Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer
File: oC73fAXKEwwiKYXNdK6TjaeaT78.cer (raw, json)
Hash identifier: lRJNlriI2PBS2HhkeXbkmfpUcc0qkgzMsBDHbJrSRbE=
Subject key identifier: A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A968
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Apr 2026 12:59:46 +0000
Certificate not after: Sat 01 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 136465
IP: 103.89.48.0/22
IP: 2400:e9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174440 (0x2a968)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 2 12:59:46 2026 GMT
Not After : Aug 1 00:00:00 2026 GMT
Subject: CN=A91398E5, serialNumber=A02EF77C05CA130C222985CD74AE938DA79A4FBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c0:eb:47:08:4d:e3:29:49:b0:2f:de:73:3e:
10:d3:66:e0:6c:6a:9f:23:2f:89:05:a8:80:3d:ad:
e1:0f:36:e9:54:d0:fa:ae:db:69:94:04:20:fa:1e:
0f:66:b3:75:1a:a1:c1:17:59:8f:b7:fb:37:9c:36:
08:f2:45:f7:07:f4:7c:a7:35:62:0d:7b:1b:50:d5:
96:41:95:ce:f5:85:2c:71:ed:5a:7b:a5:e5:52:e9:
af:89:c5:86:0f:63:65:66:75:b7:0f:2c:ca:ad:65:
9c:0b:d0:4f:80:48:5f:d2:bf:90:04:c7:4a:3c:e6:
69:15:c6:18:43:f0:0a:b5:c7:91:99:f5:f0:70:2c:
8f:1a:51:36:0f:99:c4:03:e4:32:93:09:00:64:75:
68:41:4c:51:f4:69:0e:f1:ea:74:ad:06:85:1b:4b:
aa:22:55:b7:46:25:f4:96:e5:df:f9:5e:94:dc:a4:
33:8d:e8:b7:dd:5a:ca:97:bc:92:d9:dc:80:52:d6:
18:b4:23:6c:68:33:18:58:33:86:e2:22:fe:cf:77:
59:3f:87:52:42:90:b1:c7:5d:12:1d:f4:ed:75:f6:
da:70:54:fa:0f:7b:ac:54:97:e6:54:a5:65:c8:65:
4a:85:e7:ae:92:26:5c:a1:d1:79:30:53:20:fe:17:
46:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136465
sbgp-ipAddrBlock: critical
IPv4:
103.89.48.0/22
IPv6:
2400:e9c0::/32
Signature Algorithm: sha256WithRSAEncryption
37:cd:84:6c:c9:a0:cc:4d:31:99:4f:f5:a0:1a:8e:48:bd:bb:
ab:c2:a5:1d:d9:e9:2e:eb:05:00:b0:0f:ce:99:d7:97:96:46:
d9:f9:79:e4:ec:84:03:4b:cf:60:a8:ae:12:28:6a:f8:2f:c1:
9e:c0:a1:cb:72:2b:3e:71:d3:92:96:70:65:c4:aa:38:3e:7e:
9c:43:61:61:d7:a3:c4:62:f9:ae:22:9a:fe:a0:10:bc:3e:ad:
66:53:e0:bd:18:20:4e:bf:d9:70:b0:2b:42:5c:d7:96:69:87:
ea:60:8e:af:80:19:79:56:2a:46:ad:94:00:29:ac:cb:3e:e9:
1e:a5:5e:3b:ad:2d:4c:32:ea:61:a8:70:7e:a0:d9:85:8d:10:
80:15:d5:7f:fb:92:20:c3:ed:94:c2:cb:a6:25:8b:ae:7d:db:
65:4e:b0:3d:eb:c5:9b:c5:31:74:c4:8c:72:fd:4e:ac:5e:91:
09:5e:5f:73:16:3c:7c:13:7c:bc:10:7c:34:65:14:71:37:07:
fc:ac:fc:3a:4b:73:b1:a5:e8:64:c8:01:d3:d6:8f:57:5b:fd:
6a:f1:5c:aa:76:bb:01:44:17:b9:b0:89:fb:91:63:88:e3:b9:
26:6f:d9:44:82:ca:87:94:f2:af:9b:aa:66:1f:80:45:ef:4c:
ed:92:6c:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 07:15:28 2026 by rpki-client