Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer
File: QSPpAOai7I_ptdcDt5KA7yFAfIE.cer (raw, json)
Hash identifier: 5PcKdDEzMfKS4kCRsyuc4WXTJZEstDBfCNZ72vnY9Nc=
Subject key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02896A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Jan 2026 14:34:52 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 149023
IP: 103.176.246.0/23
IP: 2001:df0:16c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166250 (0x2896a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 28 14:34:52 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A91F3B2E, serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6e:f6:08:42:44:67:33:68:99:29:37:6f:0e:
a3:a2:bc:eb:04:4e:d3:a5:95:eb:73:30:3b:a6:52:
e3:ed:22:11:6d:36:3a:34:8b:83:a0:61:8a:b1:5a:
da:7a:62:e3:0d:c7:5f:11:6f:e1:5b:33:95:d5:a7:
82:fa:b1:2f:3f:61:59:0c:c0:cc:1b:93:36:f3:55:
97:11:c8:9c:fa:02:06:93:31:2e:38:02:18:f3:e6:
50:94:27:4d:81:91:4a:20:72:df:28:4e:a4:86:68:
46:3e:77:66:fa:e7:bc:53:43:cd:02:46:9a:f7:bb:
ba:c4:ef:f1:98:29:db:2f:63:b1:46:31:85:30:45:
57:40:b6:21:17:d3:d7:6e:5e:85:11:8a:36:04:03:
0c:25:3e:41:bd:4c:9f:f3:b5:48:b3:98:ef:ba:e9:
e9:6f:9c:d4:d5:e7:ea:1b:0e:32:69:cf:be:92:0e:
5e:e9:0b:86:48:db:12:14:62:b0:18:a2:1f:48:fb:
6e:3d:56:a2:6c:a4:61:12:e2:2b:34:7d:09:4c:1e:
b4:62:91:0b:cf:68:3b:bc:30:b1:0c:b1:9c:6e:ee:
13:80:a1:b2:34:85:54:bb:8b:5b:1b:26:f9:b1:8a:
cb:23:1e:50:1b:9e:fa:5a:e6:e9:05:e7:6a:ff:08:
6d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149023
sbgp-ipAddrBlock: critical
IPv4:
103.176.246.0/23
IPv6:
2001:df0:16c0::/48
Signature Algorithm: sha256WithRSAEncryption
20:c7:1a:9f:ac:31:58:fb:35:f3:40:2b:b6:ea:6c:be:7f:5a:
08:22:ea:20:0c:eb:52:12:52:18:7c:f9:24:82:eb:96:93:8c:
b0:75:d8:ee:10:e3:d2:49:90:af:0d:15:fd:8f:7c:3e:96:65:
31:6a:14:4c:da:7c:47:92:4c:be:42:c7:3b:a9:c7:72:08:63:
b6:be:6b:14:f9:c6:6e:2d:79:b8:7c:ca:69:39:26:d7:7a:8b:
16:da:69:9c:2b:11:de:6b:41:46:e8:51:b0:98:5e:54:88:4b:
64:7e:3f:6b:02:62:87:67:e1:18:70:f9:4b:bb:8f:26:aa:46:
b9:3f:61:bc:97:37:18:af:da:f2:f9:be:43:ad:20:a0:6d:2e:
b0:a0:38:ed:47:e1:67:fc:2e:fe:c3:cb:37:cb:66:98:de:1a:
01:cb:cf:2a:0b:80:a0:e0:e0:63:cf:e4:e4:bf:80:e5:43:c4:
f2:dd:6f:0e:f4:34:df:69:c3:4a:44:4d:fd:e1:dc:a0:d2:25:
6c:34:7e:6b:44:c5:d0:76:7a:6b:d3:02:97:5e:62:8e:24:9d:
51:60:5b:22:67:57:c4:3b:ca:7e:b6:c7:b9:2e:21:aa:a5:ee:
cc:1a:80:a8:61:2f:8d:65:35:3e:a4:2b:6f:97:0f:ca:52:f6:
b1:ad:d1:59
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Feb 19 22:40:00 2026 by rpki-client