Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FX3bMj02U1BOMIJOaeDbA3U6aM4.cer
File: FX3bMj02U1BOMIJOaeDbA3U6aM4.cer (raw, json)
Hash identifier: hlf2AYk+6422lYHPWucRbU+cdFPXvNtilaehqzQa67g=
Subject key identifier: 15:7D:DB:32:3D:36:53:50:4E:30:82:4E:69:E0:DB:03:75:3A:68:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028D68
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/FX3bMj02U1BOMIJOaeDbA3U6aM4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Feb 2026 12:52:57 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: AS: 138625
IP: 103.134.236.0/22
IP: 2404:6f40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 12:25:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167272 (0x28d68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 5 12:52:57 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A91480B2, serialNumber=157DDB323D3653504E30824E69E0DB03753A68CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:63:e2:45:22:68:00:1f:6e:af:7b:14:f5:8d:
7e:40:7d:16:ad:7f:a7:5a:78:4a:64:9d:4f:aa:dd:
62:97:58:52:d5:70:70:74:f8:7a:9a:cb:c8:41:ae:
74:d2:82:8f:c0:6f:39:89:80:1b:ec:a7:d0:fc:81:
77:71:54:f8:b9:ad:d2:9d:8d:94:31:1e:e6:ba:fa:
10:c7:83:2e:7e:73:bb:17:b6:67:7e:4a:a3:fa:c3:
bd:9e:20:ed:7b:f9:57:02:aa:c5:7b:a6:90:fd:0f:
2a:45:56:c9:cc:6c:fa:2b:57:34:f3:ab:2e:06:76:
21:6b:bd:78:d0:44:fc:05:43:04:45:b0:1c:4f:ca:
58:50:0d:e1:64:6a:12:19:fd:95:98:5f:fe:40:55:
f3:b6:2f:dc:5c:e1:d5:56:3b:94:46:42:f7:b8:e4:
6d:67:34:d5:e2:67:bc:dc:ba:87:e0:8b:6c:a0:22:
92:9a:7d:86:0e:a3:5a:85:5d:bd:fa:e0:30:9f:c5:
91:9e:96:35:7f:eb:b1:04:6d:92:52:39:81:f8:95:
72:9b:09:75:b7:4e:4a:5d:e4:6c:55:09:28:f0:9c:
aa:76:6a:92:91:24:fe:66:1f:dc:70:65:d5:6e:13:
da:7a:35:88:42:fd:1e:78:0a:fc:c6:98:4d:79:8e:
6c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:7D:DB:32:3D:36:53:50:4E:30:82:4E:69:E0:DB:03:75:3A:68:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/FX3bMj02U1BOMIJOaeDbA3U6aM4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138625
sbgp-ipAddrBlock: critical
IPv4:
103.134.236.0/22
IPv6:
2404:6f40::/32
Signature Algorithm: sha256WithRSAEncryption
62:83:a2:cd:35:04:48:ad:43:7e:09:ac:91:6b:03:1f:d1:75:
a8:a4:c2:6b:1d:48:83:7a:e1:a8:07:19:bd:09:87:50:dc:9f:
b4:01:c1:4b:87:19:f1:25:f1:76:da:db:de:67:88:af:68:6e:
57:b0:67:ea:1d:a4:28:10:80:43:9f:e6:4c:da:85:a4:0e:94:
35:e0:11:ce:e7:c0:37:01:46:6e:27:54:b8:f0:9f:0c:5b:fc:
39:e7:74:aa:19:f7:9a:ae:3c:e7:93:11:fc:7a:97:6a:2a:74:
16:f9:16:ac:ce:1c:21:65:02:40:78:87:a2:6a:de:1e:7c:ef:
5f:19:b4:16:7f:f8:51:9d:f8:b9:c6:48:c5:3f:ca:ea:4d:70:
8c:32:e4:1e:ff:75:38:46:92:71:4a:18:07:7c:5a:31:2a:6f:
ba:8a:48:b9:69:40:63:c2:e0:a3:e4:32:27:c2:cc:c3:9d:cc:
e0:69:b9:4d:c8:95:3e:a6:f3:6d:f8:6a:c3:c3:4a:94:65:90:
75:d4:2b:9b:2f:a7:50:91:4e:f8:1a:92:a4:a9:4e:9e:de:33:
0c:61:87:ac:db:5e:7a:c8:7c:aa:08:c8:91:e9:fc:78:6d:ab:
b3:ec:e4:ce:37:59:2c:1a:ba:f5:d9:3c:5c:90:52:62:1a:8b:
db:d4:45:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 15:06:04 2026 by rpki-client