Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Hs5T4-cv5zdIJPCcm3f6RP6qc4.cer
File: _Hs5T4-cv5zdIJPCcm3f6RP6qc4.cer (raw, json)
Hash identifier: tTrs2iWGkVGGzNJ1AvNPpftLey+LS694GM7RlmbzQQ0=
Subject key identifier: FC:7B:39:4F:8F:9C:BF:9C:DD:20:93:C2:72:6D:DF:E9:13:FA:A9:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B3BA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/_Hs5T4-cv5zdIJPCcm3f6RP6qc4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 May 2026 01:10:16 +0000
Certificate not after: Wed 01 Dec 2027 00:00:00 +0000
Subordinate resources: AS: 134573
IP: 103.120.230.0/23
IP: 2001:df6:2500::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 May 2026 04:46:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177082 (0x2b3ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 11 01:10:16 2026 GMT
Not After : Dec 1 00:00:00 2027 GMT
Subject: CN=A91D2A6D, serialNumber=FC7B394F8F9CBF9CDD2093C2726DDFE913FAA9CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a0:3f:34:5f:74:a4:48:a6:01:b6:da:d2:48:
78:ba:23:49:80:e3:ea:1f:c9:91:f2:63:2a:f2:1c:
d9:7f:ab:c2:44:49:4e:9c:7c:88:ae:b4:25:12:b9:
0f:e3:d6:ea:b2:d1:ab:61:2b:c4:15:c2:a4:1c:f4:
dc:37:3c:c0:bf:61:74:fb:02:cc:20:a8:ae:d4:1c:
2f:e7:83:7a:04:9a:68:03:9d:70:f7:a6:d5:6f:38:
48:f4:c4:70:b2:cf:d1:10:9b:ad:7f:81:81:6f:84:
4d:9d:9d:08:79:66:ba:a5:26:41:36:27:6e:1c:d8:
a7:c3:c3:de:5c:d3:e1:03:08:eb:4d:b3:c4:f4:39:
46:e6:c1:a7:e0:20:f2:1c:fb:6e:f8:d0:70:2a:1a:
0a:7d:a8:d0:18:79:5e:cb:02:b7:3c:89:5a:66:1a:
3d:58:ab:75:87:e4:69:6c:b3:9c:6d:6c:04:35:74:
94:66:90:01:0e:75:b2:d3:58:8e:4f:ff:26:ee:6f:
fe:74:dc:60:03:b6:3f:6a:4e:fc:6e:01:0d:3b:a4:
6a:16:08:95:cc:98:88:b5:e1:0e:a7:ed:fb:f6:56:
46:dc:19:a6:c6:fb:ae:99:fb:09:32:cf:9b:c9:02:
ee:09:de:83:04:44:48:72:39:35:55:c5:4c:3f:3d:
75:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:7B:39:4F:8F:9C:BF:9C:DD:20:93:C2:72:6D:DF:E9:13:FA:A9:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D2A6D/7F8D63B40CCB11EDB3CD4768C4F9AE02/_Hs5T4-cv5zdIJPCcm3f6RP6qc4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134573
sbgp-ipAddrBlock: critical
IPv4:
103.120.230.0/23
IPv6:
2001:df6:2500::/48
Signature Algorithm: sha256WithRSAEncryption
0c:7e:d6:1d:c6:80:aa:93:2b:db:b5:b3:e4:2d:f5:fb:50:7a:
23:10:48:3e:d9:09:8d:51:4a:69:c8:a7:ad:a5:7b:39:51:6f:
6b:b4:26:3f:16:e9:8a:81:97:7e:12:c1:61:3a:a5:8c:be:c0:
28:94:67:c4:38:24:53:2c:cb:b3:e1:ac:6a:36:f5:d7:7e:43:
53:87:9c:b5:78:8b:ce:85:23:4b:84:d0:d3:49:fe:be:96:ae:
7c:c2:d5:78:ad:8b:71:35:21:41:3a:ff:3f:d7:14:cf:f8:de:
af:36:23:37:8a:1f:5f:0f:76:48:66:ba:5f:76:8c:3f:fa:e5:
ba:08:c3:69:b1:c2:82:e0:21:f9:32:34:a2:c7:ea:f7:bb:89:
79:ac:08:1b:85:db:6e:e6:52:8a:9f:98:3a:a1:82:c4:ca:37:
d3:d3:b5:ef:6e:8d:fb:6b:a2:77:77:0a:ec:a8:57:55:62:c7:
c5:03:62:52:a4:40:2f:bf:f2:ec:81:82:e8:8c:48:34:1f:31:
33:34:f4:22:09:eb:76:22:7f:a3:b5:29:04:c4:d3:d7:1f:ae:
cc:dc:61:af:a1:fd:4b:bc:58:ee:47:d9:9b:65:c6:b6:c1:8b:
41:25:07:3d:13:0c:67:ec:7b:a2:1a:aa:bb:11:6d:e5:a6:09:
f9:2a:d3:a1
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDArO6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDUxMTAxMTAxNloXDTI3MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDJBNkQxMTAvBgNVBAUTKEZDN0IzOTRGOEY5Q0JGOUNERDIwOTND
MjcyNkRERkU5MTNGQUE5Q0UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDBoD80X3SkSKYBttrSSHi6I0mA4+ofyZHyYyryHNl/q8JESU6cfIiutCUSuQ/j
1uqy0athK8QVwqQc9Nw3PMC/YXT7AswgqK7UHC/ng3oEmmgDnXD3ptVvOEj0xHCy
z9EQm61/gYFvhE2dnQh5ZrqlJkE2J24c2KfDw95c0+EDCOtNs8T0OUbmwafgIPIc
+2740HAqGgp9qNAYeV7LArc8iVpmGj1Yq3WH5Glss5xtbAQ1dJRmkAEOdbLTWI5P
/ybub/503GADtj9qTvxuAQ07pGoWCJXMmIi14Q6n7fv2VkbcGabG+66Z+wkyz5vJ
Au4J3oMEREhyOTVVxUw/PXU7AgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU/Hs5T4+c
v5zdIJPCcm3f6RP6qc4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQyQTZELzdGOEQ2M0I0MENDQjExRURCM0NENDc2OEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEMkE2RC83RjhENjNCNDBDQ0IxMUVEQjNDRDQ3NjhDNEY5QUUwMi9fSHM1VDQt
Y3Y1emRJSlBDY20zZjZSUDZxYzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg2tMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ3jmMA8EAgAC
MAkDBwAgAQ32JQAwDQYJKoZIhvcNAQELBQADggEBAAx+1h3GgKqTK9u1s+Qt9ftQ
eiMQSD7ZCY1RSmnIp62lezlRb2u0Jj8W6YqBl34SwWE6pYy+wCiUZ8Q4JFMsy7Ph
rGo29dd+Q1OHnLV4i86FI0uE0NNJ/r6WrnzC1Xiti3E1IUE6/z/XFM/43q82IzeK
H18Pdkhmul92jD/65boIw2mxwoLgIfkyNKLH6ve7iXmsCBuF227mUoqfmDqhgsTK
N9PTte9ujftrond3CuyoV1Vix8UDYlKkQC+/8uyBguiMSDQfMTM09CIJ63Yif6O1
KQTE09cfrszcYa+h/Uu8WO5H2ZtlxrbBi0ElBz0TDGfse6IaqrsRbeWmCfkq06E=
-----END CERTIFICATE-----
Generated at Thu May 21 09:28:54 2026 by rpki-client