Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer
File: aecBsfM0KSOA56u5AcNCYzLGqlo.cer (raw, json)
Hash identifier: GY5mxVb1pz2vaCV0rtCplVU2GaSIe4205YvVBAcoviA=
Subject key identifier: 69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02AA43
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 04 Apr 2026 14:34:39 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 137521
IP: 103.111.79.0/24
IP: 103.123.84.0/24
IP: 2001:df3:e0c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 06:23:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174659 (0x2aa43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 4 14:34:39 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A91F44EA, serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:03:d5:b0:74:54:14:db:30:75:48:b4:82:8f:
89:65:a0:f2:bd:bd:d4:13:c1:f4:8f:d0:54:a6:b5:
cb:c6:89:95:1c:f5:2a:5b:69:5c:81:c0:a3:b1:66:
6b:31:c9:59:fc:7a:08:04:29:20:42:65:a3:8b:f1:
6f:08:5e:d1:17:19:4c:c7:33:98:69:91:ab:80:4d:
3d:7b:c7:4e:01:e0:d5:95:a7:07:7c:d2:6a:be:86:
4c:20:43:c3:55:c9:e3:40:ff:1c:95:77:af:70:95:
95:0e:ce:84:e2:12:de:84:73:3c:38:dd:d4:ec:b8:
d5:ae:2d:32:f8:42:ac:b7:8c:e1:60:23:e2:45:75:
d9:b4:ca:e7:0e:62:2a:d3:37:64:78:97:a6:41:39:
cb:1d:42:0a:76:65:bc:54:e3:c0:01:16:ff:59:e0:
bf:f8:75:97:54:58:d5:f6:06:9b:8d:5d:bf:67:0e:
15:dc:8a:a8:6c:01:ee:25:e4:cd:51:74:72:1c:1e:
89:7a:87:27:de:63:5e:24:67:b3:fc:5e:d5:11:e1:
e0:b1:36:46:6f:38:3a:78:be:da:21:33:70:fb:5e:
c5:1a:9c:35:30:0a:be:ed:e6:75:e6:84:98:47:46:
08:48:ed:33:d8:9d:e7:a4:64:28:5c:98:61:1c:a8:
c7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137521
sbgp-ipAddrBlock: critical
IPv4:
103.111.79.0/24
103.123.84.0/24
IPv6:
2001:df3:e0c0::/48
Signature Algorithm: sha256WithRSAEncryption
8d:8f:81:a0:1e:02:f4:d7:d7:34:18:9b:87:ae:91:8e:70:75:
2d:c2:74:a7:91:2c:d3:52:1b:8f:87:4b:83:4d:af:b8:ea:80:
86:d5:ab:de:b0:a6:0b:3b:42:57:ce:2b:49:97:d0:9d:e9:83:
1e:ce:b8:a0:f5:02:fd:2b:9a:2b:a5:34:72:a2:ba:f6:d6:f5:
82:33:db:5e:73:43:22:df:4d:1b:85:a1:98:37:9d:10:c7:2d:
cd:09:e2:63:83:e2:c6:70:29:c9:8a:e1:63:e1:b3:fe:ea:2a:
5a:f4:55:e6:01:17:13:de:68:40:39:29:76:a1:c1:47:4d:c6:
66:41:4f:a2:ea:76:f6:e3:35:16:93:e2:0e:8b:ec:2e:9e:ca:
6b:d1:11:e8:3f:2e:f9:b9:61:44:3d:51:0a:61:f2:98:71:6f:
c9:30:09:9c:8d:76:f9:c9:2f:6e:58:75:10:e0:93:2a:08:ac:
1c:bc:c3:83:3d:3a:8c:6e:59:71:6e:47:b3:da:07:f3:0d:e9:
5a:db:b7:8c:b4:53:61:05:e1:f9:7a:21:f6:da:a8:43:31:32:
17:70:f0:ec:e7:a9:e7:7d:99:f6:86:b2:1c:34:c3:dd:9c:96:
5e:0f:90:ce:28:89:b4:fd:92:79:ff:1f:d8:3e:ef:8b:0d:65:
9c:60:da:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 08:50:08 2026 by rpki-client