Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a5tdFBgYlY1zBFgvJU6hddhD4_0.cer
File: a5tdFBgYlY1zBFgvJU6hddhD4_0.cer (raw, json)
Hash identifier: Uu903VW1kE+wpCyvJcDdompTwGHD1jMzHUiwJA9cYSM=
Subject key identifier: 6B:9B:5D:14:18:18:95:8D:73:04:58:2F:25:4E:A1:75:D8:43:E3:FD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A962
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/a5tdFBgYlY1zBFgvJU6hddhD4_0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Apr 2026 12:54:53 +0000
Certificate not after: Sat 01 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 136029
IP: 103.149.23.0/24
IP: 2001:df3:a80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174434 (0x2a962)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 2 12:54:53 2026 GMT
Not After : Aug 1 00:00:00 2026 GMT
Subject: CN=A91359CD, serialNumber=6B9B5D141818958D7304582F254EA175D843E3FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6f:ca:aa:be:eb:52:59:6e:20:a1:51:ad:07:
58:ad:59:18:30:27:ef:e0:04:00:0e:fe:ac:64:75:
13:03:fd:38:74:9a:d4:c8:ce:f3:2f:1f:7a:b0:bb:
56:05:b9:cb:50:a0:1e:15:58:59:ff:e7:4f:bf:d2:
d9:4e:6a:02:c6:b4:17:54:10:84:87:78:1d:c7:7c:
c6:f9:02:ea:26:46:8c:32:bb:84:12:9f:7c:9b:a5:
57:38:41:5f:fc:62:7c:28:2c:c4:db:79:df:f5:04:
ca:9b:5a:72:45:64:4d:dd:52:28:5d:09:07:fb:4e:
92:93:79:67:16:48:38:64:a5:89:9c:be:b0:6b:8d:
a9:da:e8:27:72:c3:24:9f:50:23:5e:e0:59:f0:ba:
4a:c0:14:9e:9c:0b:d3:f2:da:cb:5d:15:53:d3:42:
94:c0:80:f4:78:2a:ca:28:95:0f:34:30:d5:e9:8e:
2a:d3:8a:f0:44:cd:5f:23:df:15:e3:25:04:9a:ee:
75:7d:e0:19:ea:58:b1:97:7f:e7:21:82:3d:2f:84:
6e:40:ea:ad:2e:df:1b:2b:31:d2:10:a5:8a:c0:bc:
2b:6a:65:0b:c6:0b:30:6a:ca:3c:f6:af:85:87:60:
b2:9d:e4:ce:73:67:85:5c:b7:ce:58:36:0b:e5:d4:
f6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:9B:5D:14:18:18:95:8D:73:04:58:2F:25:4E:A1:75:D8:43:E3:FD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/a5tdFBgYlY1zBFgvJU6hddhD4_0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136029
sbgp-ipAddrBlock: critical
IPv4:
103.149.23.0/24
IPv6:
2001:df3:a80::/48
Signature Algorithm: sha256WithRSAEncryption
43:04:58:e4:a6:eb:60:79:0c:d9:6d:49:b8:7f:54:92:13:62:
7c:a3:85:ee:24:df:3f:2f:3e:ba:44:10:85:c7:93:98:d8:5a:
c7:d8:a5:35:c8:9c:2f:89:08:64:28:ee:ca:cd:c1:f1:ba:3a:
03:5c:93:a6:5c:05:36:7b:e3:05:0b:d9:dc:29:c9:25:4f:c2:
c7:9b:55:99:b2:a9:41:c9:6b:1e:e1:91:83:13:40:21:ab:ea:
94:1a:93:bb:1a:9a:2f:a7:89:13:c7:ec:10:81:55:c9:cb:ef:
0e:02:bb:e0:93:0a:8f:c3:a7:f1:47:19:7e:dd:11:b2:5c:65:
ce:17:24:7a:2e:af:6e:bf:9a:3c:1a:62:cd:5e:71:ad:36:48:
13:a2:a4:98:21:63:ec:ba:b4:fb:3a:da:b3:e6:ea:5c:ca:70:
b9:b3:f1:ed:28:55:94:81:e3:6c:47:b0:62:55:cd:bc:a3:09:
7f:ae:0a:ae:c7:5f:9e:8d:6f:12:1c:81:85:e6:a0:a0:bd:32:
51:64:c2:fb:fc:a5:94:7b:36:68:de:71:b9:ad:09:f5:6f:72:
89:06:11:77:38:eb:89:44:a6:90:c8:3f:48:36:52:c6:20:4f:
07:f1:22:b4:d2:18:65:31:19:f3:92:31:14:89:ed:9b:27:37:
00:50:04:e5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Apr 6 07:12:50 2026 by rpki-client