Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrHxHRgdpsydsDI95DvJbFkJZeE.cer
File: hrHxHRgdpsydsDI95DvJbFkJZeE.cer (raw, json)
Hash identifier: rjQr5OTwVu7meApmzapUmDsDT5mymYNLR4H0s+41EDo=
Subject key identifier: 86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028FDE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 17 Feb 2026 14:05:31 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 139902
IP: 103.146.148.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167902 (0x28fde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 17 14:05:31 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91CBFCF, serialNumber=86B1F11D181DA6CC9DB0323DE43BC96C590965E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cd:8b:8b:95:5e:f7:39:52:f4:53:a0:89:d2:
58:03:66:2c:ff:bd:4b:91:d1:f9:59:b0:3f:61:9f:
d7:3d:5b:a4:be:e6:ed:0f:fd:99:56:8f:74:95:e2:
e8:56:97:07:bf:19:ef:b4:23:42:4c:a2:da:1d:3e:
54:43:59:4c:d2:ef:94:67:27:a3:65:02:f0:54:eb:
85:4a:4c:f5:0f:76:48:64:7b:97:e3:ed:d0:db:35:
b0:e3:81:62:c9:88:e1:75:25:08:4b:fc:5b:1a:3a:
11:ee:7c:3d:6e:51:20:41:6e:a2:9e:51:79:50:3d:
0e:9b:12:47:ec:4c:37:3c:0b:8c:07:fb:34:29:28:
36:c1:e8:4c:4f:0f:29:84:75:72:14:af:12:c2:9f:
d0:d1:f7:8a:ae:7f:1d:ee:d6:22:90:e1:6b:c6:bf:
ce:49:b2:73:e7:17:d6:40:2d:34:c7:69:da:6c:55:
67:8f:8a:db:02:30:ad:8c:02:17:41:5b:f7:75:5e:
b3:38:43:f8:0d:c9:17:ce:d2:10:b3:5b:2f:08:2e:
e5:58:95:5d:11:88:08:4b:17:94:08:8c:84:62:90:
5a:95:1d:f6:e5:7d:01:82:ec:26:2b:22:e5:0e:0f:
85:89:e0:1b:c4:b4:27:95:a4:9d:ce:d8:49:65:7c:
7d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B1:F1:1D:18:1D:A6:CC:9D:B0:32:3D:E4:3B:C9:6C:59:09:65:E1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CBFCF/95639BF0248D11EAADA2054EC4F9AE02/hrHxHRgdpsydsDI95DvJbFkJZeE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139902
sbgp-ipAddrBlock: critical
IPv4:
103.146.148.0/23
Signature Algorithm: sha256WithRSAEncryption
d1:f7:f8:40:05:25:c9:3c:a7:14:ad:ad:2b:f2:0d:1d:48:c6:
1e:03:e2:e9:ba:5e:25:a7:ec:4d:11:2b:20:06:89:55:bf:c3:
38:3b:3f:c7:52:23:12:f6:07:ab:d3:2f:be:70:93:66:89:0f:
34:36:e1:87:71:84:0e:8e:6f:ad:ec:4a:58:7e:8b:e2:ca:a5:
61:1e:fa:3c:24:b3:c2:95:c6:5d:77:b8:5b:5f:91:8a:08:3e:
4c:a1:ea:3c:1a:de:df:e6:11:a7:a6:87:9a:0d:83:dc:0b:bd:
b4:f2:61:83:1c:ab:d3:f4:3f:da:8f:bc:ac:f6:23:63:e6:b4:
8e:90:d1:a5:e7:29:57:34:0f:dc:43:e1:12:06:fc:8b:dc:3f:
f7:f7:07:19:ed:2a:45:a7:a4:09:4a:0a:fa:aa:0d:3f:14:29:
2e:0c:2e:52:6e:af:b7:2f:85:e0:7a:8e:0a:e7:13:9e:05:f7:
17:32:59:c5:9e:ec:60:7f:e3:9a:44:3c:12:de:b5:b4:a3:5b:
7f:5a:14:e2:10:54:b2:37:cb:36:4f:81:d0:f0:91:32:36:55:
f2:a1:48:5a:d6:2f:c1:4b:4f:a0:46:c3:d1:17:9e:0b:45:4f:
78:d6:4a:e6:a9:4c:fe:3f:95:81:b9:df:00:cd:54:ae:17:05:
60:46:8a:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 16:39:17 2026 by rpki-client