Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1LdGhX17GHZdpHLXszr7L06YTc.cer
File: l1LdGhX17GHZdpHLXszr7L06YTc.cer (raw, json)
Hash identifier: 58iBRXKleP/DE6pOU/XIloTombEQ55PU34+BIHhxcvg=
Subject key identifier: 97:52:DD:1A:15:F5:EC:61:D9:76:91:CB:5E:CC:EB:EC:BD:3A:61:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A7DA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9126259/69128C4A15C411EBA326DD69C4F9AE02/l1LdGhX17GHZdpHLXszr7L06YTc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9126259/69128C4A15C411EBA326DD69C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Mar 2026 12:38:14 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 56087
IP: 103.204.28.0/23
IP: 180.235.108.0/22
IP: 2406:fa00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 06:23:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174042 (0x2a7da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 31 12:38:14 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A9126259, serialNumber=9752DD1A15F5EC61D97691CB5ECCEBECBD3A6137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:36:ca:64:94:a5:02:96:6f:45:c0:5a:a0:f5:
57:4e:f9:1e:0a:45:f1:b4:70:e1:9b:78:0a:99:97:
47:01:f5:1b:e2:33:5a:ee:f0:03:9d:b9:e4:3c:8f:
41:a8:e4:62:e5:10:e1:00:23:1a:b1:8d:01:0a:74:
ad:8c:cc:4d:66:5b:28:f2:e8:08:02:86:97:36:a0:
d6:27:d1:cb:db:81:c1:02:fb:85:c6:39:ee:d0:75:
04:0a:c1:3d:74:17:66:4c:f3:3e:17:5c:31:c6:d8:
8e:ba:29:17:19:9e:3a:76:9f:17:90:aa:46:6a:1f:
c3:79:2e:36:9a:e8:c2:23:69:0a:73:56:df:27:8f:
58:40:70:19:84:80:0c:ad:a2:3c:8d:10:70:e3:dc:
51:3b:50:36:4b:e4:3b:48:02:2d:25:ad:9b:13:46:
b5:bb:5f:5b:93:4e:38:33:93:b4:34:7f:96:d4:33:
6d:bc:55:f6:06:ec:a6:34:14:19:5b:15:cb:df:5c:
47:d9:b4:24:f6:46:e7:00:be:b1:e4:0c:8c:94:43:
b4:1e:28:f3:40:64:43:07:36:a9:0d:20:cd:cf:16:
b1:41:1f:26:4d:ba:3f:c0:10:f2:cc:b4:5e:39:68:
86:1f:d3:d2:d2:ac:e2:db:d5:44:83:b0:ba:dd:62:
56:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:52:DD:1A:15:F5:EC:61:D9:76:91:CB:5E:CC:EB:EC:BD:3A:61:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9126259/69128C4A15C411EBA326DD69C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9126259/69128C4A15C411EBA326DD69C4F9AE02/l1LdGhX17GHZdpHLXszr7L06YTc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56087
sbgp-ipAddrBlock: critical
IPv4:
103.204.28.0/23
180.235.108.0/22
IPv6:
2406:fa00::/32
Signature Algorithm: sha256WithRSAEncryption
a9:fd:d9:ca:20:38:0b:0e:3f:4a:18:15:4d:a9:df:d5:9b:2a:
e0:c7:1f:97:12:c5:33:de:0e:c5:34:8b:ef:02:21:1e:dd:57:
45:1c:5c:cf:4d:0a:37:d1:52:d8:ec:48:75:ba:d8:45:6c:25:
81:41:e8:2b:ae:59:88:dd:3a:c3:22:09:a6:91:ec:12:ee:79:
8c:a1:f2:b6:4d:e8:2b:2e:d5:ea:bd:a7:23:13:4c:93:36:91:
f8:0c:86:89:77:a7:2f:1a:59:cc:52:7e:96:fd:35:21:3b:4a:
46:cd:2c:b6:65:31:a9:f7:84:11:23:05:09:df:fd:f3:51:4a:
2d:ad:64:02:39:cc:8d:32:1e:2f:53:c2:f7:e9:ab:9d:48:69:
31:67:09:e2:ab:61:3d:68:f2:07:c5:b2:f7:57:63:0c:61:86:
b2:0c:61:ea:49:f7:04:8f:e8:74:91:8c:68:9f:2e:36:93:67:
4c:73:de:39:0b:8a:3c:59:15:71:48:07:a9:af:39:28:a9:d4:
4c:ff:74:43:df:03:28:d9:f6:7c:e7:70:00:ce:09:8e:2e:bb:
22:c0:5e:66:df:e5:64:16:1a:bc:5f:76:3d:a5:3b:16:fb:45:
81:90:f0:01:86:35:3f:f6:f9:0e:af:02:b5:aa:a6:2b:4a:e3:
e1:d0:b4:3e
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDAqfaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDMzMTEyMzgxNFoXDTI3MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjYyNTkxMTAvBgNVBAUTKDk3NTJERDFBMTVGNUVDNjFEOTc2OTFD
QjVFQ0NFQkVDQkQzQTYxMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC7NspklKUClm9FwFqg9VdO+R4KRfG0cOGbeAqZl0cB9RviM1ru8AOdueQ8j0Go
5GLlEOEAIxqxjQEKdK2MzE1mWyjy6AgChpc2oNYn0cvbgcEC+4XGOe7QdQQKwT10
F2ZM8z4XXDHG2I66KRcZnjp2nxeQqkZqH8N5Ljaa6MIjaQpzVt8nj1hAcBmEgAyt
ojyNEHDj3FE7UDZL5DtIAi0lrZsTRrW7X1uTTjgzk7Q0f5bUM228VfYG7KY0FBlb
FcvfXEfZtCT2RucAvrHkDIyUQ7QeKPNAZEMHNqkNIM3PFrFBHyZNuj/AEPLMtF45
aIYf09LSrOLb1USDsLrdYlbtAgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQUl1LdGhX1
7GHZdpHLXszr7L06YTcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI2MjU5LzY5MTI4QzRBMTVDNDExRUJBMzI2REQ2OUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyNjI1OS82OTEyOEM0QTE1QzQxMUVCQTMyNkRENjlDNEY5QUUwMi9sMUxkR2hY
MTdHSFpkcEhMWHN6cjdMMDZZVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDANsXMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQBZ8wcAwQCtOts
MA0EAgACMAcDBQAkBvoAMA0GCSqGSIb3DQEBCwUAA4IBAQCp/dnKIDgLDj9KGBVN
qd/Vmyrgxx+XEsUz3g7FNIvvAiEe3VdFHFzPTQo30VLY7Eh1uthFbCWBQegrrlmI
3TrDIgmmkewS7nmMofK2TegrLtXqvacjE0yTNpH4DIaJd6cvGlnMUn6W/TUhO0pG
zSy2ZTGp94QRIwUJ3/3zUUotrWQCOcyNMh4vU8L36audSGkxZwniq2E9aPIHxbL3
V2MMYYayDGHqSfcEj+h0kYxony42k2dMc945C4o8WRVxSAeprzkoqdRM/3RD3wMo
2fZ853AAzgmOLrsiwF5m3+VkFhq8X3Y9pTsW+0WBkPABhjU/9vkOrwK1qqYrSuPh
0LQ+
-----END CERTIFICATE-----
Generated at Mon Apr 6 08:27:34 2026 by rpki-client