95:e3:60:57:e7:c7:85:fb:ab:aa:08:
5a:59:29:6e:6e:12:a4:f8:0a:de:e2:57:97:0e:ab:
12:e5:27:d1:2f:44:02:11:d5:0c:f6:77:ae:c1:53:
10:1d:5f:ca:3d:1c:51:da:19:db:b7:9e:ae:4b:bc:
17:17:75:09:c7:f1:75:1c:2c:49:d6:db:da:68:b2:
11:30:2a:15:70:ac:eb:3e:32:d8:cf:8b:58:6a:87:
fd:b2:57:ea:b7:54:7e:0e:50:76:6a:75:e8:4e:9e:
16:77:5a:ac:3b:96:4f:c1:1b:1e:2f:c6:9d:79:20:
c5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:48:05:17:74:10:76:FE:76:3E:4E:9E:32:F3:5B:D4:59:89:32:92
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9124679/F5B78A88619411ED8CDBA23EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9124679/F5B78A88619411ED8CDBA23EC4F9AE02/CkgFF3QQdv52Pk6eMvNb1FmJMpI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134840
sbgp-ipAddrBlock: critical
IPv4:
103.56.212.0/22
103.57.204.0/22
103.203.132.0/22
103.237.112.0/22
116.206.120.0/22
116.206.192.0/22
121.46.71.0/24
180.235.116.0/22
IPv6:
2403:c280::/32
Signature Algorithm: sha256WithRSAEncryption
88:98:f5:04:a2:03:b2:60:65:ac:d2:99:a7:52:88:a5:c6:6e:
81:bb:07:b6:61:72:29:09:09:69:46:3c:7f:4a:26:3a:99:a3:
0b:48:dc:e7:e6:cd:e5:38:6e:91:5a:e1:60:be:9d:d3:d5:40:
a8:50:19:c1:90:30:86:ff:c8:90:ca:b0:aa:c5:d8:8f:4d:f0:
6d:32:c9:f1:fe:e1:65:a6:66:34:bd:43:cf:03:3e:26:e2:e7:
6f:84:f1:1c:e5:99:80:ab:e0:46:d4:69:70:f9:cc:66:6a:57:
fc:d5:29:22:a9:f3:5d:b2:88:d9:7b:20:a4:38:cc:68:88:b3:
38:ff:a3:82:12:e6:53:e3:34:13:ad:24:0f:d0:44:98:02:9c:
71:b3:25:84:9e:0c:48:3e:2f:96:02:b4:81:e9:61:ab:36:26:
00:07:d5:78:bb:34:11:7e:50:8c:1e:fb:80:59:55:7e:20:39:
1d:c2:f4:54:f2:c3:21:f1:35:2a:2d:c3:70:dc:8c:7b:d7:57:
ee:c2:05:09:5d:0e:cd:6f:9d:be:3c:39:f4:f2:d9:d9:23:fd:
f0:d5:53:2c:ab:24:f1:8f:a4:7f:f2:1a:83:6d:3c:a9:65:21:
af:63:c4:4f:68:ef:0b:81:fb:12:94:bc:46:76:8d:94:f6:9c:
56:2f:de:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 07:09:34 2026 by rpki-client