Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer
File: opgFnwZTffjAi4klX3lZQaMcGAA.cer (raw, json)
Hash identifier: FbHoV7UywObX4jHu3KVb37hmt6KozSAXK5WkmlbIRSk=
Subject key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A1CB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Mar 2026 06:22:47 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 134476
IP: 103.160.218.0/23
IP: 203.119.15.0/24
IP: 2001:df5:a980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 20 Mar 2026 07:23:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172491 (0x2a1cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 3 06:22:47 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0d:e8:9d:8e:9e:ed:84:d7:58:e2:e6:48:fe:
63:c5:3d:d4:17:c0:5a:67:bb:1d:da:bb:f0:c9:f8:
2f:ed:ff:5b:f9:12:86:58:d9:0b:84:9b:84:2f:47:
ab:e5:cb:27:4d:47:a6:7f:85:9a:15:98:3e:65:ca:
a6:64:3c:e0:76:84:12:df:55:4e:2a:9a:5e:9a:66:
ad:b4:68:35:16:c3:cd:12:36:2b:80:d9:60:12:31:
77:23:17:45:4d:2b:33:39:d9:d1:59:33:f9:cd:a0:
3f:15:21:74:58:67:7e:8d:3e:86:c4:04:19:b5:23:
0c:e3:3b:31:f4:93:2a:48:57:3d:4f:ee:4f:f2:66:
4a:6f:47:1a:03:d7:80:b4:12:3a:e4:ab:91:15:64:
92:13:67:d6:cf:fc:32:90:3a:90:36:cc:b6:53:99:
b1:1b:56:a5:58:fd:05:4f:03:22:d3:ba:cd:37:b2:
b3:66:b4:56:48:d7:ef:8f:7f:35:a6:7e:80:00:4e:
d4:01:ce:ac:e1:ad:53:b0:ff:47:ca:08:ff:13:2d:
c4:bd:c6:5a:0a:3c:92:d2:b5:36:60:0f:bb:63:ea:
fd:26:c4:59:90:71:2f:50:64:3f:19:fd:09:e8:01:
e0:40:77:19:92:64:95:41:19:34:fa:28:d8:b9:57:
1d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134476
sbgp-ipAddrBlock: critical
IPv4:
103.160.218.0/23
203.119.15.0/24
IPv6:
2001:df5:a980::/48
Signature Algorithm: sha256WithRSAEncryption
d7:03:1b:06:ab:d5:3f:7f:f6:33:f2:40:5c:1b:46:28:b1:60:
3e:89:c0:51:b4:c9:b2:37:48:d8:b1:16:11:53:20:4c:4a:11:
53:cd:3b:e1:53:3a:66:f8:5b:76:f9:53:86:75:93:be:41:de:
83:cb:b0:ae:ad:d0:28:df:42:7c:e0:38:6d:82:7e:00:34:eb:
4f:4a:1b:d7:e8:c3:4d:57:31:8a:97:6d:30:7b:bf:3c:e2:f7:
9d:58:4e:9b:dc:12:93:c7:16:ca:a1:44:e1:49:d7:d9:09:b1:
7b:81:38:40:d2:0a:9d:ec:5b:a3:66:4f:de:47:0e:bf:4e:81:
d5:94:27:8a:40:8e:4f:d9:97:c3:b3:71:8a:a8:9c:ae:77:95:
7c:9f:46:80:62:a1:32:9d:8b:13:ad:d0:5d:ee:58:ea:cb:38:
96:1b:dc:48:db:37:ad:b5:fe:1b:74:3e:36:71:ae:95:80:f6:
84:f6:8a:d1:5a:33:9e:a5:d9:c3:7e:c6:d0:0e:27:9b:59:b8:
bd:03:69:c3:fe:0f:88:7a:8b:5b:7a:7a:c4:c4:d3:c3:2e:f9:
38:43:c8:2e:3c:93:6e:a0:2d:da:f2:ac:6a:9a:74:e2:74:9d:
22:2f:dd:28:f6:66:54:ae:58:f2:1f:b4:6f:d2:85:f0:01:58:
7e:49:66:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 08:51:05 2026 by rpki-client