Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer
File: HaAa_AiIyqYXHgoOdBz8kE7S328.cer (raw, json)
Hash identifier: MJmDUdmDmzXnJGTK6LfY9kbkxdTLu1MlDfh3DBMO5pg=
Subject key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A7DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Mar 2026 12:49:21 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 135107
IP: 103.86.188.0/23
IP: 103.209.152.0/23
IP: 202.27.10.0/23
IP: 2401:f340::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174046 (0x2a7de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 31 12:49:21 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a2:f6:86:6e:4c:23:45:c8:3d:f4:1d:a1:f7:
3a:84:fa:dc:86:75:7a:f2:e5:b0:f9:3f:8c:4f:81:
32:59:5d:0a:0e:d6:7e:c3:05:7a:60:9b:f5:bb:dc:
e1:1f:44:bb:f9:ca:73:ad:69:a7:e1:f4:9b:fd:3a:
ff:71:bf:1c:49:a9:a4:e6:80:db:c9:e4:ec:26:9a:
f8:41:24:8d:e2:8a:82:fb:ca:26:50:17:76:76:04:
ce:cd:ff:08:65:d6:45:6d:75:75:b8:2e:0c:ee:12:
e5:bc:fd:2d:e5:2d:a6:3b:58:32:42:9a:69:bf:4c:
5d:2b:21:af:cb:82:f3:72:27:cb:1e:b5:92:37:d0:
e4:8f:7f:87:7c:ad:8c:51:e1:be:cc:0d:51:b0:38:
c0:5c:3d:2c:01:b2:2a:cd:aa:82:2a:3a:0b:9d:cf:
00:2e:98:d8:b7:38:09:02:29:75:8b:5d:21:d6:31:
23:b1:ac:67:a6:91:73:86:85:29:40:b6:9c:da:97:
fa:8c:12:84:0d:e4:26:10:59:bb:b8:20:5b:8c:b2:
f3:d3:01:4f:9b:d9:03:66:b3:dd:c4:ef:ab:21:b8:
0d:17:0f:a6:c1:50:5c:49:41:81:71:a2:ed:c3:20:
d3:13:77:0a:3d:5a:04:ef:a0:86:69:04:4b:d2:13:
d3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135107
sbgp-ipAddrBlock: critical
IPv4:
103.86.188.0/23
103.209.152.0/23
202.27.10.0/23
IPv6:
2401:f340::/32
Signature Algorithm: sha256WithRSAEncryption
ad:27:87:47:51:58:c8:cf:52:7f:cb:26:ef:2b:76:24:6f:d8:
f0:cb:6a:d7:c0:88:f1:39:0f:ce:06:23:60:a4:ff:5a:5f:b3:
7f:f2:1c:52:0f:fc:ac:ef:03:8c:7c:a2:e6:e0:f1:c1:02:55:
4c:5b:1a:8a:a5:72:22:c8:ea:2d:bf:d0:86:df:cf:6c:8c:95:
bb:5d:e1:2b:00:f6:b9:4b:92:bd:fe:77:d3:db:d4:61:65:d3:
c2:73:7e:ba:4e:e9:31:4f:11:b0:84:20:02:69:a8:49:b7:c5:
81:32:30:e8:be:5d:e4:f8:34:f0:d3:15:d5:7d:44:58:56:62:
95:cd:98:b9:30:dc:62:19:a1:17:6f:82:14:08:e5:a0:df:ad:
a5:cf:39:c8:af:49:56:76:69:c7:90:31:81:fa:0d:72:16:7e:
ef:73:59:d2:b1:4b:b3:2f:79:53:9b:de:e1:8d:69:f6:32:b7:
9e:2a:8c:8c:6c:5d:3f:a9:5c:de:de:58:a5:df:2a:4b:c0:35:
74:98:75:f6:1b:26:7d:30:b0:27:6b:ca:a1:ad:18:46:1f:89:
9c:8b:98:f9:76:7c:76:b8:d8:a5:01:01:32:c5:fa:09:3e:2b:
99:e1:79:3b:83:bb:6b:52:83:dc:2c:b8:98:f2:f3:e8:22:6f:
1e:53:a1:28
-----BEGIN CERTIFICATE-----
MIIGNTCCBR2gAwIBAgIDAqfeMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDMzMTEyNDkyMVoXDTI3MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEw
RTc0MUNGQzkwNEVEMkRGNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCoovaGbkwjRcg99B2h9zqE+tyGdXry5bD5P4xPgTJZXQoO1n7DBXpgm/W73OEf
RLv5ynOtaafh9Jv9Ov9xvxxJqaTmgNvJ5OwmmvhBJI3iioL7yiZQF3Z2BM7N/whl
1kVtdXW4LgzuEuW8/S3lLaY7WDJCmmm/TF0rIa/LgvNyJ8setZI30OSPf4d8rYxR
4b7MDVGwOMBcPSwBsirNqoIqOgudzwAumNi3OAkCKXWLXSHWMSOxrGemkXOGhSlA
tpzal/qMEoQN5CYQWbu4IFuMsvPTAU+b2QNms93E76shuA0XD6bBUFxJQYFxou3D
INMTdwo9WgTvoIZpBEvSE9MRAgMBAAGjggMqMIIDJjAdBgNVHQ4EFgQUHaAa/AiI
yqYXHgoOdBz8kE7S328wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTM1MkM2LzFFREZFNDk2QjFENDExRUFBNDZGMDAxQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzNTJDNi8xRURGRTQ5NkIxRDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0Fp
SXlxWVhIZ29PZEJ6OGtFN1MzMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg/DMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQBZ1a8AwQBZ9GY
AwQByhsKMA0EAgACMAcDBQAkAfNAMA0GCSqGSIb3DQEBCwUAA4IBAQCtJ4dHUVjI
z1J/yybvK3Ykb9jwy2rXwIjxOQ/OBiNgpP9aX7N/8hxSD/ys7wOMfKLm4PHBAlVM
WxqKpXIiyOotv9CG389sjJW7XeErAPa5S5K9/nfT29RhZdPCc366TukxTxGwhCAC
aahJt8WBMjDovl3k+DTw0xXVfURYVmKVzZi5MNxiGaEXb4IUCOWg362lzznIr0lW
dmnHkDGB+g1yFn7vc1nSsUuzL3lTm97hjWn2MreeKoyMbF0/qVze3lil3ypLwDV0
mHX2GyZ9MLAna8qhrRhGH4mci5j5dnx2uNilAQEyxfoJPiuZ4Xk7g7trUoPcLLiY
8vPoIm8eU6Eo
-----END CERTIFICATE-----
Generated at Mon Apr 6 07:13:34 2026 by rpki-client