Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pwfo7Wx0uvNh3UByccajTUQCIqw.cer
File: pwfo7Wx0uvNh3UByccajTUQCIqw.cer (raw, json)
Hash identifier: EJ64MAL4M5CXY2N9Oujs8Er4GkxGW5CkjU+W2cEO36U=
Subject key identifier: A7:07:E8:ED:6C:74:BA:F3:61:DD:40:72:71:C6:A3:4D:44:02:22:AC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A911
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/pwfo7Wx0uvNh3UByccajTUQCIqw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 Apr 2026 14:44:59 +0000
Certificate not after: Sat 01 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 58876
AS: 153847
IP: 103.8.231.0/24
IP: 2001:df4:6200::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 06:23:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174353 (0x2a911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 14:44:59 2026 GMT
Not After : Aug 1 00:00:00 2026 GMT
Subject: CN=A91D0C14, serialNumber=A707E8ED6C74BAF361DD407271C6A34D440222AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6a:cc:7c:ed:56:43:b5:a8:3b:3a:d4:c4:a3:
88:c8:9c:af:95:2b:35:47:e6:79:27:ec:ac:46:27:
d9:d2:4d:a1:67:ee:90:f6:2f:03:29:e8:38:2e:1a:
84:be:4e:11:87:b0:40:b1:36:9f:0d:eb:2f:7c:7e:
54:51:af:b7:36:0e:79:74:34:a1:b2:f9:a3:40:e4:
36:12:32:d6:90:f0:54:77:30:45:26:b7:e9:5e:ad:
c1:07:73:8f:6d:63:6b:83:59:45:09:6f:b1:de:5c:
f3:f3:df:c5:61:7e:7c:38:93:f1:0b:5e:5e:8d:dd:
50:e9:70:c6:82:4b:58:9c:e0:91:3d:ae:25:d7:60:
51:28:ed:92:e4:3c:57:bc:47:e4:ba:33:b3:63:30:
a2:4a:d8:2d:90:0f:1a:fc:b3:61:92:9b:01:80:37:
ab:98:9a:3b:49:45:04:24:11:44:58:ef:a8:d1:d5:
cb:56:86:04:c4:f6:0c:74:a3:a8:2d:6e:40:c9:36:
52:f1:1d:25:a0:7f:81:c8:7a:2b:e7:57:c8:9c:3d:
24:c8:9a:8a:8a:db:88:aa:0e:c8:43:65:be:3c:4d:
f7:37:e2:20:77:6c:b7:42:46:96:18:c3:86:c5:9f:
48:fd:d5:bf:85:5d:64:93:d7:b3:1a:fe:50:75:35:
3e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:07:E8:ED:6C:74:BA:F3:61:DD:40:72:71:C6:A3:4D:44:02:22:AC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/188C1C264E1311EDB12F3C6FC4F9AE02/pwfo7Wx0uvNh3UByccajTUQCIqw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58876
153847
sbgp-ipAddrBlock: critical
IPv4:
103.8.231.0/24
IPv6:
2001:df4:6200::/48
Signature Algorithm: sha256WithRSAEncryption
05:f5:77:4f:be:e8:72:3d:bc:64:50:05:e2:4d:fe:c7:f0:0c:
c7:0e:b8:b8:3e:cb:1d:a1:9a:8a:8f:a6:b8:da:87:c2:bb:c7:
07:04:e0:35:70:c5:26:ba:d8:94:22:37:8e:41:0d:7f:03:bb:
3d:aa:b1:ce:e2:38:3f:76:f8:e8:27:cd:d5:e5:76:ae:f4:66:
5e:07:a9:2e:fb:b7:fc:21:0b:42:14:c2:77:a5:26:42:a0:1a:
76:82:aa:bd:5c:7f:a2:d5:cc:f6:6c:d5:e3:e3:eb:9c:b7:9d:
0f:e0:3b:a0:42:3a:df:73:ce:21:c4:90:fa:97:1e:dc:db:ba:
ff:23:b5:48:4c:93:28:24:44:6e:95:39:6f:3d:4a:4d:0f:24:
b9:34:81:83:51:51:d4:e7:31:fc:d4:f3:cd:61:b3:5c:d2:aa:
bc:cd:f0:70:3c:ba:00:e2:a5:3c:ca:1f:fd:ee:47:11:b7:a5:
5a:dd:a3:60:57:74:97:f7:14:97:b2:68:8e:9f:9b:d6:0c:64:
e5:a6:06:c4:5f:3c:1c:b8:ed:2e:43:db:8e:40:5f:0f:2f:22:
3a:6d:d1:33:a5:d9:50:5d:49:95:82:ec:7c:e1:0a:de:94:ad:
0c:67:05:2a:79:4e:4c:21:c8:82:0a:a0:a9:8b:9c:02:1b:3d:
90:56:ce:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 08:33:32 2026 by rpki-client