Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer
File: mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer (raw, json)
Hash identifier: /i6YMYzrFqFwmfol/xYcPio52M9L7D6BmTpsygvvJTo=
Subject key identifier: 99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 027032
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 29 Oct 2025 15:55:32 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 38059
AS: 38187
AS: 45761
AS: 55576
IP: 103.70.52.0/22
IP: 112.121.64.0/18
IP: 182.54.136.0/22
IP: 202.80.104.0/21
IP: 2402:b600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159794 (0x27032)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 29 15:55:32 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A9167B50, serialNumber=991B3F17084F76F12F9F0509D597F0FFECA04B4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d0:c7:94:58:40:cc:47:08:b5:64:d6:6c:47:
46:d5:03:3c:e0:5f:b5:e8:9a:76:09:7b:93:50:c5:
f5:dd:f3:ab:c0:3c:84:08:06:61:fa:ee:88:d4:87:
4a:5c:6d:a3:dd:91:87:cb:9d:f4:c5:c4:a9:34:c0:
34:33:67:bb:e3:4f:c5:8a:d1:84:9e:98:73:3a:bd:
c1:12:e2:1f:fa:6e:39:11:e4:9f:b7:c6:85:13:d3:
72:e0:7c:bb:29:37:6c:16:05:78:59:9a:aa:23:4c:
90:ba:6d:f1:35:0d:4c:1a:63:c7:68:bb:66:a1:f4:
a8:18:55:78:48:78:c4:5a:17:71:f1:44:b3:09:e1:
87:2b:ad:ea:c8:68:2f:58:15:b1:c0:7c:a4:a3:78:
b3:89:dd:23:16:2c:23:5e:60:ab:a8:77:87:06:98:
c4:e8:05:c8:d3:49:d2:23:58:c8:90:38:7b:56:fb:
98:e0:bb:7a:d8:d0:09:17:bf:9a:88:c2:7e:37:86:
09:b3:5d:d8:69:49:06:01:2d:a7:72:fa:05:b0:83:
0c:32:61:48:fb:47:11:af:bf:c5:5c:d2:5c:39:52:
e5:7d:b4:2f:24:f5:f9:93:56:cb:ef:41:06:e0:73:
8d:0b:02:ba:12:f3:bf:6d:c5:ab:99:cb:45:b3:18:
f5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38059
38187
45761
55576
sbgp-ipAddrBlock: critical
IPv4:
103.70.52.0/22
112.121.64.0/18
182.54.136.0/22
202.80.104.0/21
IPv6:
2402:b600::/32
Signature Algorithm: sha256WithRSAEncryption
9b:f8:b6:eb:19:04:56:53:e6:ac:16:20:ac:50:3c:11:f5:31:
56:51:05:5d:7e:e9:b8:3d:fc:f8:16:94:31:8d:22:a8:54:16:
9d:ee:ac:82:82:b4:34:08:89:b6:35:a7:89:e8:ee:09:4c:c3:
be:a3:3b:3a:8f:3a:5f:59:ef:d9:6e:23:28:93:d4:ef:4f:c3:
34:9e:dc:f4:c3:80:85:48:dc:ed:26:98:10:79:86:e2:f9:ae:
d8:45:ff:e9:aa:1b:7c:8c:69:77:d4:43:01:03:6a:3e:1b:17:
1d:3a:18:ac:4e:cf:b2:9f:00:a9:97:f9:03:be:ad:a1:db:77:
4e:4d:7c:8d:a4:60:c2:21:95:58:82:f5:72:90:84:ba:c1:be:
da:67:be:0c:67:42:fa:4c:53:b8:23:dc:b4:7e:3f:b0:3f:c0:
6e:f6:0b:22:fd:16:9e:6b:c5:cd:8e:52:c3:2a:61:26:06:ed:
f8:d0:0e:72:eb:66:d6:d3:2e:4f:a7:08:cb:ff:7b:40:9f:f2:
b0:fc:ed:b7:73:d2:6c:a2:27:24:15:6c:a2:e7:68:9d:58:b4:
cd:ab:dc:06:3b:f2:a3:67:b3:d3:86:b9:d0:cb:bb:37:21:9f:
db:0d:ec:9b:89:d0:35:17:e7:30:4b:5f:44:ab:b5:a7:8f:2f:
e4:da:fe:87
-----BEGIN CERTIFICATE-----
MIIGSjCCBTKgAwIBAgIDAnAyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MTAyOTE1NTUzMloXDTI2MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjdCNTAxMTAvBgNVBAUTKDk5MUIzRjE3MDg0Rjc2RjEyRjlGMDUw
OUQ1OTdGMEZGRUNBMDRCNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDK0MeUWEDMRwi1ZNZsR0bVAzzgX7XomnYJe5NQxfXd86vAPIQIBmH67ojUh0pc
baPdkYfLnfTFxKk0wDQzZ7vjT8WK0YSemHM6vcES4h/6bjkR5J+3xoUT03LgfLsp
N2wWBXhZmqojTJC6bfE1DUwaY8dou2ah9KgYVXhIeMRaF3HxRLMJ4YcrrerIaC9Y
FbHAfKSjeLOJ3SMWLCNeYKuod4cGmMToBcjTSdIjWMiQOHtW+5jgu3rY0AkXv5qI
wn43hgmzXdhpSQYBLady+gWwgwwyYUj7RxGvv8Vc0lw5UuV9tC8k9fmTVsvvQQbg
c40LAroS879txauZy0WzGPWpAgMBAAGjggM/MIIDOzAdBgNVHQ4EFgQUmRs/FwhP
dvEvnwUJ1Zfw/+ygS0owHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTY3QjUwLzlEMTMwNUM4MUQ4RjExRTJBMDJCQ0RFRTA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2N0I1MC85RDEzMDVDODFEOEYxMUUyQTAyQkNERUUwOEIwMkNEMi9tUnNfRndo
UGR2RXZud1VKMVpmd18teWdTMG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKQYIKwYBBQUHAQgBAf8EGjAY
oBYwFAIDAJSrAgMAlSsCAwCywQIDANkYMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIA
ATAYAwQCZ0Y0AwQGcHlAAwQCtjaIAwQDylBoMA0EAgACMAcDBQAkArYAMA0GCSqG
SIb3DQEBCwUAA4IBAQCb+LbrGQRWU+asFiCsUDwR9TFWUQVdfum4Pfz4FpQxjSKo
VBad7qyCgrQ0CIm2NaeJ6O4JTMO+ozs6jzpfWe/ZbiMok9TvT8M0ntz0w4CFSNzt
JpgQeYbi+a7YRf/pqht8jGl31EMBA2o+GxcdOhisTs+ynwCpl/kDvq2h23dOTXyN
pGDCIZVYgvVykIS6wb7aZ74MZ0L6TFO4I9y0fj+wP8Bu9gsi/Raea8XNjlLDKmEm
Bu340A5y62bW0y5PpwjL/3tAn/Kw/O23c9JsoickFWyi52idWLTNq9wGO/KjZ7PT
hrnQy7s3IZ/bDeybidA1F+cwS19Eq7Wnjy/k2v6H
-----END CERTIFICATE-----
Generated at Mon Nov 3 11:15:39 2025 by rpki-client