Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E8ct8cUeLKIRyldmUWjPfHx0cpI.cer
File: E8ct8cUeLKIRyldmUWjPfHx0cpI.cer (raw, json)
Hash identifier: nwaInYBWeB72UM+2pBKPC5VPVfMT8cglW7lm2dfLIiw=
Subject key identifier: 13:C7:2D:F1:C5:1E:2C:A2:11:CA:57:66:51:68:CF:7C:7C:74:72:92
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B683
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916B73C/CBD6211CF64811EEA4A6FE0EC4F9AE02/E8ct8cUeLKIRyldmUWjPfHx0cpI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916B73C/CBD6211CF64811EEA4A6FE0EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 23 May 2026 04:26:09 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 152685
IP: 103.98.76.0/23
IP: 2001:df3:a940::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 09 Jun 2026 15:18:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177795 (0x2b683)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 23 04:26:09 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A916B73C, serialNumber=13C72DF1C51E2CA211CA57665168CF7C7C747292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bf:01:8e:89:2c:1c:29:b2:94:77:5c:99:cc:
ef:3f:6d:c1:5c:0f:ab:20:69:74:ac:27:2f:a5:8c:
84:70:3d:1f:b4:aa:40:72:ea:dc:04:40:a7:85:d8:
5d:63:03:23:36:52:11:87:0d:cc:5c:70:3f:6a:e5:
17:33:6d:c9:89:e9:d0:64:c1:8a:97:8c:e5:93:28:
61:da:c7:d0:4f:f5:01:d7:4e:03:9f:71:fb:c6:17:
52:84:99:93:06:d2:bb:5a:bb:72:c7:80:e5:93:44:
e2:15:cc:b2:7a:68:9e:6b:98:9f:d2:97:56:23:56:
62:de:64:43:22:0c:13:2e:1b:a6:c3:e3:50:eb:8f:
e7:fc:57:29:b1:f7:d9:73:ce:ea:7a:57:fb:4c:30:
74:51:35:6a:dc:18:28:8b:36:c5:86:d5:95:fa:ed:
ad:f2:7e:84:e3:f4:80:cb:4d:1f:ff:38:36:3c:c1:
76:27:b9:77:ae:a0:06:02:66:8a:ba:e8:d8:56:82:
d8:3b:a4:0a:a8:16:06:c5:6d:52:c0:42:ee:6d:69:
31:86:46:54:e8:92:70:93:3d:ef:80:fc:d1:87:18:
e4:06:b8:c9:3f:4d:d2:06:a6:c7:87:6d:76:c8:e4:
3c:5c:1e:8a:91:3e:7f:7f:ee:a2:5d:df:3b:cd:db:
72:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C7:2D:F1:C5:1E:2C:A2:11:CA:57:66:51:68:CF:7C:7C:74:72:92
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916B73C/CBD6211CF64811EEA4A6FE0EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916B73C/CBD6211CF64811EEA4A6FE0EC4F9AE02/E8ct8cUeLKIRyldmUWjPfHx0cpI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152685
sbgp-ipAddrBlock: critical
IPv4:
103.98.76.0/23
IPv6:
2001:df3:a940::/48
Signature Algorithm: sha256WithRSAEncryption
0d:3a:4d:e1:4f:4e:01:de:c4:2d:41:7c:76:d6:17:80:d8:42:
a9:1a:ee:57:13:24:88:9d:ad:44:0e:5d:46:1e:e1:e7:e2:31:
1f:ac:6c:98:fd:b2:4c:95:25:14:10:1e:c8:de:83:89:96:1d:
96:8f:c1:b6:6d:89:b2:ed:de:42:7d:8d:66:88:b3:2f:4e:ff:
dd:a6:e3:02:e0:b0:30:d6:07:9f:6b:ef:a1:c7:6b:b1:02:7a:
f4:70:88:8a:4f:be:f3:03:3f:a6:40:38:39:75:13:c1:15:8d:
38:5d:f3:89:7c:4e:2d:f5:21:81:f3:c1:60:67:02:53:20:67:
5b:3f:ea:8c:7e:55:6d:00:fa:2e:f6:60:d0:fd:28:e5:d2:2c:
f5:80:87:31:66:08:13:59:a8:dc:26:5b:7a:be:a1:0f:99:9f:
9c:b9:43:00:33:cc:63:b8:c2:16:f3:1e:68:f4:14:71:06:9f:
60:27:87:62:13:0b:90:c7:41:23:4c:2a:a3:36:2b:50:d4:d8:
aa:58:97:3b:e1:2f:4b:e9:c0:17:fb:a3:e0:9d:79:18:48:26:
67:65:f1:27:1d:f0:03:38:3c:3e:86:ca:be:17:33:1e:64:c5:
8a:10:e8:8b:15:e6:00:1e:fd:37:9b:28:e6:f8:6e:ae:ef:1f:
91:e0:77:66
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:55:04 2026 by rpki-client