Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer
File: kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer (raw, json)
Hash identifier: slfj8TYlM+TLUABXU4Eb6xTy0H9p3IayrY5d9u9ROgM=
Subject key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02ADC9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 Apr 2026 08:27:54 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 9541
AS: 24440
AS: 56052
AS: 58614
AS: 58746
IP: 14.1.104.0/22
IP: 36.255.32.0/22
IP: 36.255.40.0/21
IP: 43.242.100.0/22
IP: 58.65.192.0/19
IP: 61.5.128.0/19
IP: 101.53.224.0/19
IP: 103.7.60.0/22
IP: 103.18.8.0/21
IP: 103.18.20.0/22
IP: 103.26.80.0/21
IP: 103.31.92.0/22
IP: 103.31.100.0 -- 103.31.107.255
IP: 103.244.172.0 -- 103.244.179.255
IP: 103.245.132.0/22
IP: 103.245.192.0/22
IP: 119.13.184.0/21
IP: 124.29.192.0/18
IP: 137.59.144.0/22
IP: 137.59.216.0 -- 137.59.231.255
IP: 144.48.120.0/22
IP: 144.48.128.0/21
IP: 153.117.0.0/16
IP: 175.107.192.0/18
IP: 202.47.32.0/19
IP: 202.163.64.0/18
IP: 203.101.160.0/19
IP: 218.100.85.0/24
IP: 2001:dec:8000::/48
IP: 2001:4538::/32
IP: 2400:adc0::/27
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 29 Apr 2026 10:05:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175561 (0x2adc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 21 08:27:54 2026 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a8:98:37:78:43:f1:1e:a1:8f:db:10:32:a1:
91:34:9b:5b:f8:40:47:4f:bc:88:5f:ce:e2:6d:7e:
d1:f8:1e:97:29:c5:bb:a2:f7:98:b2:94:db:fc:36:
25:90:e5:b8:84:83:0e:b2:72:5e:fa:54:2b:40:a6:
d9:fb:31:e3:64:9f:35:57:2c:95:a4:f0:c1:52:d2:
02:89:53:b2:fd:28:0e:fd:bb:69:2f:8c:71:eb:88:
7b:9a:bc:9e:46:4a:97:80:5b:03:37:1f:1a:d3:9c:
ae:d6:3c:05:99:08:bb:ac:83:20:cf:43:b6:e9:02:
6c:0d:1d:05:9b:3c:aa:04:7a:4e:a9:3c:8d:0d:ad:
43:7f:7a:9f:ae:f7:4e:ba:64:9c:50:99:d4:cf:59:
3e:ba:50:1e:5c:67:cf:f0:32:76:b9:c3:c7:46:df:
9b:a0:71:a9:5e:39:a6:0c:ef:22:ab:48:fe:c8:ca:
c0:c8:79:cf:66:49:9a:3a:92:4b:35:26:2b:bf:10:
b7:51:a6:1a:f9:5d:bc:f2:bb:28:d8:49:2d:c2:49:
cd:2b:31:03:96:76:d9:73:01:39:db:84:b3:c7:0f:
42:f2:86:0a:63:42:69:fc:2f:00:e9:1f:17:41:92:
1a:9a:60:72:57:04:d7:16:0a:47:c2:34:25:05:5c:
0c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9541
24440
56052
58614
58746
sbgp-ipAddrBlock: critical
IPv4:
14.1.104.0/22
36.255.32.0/22
36.255.40.0/21
43.242.100.0/22
58.65.192.0/19
61.5.128.0/19
101.53.224.0/19
103.7.60.0/22
103.18.8.0/21
103.18.20.0/22
103.26.80.0/21
103.31.92.0/22
103.31.100.0-103.31.107.255
103.244.172.0-103.244.179.255
103.245.132.0/22
103.245.192.0/22
119.13.184.0/21
124.29.192.0/18
137.59.144.0/22
137.59.216.0-137.59.231.255
144.48.120.0/22
144.48.128.0/21
153.117.0.0/16
175.107.192.0/18
202.47.32.0/19
202.163.64.0/18
203.101.160.0/19
218.100.85.0/24
IPv6:
2001:dec:8000::/48
2001:4538::/32
2400:adc0::/27
Signature Algorithm: sha256WithRSAEncryption
af:5b:21:d7:0f:9e:be:9a:33:ad:34:b7:88:c9:18:b9:f5:f7:
bd:1b:13:70:e2:35:13:47:c6:1a:b4:6c:5d:7d:74:78:21:1f:
96:6e:e5:fe:22:5e:93:53:b8:af:27:a3:ed:a0:03:40:d3:74:
76:6c:27:72:c9:dc:7a:ee:2b:bf:6f:33:b4:e1:bd:11:48:5f:
89:1a:88:6b:ba:67:b3:a4:de:25:98:4a:85:34:a1:14:1b:6f:
11:87:34:3b:bd:0e:c4:14:4b:3a:fb:f1:65:3b:71:66:aa:69:
34:67:98:0f:5e:37:a3:c4:37:c0:42:b8:4b:43:c4:c7:a6:c1:
66:22:b0:1d:7c:8b:d4:65:b3:e6:26:56:22:d8:1b:e4:83:de:
c7:8e:ee:92:1d:8f:75:80:4b:f9:b7:06:18:9b:fc:9a:e0:9b:
54:1b:7e:87:bd:3a:0d:b8:7f:47:88:d4:86:6b:41:fd:62:ab:
e9:fc:8a:72:27:94:6c:83:43:43:ce:77:57:71:9c:47:5a:85:
d9:a8:f8:7f:63:b3:c9:b5:83:57:17:8c:c0:55:bb:f7:00:81:
99:ef:27:4a:3a:a8:cc:80:1a:1c:39:31:fc:d4:72:1f:cc:3c:
f2:4a:91:09:1f:0d:cc:b5:99:5f:28:ee:0f:eb:4a:96:d4:c5:
be:93:09:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 13:09:13 2026 by rpki-client