Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer
File: nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer (raw, json)
Hash identifier: iV+bf4iN2C7VSYSNZpoFSDKwLkqnZcw2jJSl7xJCGiI=
Subject key identifier: 9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A7EC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Mar 2026 13:32:10 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: IP: 103.180.240.0/23
IP: 2001:df0:6240::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174060 (0x2a7ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 31 13:32:10 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A9175906, serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:54:f3:be:43:a4:65:e0:9e:13:5b:60:67:c2:
30:5e:05:7c:4f:9a:34:70:63:97:6a:88:13:8d:24:
1c:db:78:af:58:ec:a9:b0:ff:3a:aa:59:b9:79:26:
28:7f:c5:47:c8:38:ce:20:46:18:a2:d2:75:b0:da:
2a:f3:80:0e:5f:e4:38:3b:f8:df:0b:02:26:48:18:
50:d5:94:6a:6e:59:04:dc:6b:c4:6d:c3:c5:86:3e:
88:a8:36:27:95:12:18:9a:94:4c:11:5f:f1:73:d3:
8f:42:92:29:ac:30:4f:f8:70:02:95:0f:67:20:53:
0a:ef:14:03:c8:36:fe:35:ee:d3:14:56:07:e7:55:
82:1a:fa:d8:c2:73:30:cb:db:3a:f0:b8:83:86:c0:
cc:0a:8a:0f:d4:bf:4b:98:70:24:5f:34:f9:e3:96:
a3:e7:a7:14:65:fb:b5:04:73:07:84:8b:ed:17:f8:
32:4a:25:7d:bb:2e:94:7a:49:a2:d6:2d:5a:fc:68:
fc:fb:f3:8d:8a:97:d3:7e:92:9a:97:fb:72:f7:47:
85:20:8c:47:3b:c6:54:91:f0:50:c4:b3:04:bc:a3:
a2:5b:58:93:ff:5b:d4:79:6e:2b:0c:6f:1c:50:25:
60:f2:2f:28:bd:ad:63:4c:60:45:e3:eb:d9:a8:2b:
c4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.240.0/23
IPv6:
2001:df0:6240::/48
Signature Algorithm: sha256WithRSAEncryption
7c:e7:61:e0:ad:cf:e8:3d:16:82:19:61:65:ab:aa:a9:7b:18:
8c:fe:f8:a5:27:36:0c:9e:77:4d:38:0f:c7:fd:f0:85:a4:f9:
1e:7f:e8:b7:3f:50:43:c6:44:d9:5a:72:bc:cd:2e:c3:37:01:
36:9a:04:07:ee:5b:75:73:5b:46:68:14:7c:14:ff:b1:a8:25:
dd:1e:cb:26:36:cc:b5:f3:a4:02:6b:d3:24:be:67:7f:03:95:
74:90:6b:22:06:a8:8e:02:a3:b9:a8:c9:ec:f1:fb:8b:74:39:
da:8f:5f:3b:91:fa:24:02:c2:10:09:c8:b4:44:4e:d2:3c:52:
58:52:26:91:12:75:c1:63:51:a3:a3:a2:f1:24:39:83:81:bd:
ad:fa:b6:30:68:3a:93:a5:9c:aa:1f:4f:7e:ad:19:12:6e:64:
f7:31:af:6d:26:84:17:17:f6:26:e5:5e:4c:a2:5b:dd:d6:ad:
dd:9c:1f:76:47:e4:ae:3f:21:a9:bf:f3:0c:46:ad:76:ba:3e:
56:22:9d:fa:3a:42:23:b1:dc:e0:8e:3f:e7:11:b0:a9:b2:b8:
a3:c6:c0:1a:f7:2e:93:51:aa:ee:0e:d9:d0:c2:3e:05:78:87:
bb:47:ed:7f:a8:fe:3d:ec:9c:fa:4b:d3:e6:38:f7:b2:74:58:
69:f0:65:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 07:13:03 2026 by rpki-client