Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RXfmNryC40djCTad9uzHkOsrkUU.cer
File: RXfmNryC40djCTad9uzHkOsrkUU.cer (raw, json)
Hash identifier: gQkohyFX4ELQgvaQfD2OhZmUe4SW1i4/Drf66B6MXqo=
Subject key identifier: 45:77:E6:36:BC:82:E3:47:63:09:36:9D:F6:EC:C7:90:EB:2B:91:45
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02AE5D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91614E3/FAFF99863ED111F1A3BC1149B0833773/RXfmNryC40djCTad9uzHkOsrkUU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91614E3/FAFF99863ED111F1A3BC1149B0833773/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 23 Apr 2026 05:05:06 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 24394
AS: 136213
IP: 203.62.235.0 -- 203.62.239.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 May 2026 04:46:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175709 (0x2ae5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 23 05:05:06 2026 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A91614E3, serialNumber=4577E636BC82E3476309369DF6ECC790EB2B9145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:29:2c:54:8a:20:04:b6:27:ba:fe:63:09:8c:
ef:fe:4f:8e:84:14:db:b4:8d:1d:e0:ad:82:d4:a7:
3f:0d:81:c0:d0:af:83:ea:2a:84:09:99:a5:54:6e:
43:0c:46:df:c7:73:95:6d:1a:65:e6:49:19:bf:9b:
81:05:93:d9:b2:8f:e6:09:90:8a:c9:54:10:4d:42:
d3:1d:cc:5a:93:ae:36:3b:69:49:76:0a:46:d8:eb:
c9:2f:22:c5:f6:8c:91:35:f4:f6:24:d1:50:93:fb:
87:19:16:9a:c6:de:7c:28:35:da:37:7d:a8:7b:e7:
d0:fd:cd:f9:55:c3:77:97:92:37:3c:7b:a1:71:6c:
ea:e9:c1:99:03:a5:cf:b1:91:c8:3c:a1:da:67:f4:
0d:ff:00:db:d9:34:bd:b3:99:7a:65:7d:85:f8:0e:
cf:15:4f:1f:55:02:de:71:98:35:48:7e:29:cb:ac:
e3:75:61:c4:09:67:b5:fb:18:67:f4:cc:e3:c0:92:
cd:23:87:b1:4c:3a:2d:f9:d1:b0:41:ae:89:b5:bd:
e2:93:6f:57:e0:7a:21:47:02:53:7a:b5:a6:a6:3e:
20:54:9e:eb:33:78:40:d9:02:d0:f8:73:c1:c9:b9:
e4:c5:19:35:ef:43:cf:a6:e3:16:0a:e6:5c:dc:27:
1d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:77:E6:36:BC:82:E3:47:63:09:36:9D:F6:EC:C7:90:EB:2B:91:45
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91614E3/FAFF99863ED111F1A3BC1149B0833773/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91614E3/FAFF99863ED111F1A3BC1149B0833773/RXfmNryC40djCTad9uzHkOsrkUU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24394
136213
sbgp-ipAddrBlock: critical
IPv4:
203.62.235.0-203.62.239.255
Signature Algorithm: sha256WithRSAEncryption
59:b9:7b:a1:97:61:3e:4a:1b:d3:ce:0e:9a:dc:ef:9f:8b:b4:
77:d1:60:e1:cd:c5:91:3a:fe:a4:7d:b5:e5:08:4a:02:e1:98:
cb:6e:d4:62:7e:b1:6a:2c:23:5d:fa:f1:26:d7:dc:0e:e3:d6:
4d:a5:d3:25:f2:76:ed:d3:11:fb:47:ad:53:07:4f:8c:2c:d1:
16:61:bc:a1:2f:d5:bc:cd:94:2f:b5:11:2a:e8:55:ee:df:94:
78:08:86:4f:8c:56:77:db:87:13:85:0e:10:dc:cd:ce:ea:1c:
df:dd:eb:7d:1c:7b:ee:5e:5f:85:e5:4c:8c:1f:16:86:0a:e7:
b7:ff:b8:e0:2a:50:d6:a0:6e:48:4a:fb:71:3b:9e:1d:1b:b8:
2f:1d:16:18:4b:8a:fb:88:0c:7c:b2:26:be:c3:a5:f1:ad:67:
87:f8:5b:b9:0e:fb:dc:6f:c0:f6:68:12:e5:05:5e:81:af:e7:
83:df:e3:2b:71:0b:77:12:35:76:c2:11:15:68:f2:03:19:cc:
72:5a:3e:24:28:f1:19:c1:00:f7:4c:96:97:34:c4:d4:a1:5b:
b1:25:1d:05:f0:c2:d7:28:46:3c:42:43:49:b0:0d:9e:1b:40:
d6:65:85:76:0a:d3:60:6c:e9:5a:fd:5e:09:65:af:fd:bb:cd:
2f:f8:a5:1f
-----BEGIN CERTIFICATE-----
MIIGJjCCBQ6gAwIBAgIDAq5dMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDQyMzA1MDUwNloXDTI2MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjE0RTMxMTAvBgNVBAUTKDQ1NzdFNjM2QkM4MkUzNDc2MzA5MzY5
REY2RUNDNzkwRUIyQjkxNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQClKSxUiiAEtie6/mMJjO/+T46EFNu0jR3grYLUpz8NgcDQr4PqKoQJmaVUbkMM
Rt/Hc5VtGmXmSRm/m4EFk9myj+YJkIrJVBBNQtMdzFqTrjY7aUl2CkbY68kvIsX2
jJE19PYk0VCT+4cZFprG3nwoNdo3fah759D9zflVw3eXkjc8e6FxbOrpwZkDpc+x
kcg8odpn9A3/ANvZNL2zmXplfYX4Ds8VTx9VAt5xmDVIfinLrON1YcQJZ7X7GGf0
zOPAks0jh7FMOi350bBBrom1veKTb1fgeiFHAlN6taamPiBUnuszeEDZAtD4c8HJ
ueTFGTXvQ8+m4xYK5lzcJx25AgMBAAGjggMbMIIDFzAdBgNVHQ4EFgQURXfmNryC
40djCTad9uzHkOsrkUUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTYxNEUzL0ZBRkY5OTg2M0VEMTExRjFBM0JDMTE0OUIwODMzNzczLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2MTRFMy9GQUZGOTk4NjNFRDExMUYxQTNCQzExNDlCMDgzMzc3My9SWGZtTnJ5
QzQwZGpDVGFkOXV6SGtPc3JrVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQgBAf8EDzAN
oAswCQICX0oCAwIUFTAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQAyz7r
AwQEyz7gMA0GCSqGSIb3DQEBCwUAA4IBAQBZuXuhl2E+ShvTzg6a3O+fi7R30WDh
zcWROv6kfbXlCEoC4ZjLbtRifrFqLCNd+vEm19wO49ZNpdMl8nbt0xH7R61TB0+M
LNEWYbyhL9W8zZQvtREq6FXu35R4CIZPjFZ324cThQ4Q3M3O6hzf3et9HHvuXl+F
5UyMHxaGCue3/7jgKlDWoG5ISvtxO54dG7gvHRYYS4r7iAx8sia+w6XxrWeH+Fu5
Dvvcb8D2aBLlBV6Br+eD3+MrcQt3EjV2whEVaPIDGcxyWj4kKPEZwQD3TJaXNMTU
oVuxJR0F8MLXKEY8QkNJsA2eG0DWZYV2CtNgbOla/V4JZa/9u80v+KUf
-----END CERTIFICATE-----
Generated at Thu May 21 08:40:42 2026 by rpki-client