Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer
File: ewHKzBcP5qYbIDBBheholG33KFo.cer (raw, json)
Hash identifier: xNRDHhIFJ5ijFNM9yuOxgco3RY5kxuc7xQ6dftFEnvY=
Subject key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A2A6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Mar 2026 13:48:21 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: AS: 18210
AS: 38796
AS: 58620
AS: 134384 -- 134399
IP: 103.208.92.0/23
IP: 119.161.48.0/20
IP: 120.29.248.0/21
IP: 202.65.12.0/22
IP: 203.17.72.0/24
IP: 203.18.56.0/24
IP: 203.119.14.0/24
IP: 2001:dcd::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 20 Mar 2026 05:50:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172710 (0x2a2a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 5 13:48:21 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6d:1f:9d:fe:7d:e9:52:99:74:2e:a4:99:8a:
dc:3f:3c:2c:28:f8:e4:46:00:4e:a4:2c:f5:81:8b:
ac:bc:71:d5:25:86:36:2d:c9:2b:66:5b:47:49:48:
90:49:72:2b:62:5f:c6:09:7b:77:e4:be:92:5d:76:
27:7c:45:b0:b4:0d:2f:f3:95:c5:31:59:55:37:36:
cc:7c:3c:4b:18:33:57:a2:ec:d5:94:3b:65:42:a3:
d7:06:a1:6b:e5:13:95:da:5a:9a:97:1e:26:86:4b:
84:ab:8a:6b:b5:cd:67:08:0e:cc:95:8a:f4:bd:2c:
13:ba:9b:86:01:ba:d9:9b:53:db:2d:06:2b:49:a3:
c5:66:18:d0:4a:a7:45:a9:c1:f7:b7:7f:9c:ec:6b:
e7:57:5c:4f:d5:97:e4:6c:96:de:09:de:a5:56:a0:
09:33:53:f1:04:f6:5b:c6:44:6f:70:ea:d8:39:69:
43:63:18:ae:1e:c2:39:fb:de:13:6a:62:e8:5f:07:
b8:82:9a:9c:8c:0c:77:b6:97:89:a6:65:e9:6f:ac:
dd:c2:cb:b3:a5:1e:95:a1:e4:48:73:4d:1d:4a:e2:
58:51:a6:b7:15:cc:19:5e:2d:06:db:f8:94:68:e5:
0a:ec:05:88:73:0b:f4:27:3f:0a:8d:7f:5d:c9:11:
9c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18210
38796
58620
134384-134399
sbgp-ipAddrBlock: critical
IPv4:
103.208.92.0/23
119.161.48.0/20
120.29.248.0/21
202.65.12.0/22
203.17.72.0/24
203.18.56.0/24
203.119.14.0/24
IPv6:
2001:dcd::/32
Signature Algorithm: sha256WithRSAEncryption
37:04:69:7e:4e:09:35:f7:08:8c:29:14:99:93:e4:d0:f7:4a:
df:4a:12:6f:43:c2:d4:f1:88:a0:95:b6:be:16:83:e5:d9:c2:
fb:e8:e8:84:e6:bd:7b:05:63:c0:bc:41:eb:69:0c:49:be:b4:
ce:cc:12:eb:f4:80:30:5f:44:1a:dc:1a:51:23:20:72:56:7a:
5a:56:0a:b7:08:50:d3:58:40:3e:3b:60:8c:30:16:08:57:2c:
f6:e9:69:da:29:99:1d:f3:e0:d4:84:0b:92:68:af:0e:5a:6c:
91:d7:a9:57:9a:fc:08:45:20:38:2c:3f:a5:29:17:e6:2e:83:
b0:0d:90:de:a2:c6:64:15:b6:23:0e:e2:df:44:20:95:fd:3b:
22:4a:6d:28:58:27:19:74:50:25:3b:dc:b2:a6:3f:83:c8:a2:
d5:74:7f:2e:28:09:c6:04:8f:9d:2e:c0:66:2e:dd:8d:84:1d:
f9:c7:73:19:dc:77:4f:7d:b2:64:be:57:88:0e:13:d7:2b:da:
19:5e:2f:54:34:1a:0c:c7:27:e0:e6:91:09:c2:09:62:c1:ff:
ae:34:d8:d9:11:33:57:60:13:bb:7a:b3:7e:79:5d:5e:b9:16:
83:af:b5:3d:85:2a:c0:7f:8d:f7:9b:e6:f8:0b:e7:17:cc:eb:
fb:4c:29:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 09:26:46 2026 by rpki-client