Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cKRczAWTxHEjY1BaCmTdO3NXboo.cer
File: cKRczAWTxHEjY1BaCmTdO3NXboo.cer (raw, json)
Hash identifier: wOt7p5W1gJgS0VVLXslqhSRs4L3+OVjXCdWyHnusqYw=
Subject key identifier: 70:A4:5C:CC:05:93:C4:71:23:63:50:5A:0A:64:DD:3B:73:57:6E:8A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B49B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911807E/C4B4E2C6179211EB90BFA084C4F9AE02/cKRczAWTxHEjY1BaCmTdO3NXboo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911807E/C4B4E2C6179211EB90BFA084C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 14 May 2026 12:26:18 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 141234
IP: 103.156.244.0/23
IP: 2001:df5:280::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 May 2026 04:46:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177307 (0x2b49b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 14 12:26:18 2026 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A911807E, serialNumber=70A45CCC0593C4712363505A0A64DD3B73576E8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e6:23:2c:d8:62:7c:30:19:59:1d:64:ce:5b:
63:7b:c2:b7:22:45:e3:ba:f6:bf:19:fa:ca:97:59:
f6:54:37:12:0d:f4:5d:62:81:ee:19:91:70:ef:4f:
48:43:35:26:29:f0:43:e5:da:5f:31:af:bf:77:27:
7b:32:1e:cd:11:55:2c:f6:9f:17:b6:bd:30:4e:a3:
5c:69:85:00:15:48:a4:d5:55:4e:8e:b9:9e:f1:2f:
09:3b:d1:a1:20:37:4c:a7:72:fc:fb:33:65:89:8f:
ae:5f:63:d7:e1:0e:36:d7:7a:3e:54:86:cf:09:f7:
6a:47:81:5a:a7:e1:49:59:4a:81:8c:99:e0:5f:70:
2a:a5:55:a8:f4:71:c1:8d:c7:b1:29:72:8f:d0:b6:
5e:c9:dd:09:8f:ab:43:cc:6b:3a:b4:33:82:f6:5c:
f1:2d:1e:85:29:06:f6:ce:30:1e:40:7e:78:bd:0e:
29:f8:7a:09:e4:7b:7b:a9:de:10:6d:b9:c3:03:db:
b1:b7:b2:d6:1f:44:13:3e:b2:f1:df:82:a2:46:9b:
4c:ed:ae:b7:00:d7:62:7d:e8:02:4c:73:cc:3e:51:
e5:65:93:f0:76:9f:72:01:30:7e:06:13:82:0e:bf:
80:e0:b1:82:dc:5f:85:28:20:19:d9:79:10:fc:9a:
27:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A4:5C:CC:05:93:C4:71:23:63:50:5A:0A:64:DD:3B:73:57:6E:8A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911807E/C4B4E2C6179211EB90BFA084C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911807E/C4B4E2C6179211EB90BFA084C4F9AE02/cKRczAWTxHEjY1BaCmTdO3NXboo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141234
sbgp-ipAddrBlock: critical
IPv4:
103.156.244.0/23
IPv6:
2001:df5:280::/48
Signature Algorithm: sha256WithRSAEncryption
22:97:27:9b:c4:31:df:d4:3f:8b:29:8c:0d:3b:8a:b7:a6:08:
27:a1:32:f6:f8:b8:53:ec:c9:03:2b:27:f1:0b:9c:34:d3:6a:
b9:97:b1:32:d3:e4:4b:de:75:ed:5d:a7:10:e5:6d:85:a5:3c:
bc:8c:19:ab:74:fa:18:5d:7b:ed:6e:a8:67:5b:5f:6a:4a:b3:
45:89:5d:e9:4b:3a:c7:16:ee:d8:85:73:e4:48:93:2c:9a:25:
ca:bf:a0:a8:bb:9c:d8:e9:cb:2e:64:db:e0:8e:c7:b9:67:46:
e8:50:98:31:b8:e1:b6:0b:a0:1a:c3:63:54:46:d1:b9:41:ec:
50:e8:6e:b4:04:d5:d9:c3:d5:d6:a0:29:7c:eb:3a:f6:f4:ad:
3f:63:fe:91:d1:cd:68:8f:b3:89:b5:ca:d3:2a:15:2d:3d:b3:
41:28:1d:7a:0b:e1:81:69:9e:0c:d4:0c:10:19:50:b7:78:26:
09:d8:4a:d0:2c:d1:2b:5e:28:41:5f:70:33:6e:fc:f0:75:6d:
69:1f:38:b3:0d:28:b9:b4:8e:dc:32:e0:61:db:04:35:30:22:
d3:15:ad:ee:d8:27:29:47:8d:63:ad:6f:49:28:d7:47:9d:8f:
c2:c8:29:af:c7:7a:82:51:db:82:d2:65:27:46:b5:6e:63:a6:
0f:01:45:c8
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDArSbMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDUxNDEyMjYxOFoXDTI2MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMTgwN0UxMTAvBgNVBAUTKDcwQTQ1Q0NDMDU5M0M0NzEyMzYzNTA1
QTBBNjRERDNCNzM1NzZFOEEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCu5iMs2GJ8MBlZHWTOW2N7wrciReO69r8Z+sqXWfZUNxIN9F1ige4ZkXDvT0hD
NSYp8EPl2l8xr793J3syHs0RVSz2nxe2vTBOo1xphQAVSKTVVU6OuZ7xLwk70aEg
N0yncvz7M2WJj65fY9fhDjbXej5Uhs8J92pHgVqn4UlZSoGMmeBfcCqlVaj0ccGN
x7Epco/Qtl7J3QmPq0PMazq0M4L2XPEtHoUpBvbOMB5Afni9Din4egnke3up3hBt
ucMD27G3stYfRBM+svHfgqJGm0ztrrcA12J96AJMc8w+UeVlk/B2n3IBMH4GE4IO
v4DgsYLcX4UoIBnZeRD8mieLAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUcKRczAWT
xHEjY1BaCmTdO3NXboowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTE4MDdFL0M0QjRFMkM2MTc5MjExRUI5MEJGQTA4NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExODA3RS9DNEI0RTJDNjE3OTIxMUVCOTBCRkEwODRDNEY5QUUwMi9jS1JjekFX
VHhIRWpZMUJhQ21UZE8zTlhib28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAieyMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ5z0MA8EAgAC
MAkDBwAgAQ31AoAwDQYJKoZIhvcNAQELBQADggEBACKXJ5vEMd/UP4spjA07irem
CCehMvb4uFPsyQMrJ/ELnDTTarmXsTLT5Evede1dpxDlbYWlPLyMGat0+hhde+1u
qGdbX2pKs0WJXelLOscW7tiFc+RIkyyaJcq/oKi7nNjpyy5k2+COx7lnRuhQmDG4
4bYLoBrDY1RG0blB7FDobrQE1dnD1dagKXzrOvb0rT9j/pHRzWiPs4m1ytMqFS09
s0EoHXoL4YFpngzUDBAZULd4JgnYStAs0SteKEFfcDNu/PB1bWkfOLMNKLm0jtwy
4GHbBDUwItMVre7YJylHjWOtb0ko10edj8LIKa/HeoJR24LSZSdGtW5jpg8BRcg=
-----END CERTIFICATE-----
Generated at Thu May 21 08:42:28 2026 by rpki-client