Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer
File: o9XPQ95bPYucND7UScFpDr40Fw4.cer (raw, json)
Hash identifier: lPOOX5Zunf30ov7PzdGZ7CmnPXPg4PuGMgi715jOw90=
Subject key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028DA7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Feb 2026 12:56:31 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: IP: 103.147.62.0/23
IP: 2405:acc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167335 (0x28da7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 6 12:56:31 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A914CCD1, serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4b:54:ac:7b:2d:32:6b:11:0f:6c:81:05:53:
6e:89:a2:83:aa:99:cc:c2:88:89:33:68:b2:a7:2b:
ba:bc:09:16:de:65:e8:eb:06:08:95:1d:35:79:0f:
ca:fc:10:67:b7:84:76:fd:bc:ab:a0:25:46:9c:a6:
a7:07:02:6a:61:87:43:04:e9:a9:c4:a9:2a:cd:c0:
20:b8:bb:18:25:d4:11:23:2f:b0:f9:c5:78:17:95:
08:36:9c:3b:be:4e:dd:bc:e3:63:61:0a:94:ba:8c:
cf:92:94:56:4f:7b:29:45:f5:72:ea:6e:81:d8:1f:
8a:d5:c4:65:15:6b:2d:24:86:f1:24:a6:d8:f3:77:
b4:84:dd:21:1e:65:47:7c:ff:b5:8f:da:ea:76:fe:
6a:e1:89:36:e5:c2:ad:14:c5:6c:b0:2a:7e:82:60:
91:7c:e0:06:b9:0d:01:f6:e5:38:3d:b0:b6:23:f5:
f9:80:77:90:e7:17:19:b3:de:df:2d:93:74:ab:f7:
81:ee:cf:7a:62:e0:66:88:42:2c:94:09:73:04:37:
b9:90:33:99:85:37:36:3e:f9:64:85:24:e7:88:3f:
19:17:73:59:9c:fa:7d:03:36:63:b6:9e:9b:2e:cb:
c9:7c:19:d2:3d:9f:53:67:59:70:43:14:14:74:99:
a9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.62.0/23
IPv6:
2405:acc0::/32
Signature Algorithm: sha256WithRSAEncryption
23:17:f9:0e:e3:52:90:70:ed:5f:3e:21:31:a0:8d:99:f2:ed:
9f:2c:dc:53:88:f1:61:89:65:0d:05:0f:d1:dc:1f:ab:23:59:
59:0a:c6:19:ec:91:f2:07:b5:97:fa:28:3b:d2:17:f9:29:a6:
e3:61:43:14:9e:f5:cb:90:2b:c0:f3:94:05:38:61:ab:1f:65:
e3:5b:8c:66:b1:7e:75:60:20:12:a3:ca:2c:ea:ed:55:6f:6a:
be:77:33:0b:28:83:b5:7d:fa:90:98:9b:b2:ca:fb:c4:e8:68:
17:12:29:bd:32:0a:55:a6:c3:59:dd:42:d9:80:a6:80:c9:57:
56:31:5e:04:04:c9:dc:84:04:70:0c:52:f0:96:df:15:71:fd:
9b:3b:28:d7:d7:90:50:61:dd:9e:cf:04:d1:5a:ac:94:e8:8d:
24:0f:25:05:42:e4:ae:b7:dc:8b:c0:58:1f:88:90:a7:aa:6c:
bc:05:a6:c5:a4:54:33:d9:e7:57:c6:c7:b2:6f:45:3f:9c:ab:
58:22:ae:af:97:1d:88:b8:ec:cb:6b:0c:ab:27:8a:9d:08:fa:
1e:7d:9a:79:18:a6:e8:1f:54:ad:f5:49:4f:76:24:84:3e:25:
53:f9:07:37:aa:13:a7:37:7d:9e:ee:37:7a:d4:b6:1a:ba:cf:
aa:55:43:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 22:40:26 2026 by rpki-client