Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer
File: aEWjVwdX5r8sBIWsIXib_1AFHpo.cer (raw, json)
Hash identifier: wh+CyrmzuL614YZUA96W90F0c6T3f+wU5aH0vZWbqkk=
Subject key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0285BF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 13 Jan 2026 02:10:46 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 150729
IP: 103.73.184.0/23
IP: 2001:df1:dac0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165311 (0x285bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 13 02:10:46 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:47:45:41:10:ce:02:a7:ab:10:67:e3:7f:aa:
58:50:43:18:5f:65:2b:15:75:29:61:52:fe:1a:39:
60:fa:44:fb:4d:38:bb:4f:4f:11:5c:67:9b:76:98:
95:40:e5:fb:48:98:3d:df:89:f7:7e:60:ae:a9:d0:
ad:0c:33:28:01:b6:6f:d0:90:64:ce:1c:29:0d:5e:
dc:e0:e0:9f:79:b1:37:57:ef:5b:ea:3c:f5:d0:4e:
1d:99:ac:93:09:93:2d:9b:fe:af:01:65:60:86:f0:
9e:ff:6e:5e:53:b1:05:65:b8:41:43:c9:79:24:37:
cd:c8:b8:a1:a8:a2:9b:4b:18:98:2e:41:83:f7:48:
8a:10:f9:de:7d:5f:6b:04:21:98:6c:c9:ff:86:a5:
84:e5:5b:30:0d:0d:f4:2d:b3:15:3b:b3:60:a2:f5:
14:38:1a:91:63:a8:7e:9e:1c:98:a3:1c:d7:30:cc:
c8:61:22:cf:8f:66:ad:ea:af:b8:d8:81:f1:b0:56:
8f:94:cc:4f:34:11:0c:06:c7:c3:64:3d:4d:bf:64:
b0:53:a6:09:62:06:51:ab:60:7a:18:3c:f8:7b:b0:
ad:c2:c6:b0:14:ac:0e:60:de:2a:ce:68:49:4e:2b:
a2:d4:e0:0a:91:97:02:f8:8b:f4:6f:32:04:aa:c1:
09:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150729
sbgp-ipAddrBlock: critical
IPv4:
103.73.184.0/23
IPv6:
2001:df1:dac0::/48
Signature Algorithm: sha256WithRSAEncryption
0f:9f:53:c8:ce:b8:f2:1f:09:38:89:19:79:bb:52:d2:0e:ce:
29:63:70:cc:54:b7:eb:23:51:bd:f6:38:17:aa:61:1e:e7:ba:
a2:27:48:bd:90:39:09:d5:53:37:99:da:9b:1c:c5:59:31:53:
f7:e7:a8:58:0b:cc:d3:6e:15:9b:7c:de:99:c3:0a:2a:dd:49:
e3:5a:9a:3e:d8:9f:0d:e7:51:70:c9:7a:cf:ac:6c:64:a7:84:
ce:c1:5e:80:eb:97:3d:b8:01:f8:09:92:a5:9e:b7:24:06:25:
36:72:58:d4:ff:23:42:ab:c9:2a:62:5f:51:85:93:c6:58:5e:
58:55:44:80:1b:fb:eb:b6:f8:e8:ec:57:3f:d4:ca:18:fb:f1:
f6:52:2a:4c:56:8a:7e:d6:76:67:15:04:14:59:8d:85:9d:b3:
cf:11:9a:fa:8b:9d:e2:c5:ce:1a:9d:2e:2a:26:69:9f:8e:16:
18:49:e9:db:0c:40:42:da:18:f6:c5:7c:6e:38:49:b3:56:c4:
48:c8:3c:37:6b:ef:ce:77:f3:ae:30:52:5c:4d:63:c0:48:58:
01:46:20:af:dd:9e:6b:c6:5f:47:4b:5c:ab:6a:7a:3e:09:7c:
37:e2:04:c4:33:3e:d2:6e:52:08:25:c7:6a:e3:a8:38:a4:e6:
47:f0:4d:9b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Feb 19 21:24:43 2026 by rpki-client