Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer
File: VjjLHibRGZ2r6LjH7SKwPEzoyAo.cer (raw, json)
Hash identifier: +z5ZLmWGuiv8GB/FAz9MZfW2CZvyv9d+7KLCbPR/hb0=
Subject key identifier: 56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0289C9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 29 Jan 2026 14:16:52 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 136240
IP: 103.84.135.0/24
IP: 103.158.7.0/24
IP: 2001:df0:2100::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166345 (0x289c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 29 14:16:52 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91D6F2B, serialNumber=5638CB1E26D1199DABE8B8C7ED22B03C4CE8C80A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e6:93:ae:60:05:8f:41:d5:f4:26:bc:20:3b:
53:41:ac:ce:13:2b:5d:d8:83:f1:c8:c4:16:65:25:
75:a0:47:54:5d:90:c7:f6:8e:94:cf:6c:6a:90:42:
f6:4a:f0:50:2d:5e:28:63:57:ae:48:86:d5:4e:ef:
c2:4c:bf:8a:f0:6e:93:75:35:fe:39:4a:77:5e:bb:
a6:21:a0:0c:1a:e7:61:ed:7e:1e:3a:2c:61:4b:58:
d0:f1:0e:ab:5d:0e:47:b8:15:3c:c7:8e:8f:d3:87:
f6:80:bb:85:83:a3:e8:ac:98:c0:c0:14:5f:09:41:
02:b0:9d:1c:ef:b1:20:49:10:33:fa:c1:60:79:0f:
fd:87:6a:53:70:18:b9:af:ae:13:33:19:12:d4:10:
64:6f:c3:5d:89:82:4a:90:51:50:61:19:97:86:32:
62:ea:01:72:24:b9:4c:a2:0a:c3:2e:85:db:71:45:
36:ca:4a:1f:90:75:43:17:42:8b:6a:5b:57:97:70:
09:07:38:0c:b2:5d:fb:7e:03:62:32:1b:99:ba:85:
c3:7f:ec:0e:7c:1d:fa:2e:30:6b:76:01:50:43:56:
b0:07:50:a4:78:85:4c:40:a6:9c:1b:32:d3:be:57:
e4:7f:13:ef:e9:1d:35:27:6f:35:fe:ec:89:75:d2:
e9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:38:CB:1E:26:D1:19:9D:AB:E8:B8:C7:ED:22:B0:3C:4C:E8:C8:0A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D6F2B/33866766B6C911EC89BDC687C4F9AE02/VjjLHibRGZ2r6LjH7SKwPEzoyAo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136240
sbgp-ipAddrBlock: critical
IPv4:
103.84.135.0/24
103.158.7.0/24
IPv6:
2001:df0:2100::/48
Signature Algorithm: sha256WithRSAEncryption
c2:74:16:67:54:d5:2b:27:f0:9b:4b:b0:c2:51:51:ad:22:53:
cf:f1:49:d9:7b:d9:3c:07:9e:fb:3c:e7:92:f5:ee:40:7e:03:
f8:2d:30:5f:00:76:a7:ec:6d:32:b0:b4:18:1b:b2:f4:6c:0f:
0b:98:b6:0a:4c:00:81:5b:0e:f7:f5:1d:56:53:14:bd:ad:53:
8a:49:68:64:0b:4d:78:a9:ad:2a:f8:a3:3e:3c:63:5f:cc:21:
d6:75:38:36:85:30:fa:79:99:d6:9a:58:d4:5d:1d:78:81:70:
a3:5b:26:55:a2:03:59:70:36:8d:10:54:87:10:da:29:ad:b6:
0e:92:ee:30:c5:7a:06:df:5a:72:fd:bf:f2:84:69:41:28:44:
3c:b6:c8:b2:8f:b1:35:6a:33:d0:53:3b:88:df:f1:cc:ef:7a:
f7:02:a5:1e:8c:3d:9f:4f:b2:b4:20:a7:77:dd:fd:a0:26:70:
4d:66:6c:1c:62:4c:7f:75:fc:75:9a:7b:95:5a:b0:49:05:c7:
a2:ce:7e:e9:35:d2:5b:dc:52:36:f2:c4:5e:29:08:41:43:79:
93:ac:58:13:bf:8c:2f:83:b2:4f:89:58:b6:0c:62:08:5c:15:
b2:8e:53:80:55:71:dd:40:b8:4b:50:4c:c6:44:13:c8:d3:b7:
9c:39:59:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 16:41:47 2026 by rpki-client