Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer
File: P1VrwCUQM7zlcvxsirdgrMSXBZM.cer (raw, json)
Hash identifier: iQjB0jHh/xNu8tzKLm8mqFwu1EgO2XIOUQ8ZwBJ5Itc=
Subject key identifier: 3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A77C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Mar 2026 14:09:26 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 137557
AS: 140867
AS: 150388
IP: 103.100.140.0/22
IP: 103.113.44.0/22
IP: 2402:b740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173948 (0x2a77c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 30 14:09:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A919CF42, serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c9:e4:1e:50:b3:06:82:0b:54:ce:f9:e0:fe:
ec:20:6b:73:c2:47:c7:db:08:82:51:1e:24:c6:0d:
73:67:74:27:0a:ab:24:ae:3e:61:cb:9d:5c:82:74:
09:3b:4e:4c:e8:70:c7:7e:ac:75:9f:e0:51:55:b5:
9d:89:fa:1f:fb:e5:46:c7:32:b7:e8:3d:a4:ca:fd:
76:f9:d2:21:4b:fd:bd:89:31:7c:87:ad:d5:75:a2:
c7:bf:19:12:f2:2c:b6:6c:95:c7:6b:63:b5:82:56:
45:a1:ec:07:c9:cf:05:24:61:44:1e:25:1f:d1:d4:
7d:3b:a1:5e:78:ff:58:93:92:28:72:16:35:e0:33:
85:06:86:ff:cd:6c:53:bc:5c:f1:75:34:d0:2e:dc:
99:16:8f:ce:3a:ff:66:a4:77:c2:7b:13:f5:c5:33:
b9:1b:5d:a8:62:d0:a8:fe:cd:bd:f3:d4:6a:36:7c:
49:e8:e1:89:6b:f5:3a:ad:6f:46:47:a7:72:40:18:
21:f3:eb:d9:f9:9d:90:5d:37:9c:a9:5c:5c:60:23:
ed:bd:06:a1:d2:b2:84:0c:3f:3b:28:bf:69:bf:b6:
a8:7c:bf:73:96:17:ee:ce:dd:e5:33:c7:ac:64:84:
c3:ba:99:b7:66:18:90:d2:a0:65:a8:84:1c:b3:85:
1d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137557
140867
150388
sbgp-ipAddrBlock: critical
IPv4:
103.100.140.0/22
103.113.44.0/22
IPv6:
2402:b740::/32
Signature Algorithm: sha256WithRSAEncryption
da:33:0e:cf:ce:43:37:10:af:7c:f7:dd:52:ff:65:e2:45:77:
40:da:61:35:ef:11:36:c5:3a:be:83:46:ab:bd:7d:f0:43:99:
3f:1f:1c:5e:86:e6:6a:a8:c4:11:0a:4d:43:23:0b:d9:ef:cf:
16:11:ce:11:8c:06:22:d5:3e:c9:18:dc:6f:64:40:13:f0:cb:
63:cf:3f:bc:0b:8c:27:ef:c2:3a:37:63:85:7d:17:a9:3d:9d:
b6:bf:92:a2:7a:b9:9f:ee:86:a7:59:5d:59:85:d4:e8:e2:a9:
94:c6:6e:2d:d2:9d:97:8f:81:b6:e1:c3:d0:d9:eb:bf:96:99:
d2:f6:d3:c4:d4:fe:76:fb:fd:59:2a:af:51:a5:28:e7:ad:f5:
ef:1b:ad:93:8f:d4:39:ed:51:fe:4e:ec:ab:74:18:dc:34:9c:
1f:00:57:14:e3:a9:ca:bb:49:8c:b5:1a:fb:ef:95:85:c4:83:
af:68:86:dd:57:49:8a:cd:0c:74:65:b0:4d:78:21:20:60:b5:
b9:79:da:bd:57:2b:ce:19:27:0a:fa:d8:cc:15:f9:f9:5a:b7:
dd:ed:1f:8f:f7:43:9c:79:27:a3:52:78:6b:7a:17:ca:70:31:
4a:91:6d:11:32:cd:f7:28:66:e9:73:77:c4:40:89:74:9b:71:
31:8a:41:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 07:10:52 2026 by rpki-client