Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer
File: h25oE78sGBHNEd6ZKBrNRL7A3nM.cer (raw, json)
Hash identifier: vwtgKW71kVjEudjITthmzCfZK8ZTeweYACNFk1tqpzg=
Subject key identifier: 87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028E3D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Feb 2026 14:23:26 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 149172
IP: 103.177.196.0/23
IP: 2400:3d20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 13:09:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167485 (0x28e3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 9 14:23:26 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91F4FB0, serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e7:45:22:11:d3:f6:b9:75:4f:7d:a8:31:86:
06:48:5c:90:19:be:62:e8:fc:1a:4a:be:c3:25:42:
46:2b:a4:f9:83:a0:0f:22:9f:3f:70:b0:f9:30:57:
7f:c9:26:e3:e4:71:ac:f2:4e:d9:a7:e8:c6:95:ff:
50:d4:49:52:9e:e4:f8:b8:2f:92:d5:ee:9f:21:85:
06:2c:d2:b5:cb:71:23:f3:f3:60:7d:79:49:1d:20:
3b:8f:e7:f7:d8:46:f5:00:47:ae:49:34:38:ef:9c:
0a:eb:90:15:38:11:4e:91:19:41:d8:08:b6:9b:3d:
9a:12:20:c8:e5:3d:36:a4:48:81:8e:72:85:ac:12:
4e:1b:c4:4c:42:00:2c:ae:e2:f1:6b:e9:c3:3b:a7:
12:0e:e2:50:43:1a:69:1d:05:18:6e:77:3e:10:c1:
09:d4:4d:e0:ad:2c:4d:07:bf:2c:51:23:7b:37:d9:
4e:f7:08:ba:a6:d0:c9:57:f9:6c:c9:7d:39:a9:48:
de:ed:1f:7e:9b:51:ce:f7:37:e9:5c:e9:04:1d:15:
b1:56:54:44:30:c1:28:ba:a7:aa:58:e1:63:e7:a0:
41:7e:e9:ba:74:54:b2:1e:ab:19:83:b9:aa:06:c7:
b4:bc:b7:84:a5:1a:da:7d:56:4b:9d:35:a7:8a:ae:
30:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149172
sbgp-ipAddrBlock: critical
IPv4:
103.177.196.0/23
IPv6:
2400:3d20::/32
Signature Algorithm: sha256WithRSAEncryption
ac:d8:fd:32:f3:c8:b8:ba:de:fd:1d:b5:b1:d3:66:9a:b2:48:
73:19:fb:74:e3:f8:90:06:5c:ff:b1:4c:fe:07:f7:2f:7c:f9:
20:dd:1f:82:3c:b5:53:3c:15:f9:f5:d7:65:16:15:25:bb:f3:
80:e1:74:97:be:ab:b5:9f:df:a5:82:cf:7b:81:3f:9a:1a:1b:
18:16:4b:42:93:03:da:a7:a5:12:10:0b:dc:04:df:65:95:4e:
6e:f1:fd:fa:02:06:79:b8:2d:28:bb:6f:7a:cc:ea:7d:83:c4:
e1:05:16:a3:c6:d0:c8:05:25:36:61:7b:5a:9d:ef:94:94:c3:
99:71:0e:d8:11:91:b1:c2:69:b1:aa:0d:5f:34:8f:6f:e2:20:
a8:c0:10:aa:d5:e4:c8:52:75:f2:c8:a3:39:ea:52:f3:5c:81:
20:58:5d:4c:34:59:7e:56:84:07:19:bb:30:2e:ec:e9:d5:84:
e5:04:22:20:69:77:64:ee:42:3a:c6:7e:fa:e9:94:59:4b:64:
b2:be:ff:b1:3f:81:af:0a:bb:2b:36:6e:1e:df:ed:f1:7b:80:
c9:80:ea:46:a7:e6:bf:fa:ac:96:95:64:a4:1f:7b:fb:87:b5:
16:fc:5e:c3:2d:c9:12:2b:57:a1:ef:bb:87:be:9e:fe:1a:e0:
e7:38:68:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 15:09:10 2026 by rpki-client