Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer
File: n2xg5qKluzMFUknUcjhHf4nhOnA.cer (raw, json)
Hash identifier: gEWRzpbJQmLGzUXAAYfJwAD2+BgxPtAW+MfkUs5TKtA=
Subject key identifier: 9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02BE3B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Jun 2026 14:15:15 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: AS: 136609
IP: 103.93.239.0/24
IP: 2001:df1:5300::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 Jul 2026 05:51:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179771 (0x2be3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 18 14:15:15 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A91D1E30, serialNumber=9F6C60E6A2A5BB33055249D47238477F89E13A70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8d:38:ca:a4:94:4b:8f:d4:0d:5f:45:87:a6:
91:77:a5:b8:0e:1b:43:58:63:a8:9d:20:e8:81:e6:
b1:e5:04:50:9e:9d:ad:9b:c0:ff:a1:d4:48:df:ab:
da:ee:8b:ac:42:5d:b2:fa:87:cf:40:a1:f1:ce:bc:
00:d9:a3:21:d8:d4:fc:8b:a2:26:fd:e2:b0:e2:3d:
df:18:c7:bb:59:2b:b7:e9:43:c3:41:f3:7d:b7:bd:
53:6b:7e:6e:98:d3:6a:f4:dc:41:1a:c9:5c:f6:a2:
03:de:b8:d6:eb:3f:55:66:4f:ba:2c:22:b0:74:33:
09:da:d9:62:eb:f5:b2:24:fa:bf:5b:f3:ed:00:67:
90:81:90:67:0b:70:c7:58:a9:dc:cb:3f:07:dd:69:
54:76:99:53:01:00:16:9b:cd:24:b6:c2:ba:8e:fc:
fe:75:3c:e8:48:81:80:59:fe:04:f5:df:c6:d4:ce:
05:c4:4d:ab:ae:38:c5:3f:2c:76:87:8c:94:64:6e:
29:00:93:94:a0:df:67:bb:2e:32:ba:5d:6b:6d:ff:
81:d9:9d:a6:2d:af:41:2a:86:41:7a:17:57:d4:50:
8e:26:be:5a:e3:98:92:dc:dc:79:fc:fd:35:7a:8d:
44:fe:8b:eb:fe:f2:7f:1d:18:2d:4d:d5:fb:69:82:
30:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136609
sbgp-ipAddrBlock: critical
IPv4:
103.93.239.0/24
IPv6:
2001:df1:5300::/48
Signature Algorithm: sha256WithRSAEncryption
57:45:c5:af:62:b8:5e:71:2e:f5:0a:7c:50:63:d9:51:b7:0b:
5e:c4:c5:1e:38:db:6c:cf:cd:b0:b8:0b:b9:24:0e:7e:16:c6:
23:31:9b:8c:90:0a:36:be:06:43:49:bb:ba:c0:14:a5:69:22:
f2:b4:83:e1:d4:7a:16:3c:6a:b7:30:88:1d:78:00:96:17:c8:
b9:d7:0b:5e:c9:d6:cb:d8:07:37:7e:04:52:4a:a6:2a:28:34:
15:9a:f7:71:cf:df:55:77:81:1d:f7:27:bc:b0:e7:8d:1b:7d:
c5:f2:f6:55:87:e6:28:86:a9:2e:47:02:f6:37:3e:b2:47:ca:
5a:6e:93:3a:51:d4:6f:12:eb:9f:ff:45:80:e7:4e:fd:f3:49:
b5:a3:52:01:10:00:73:c2:2f:8a:ed:72:94:34:3f:2d:eb:ee:
e5:77:9d:94:5c:ae:65:a6:93:52:93:3e:11:6f:3c:e3:24:c2:
43:24:f9:44:54:1d:f9:03:a9:95:3c:65:ff:41:67:b3:56:92:
6f:33:7f:a8:a2:56:39:c6:e1:da:40:a7:97:e2:10:8c:73:e4:
c9:0f:ea:81:2c:ea:b7:fe:c3:7d:51:a0:c2:49:43:14:e9:32:
69:1d:a7:cb:f1:7e:bc:26:f6:f1:ac:8e:4a:54:d1:ef:37:b4:
18:83:f4:0a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jun 24 10:21:13 2026 by rpki-client