Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2rjJbT4gONiBR58Pf3xuLKlqBU.cer
File: r2rjJbT4gONiBR58Pf3xuLKlqBU.cer (raw, json)
Hash identifier: Qb24cq9Vnbtj9xScJx2wM+/WndzkO8rsM9si7NFOfoI=
Subject key identifier: AF:6A:E3:25:B4:F8:80:E3:62:05:1E:7C:3D:FD:F1:B8:B2:A5:A8:15
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028949
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Jan 2026 13:17:41 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 9731
IP: 202.80.160.0/22
IP: 202.80.165.0 -- 202.80.167.255
IP: 202.80.169.0 -- 202.80.175.255
IP: 2407:6300::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166217 (0x28949)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 28 13:17:41 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91620ED, serialNumber=AF6AE325B4F880E362051E7C3DFDF1B8B2A5A815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:66:e4:13:39:d1:1f:bb:4f:12:08:57:eb:41:
b9:c7:64:8e:c5:35:c5:3a:e5:d4:ae:d5:e2:f5:78:
01:31:ab:a5:e6:b0:66:e0:2a:a7:e0:40:85:a1:24:
0c:07:bb:8d:41:c4:73:ab:72:93:0e:da:75:f9:2e:
45:98:8c:94:c2:ec:20:b9:15:de:39:fa:03:98:6c:
8a:78:56:90:2a:35:14:b6:df:15:79:53:82:b8:4f:
a6:93:ab:dd:fe:f6:5f:4e:c5:73:9a:e7:d0:f7:fc:
6e:cb:8b:10:62:0e:5e:9f:84:62:6f:02:59:fe:63:
db:bd:64:c9:13:fc:19:40:1b:87:5e:0b:ae:dc:4c:
43:67:ec:b5:99:9e:a8:12:c5:28:5a:b0:5f:be:d4:
2d:0a:5c:15:17:5d:6b:97:dc:7b:e4:aa:e1:67:45:
8e:ab:76:0c:9a:35:fe:9b:d4:78:ee:f1:1b:ba:4e:
b9:0b:56:ca:4b:d2:12:72:62:18:78:d3:93:63:37:
55:44:6c:f2:da:fd:73:b9:1b:46:d6:cb:3a:af:48:
ec:67:4b:43:7b:e5:38:aa:91:4f:0d:55:86:d3:75:
2e:c1:8f:e3:0d:1a:f9:2e:3c:3f:e8:51:bc:52:d5:
27:dd:db:19:05:51:f2:07:d7:9e:07:72:2c:6f:ec:
f5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6A:E3:25:B4:F8:80:E3:62:05:1E:7C:3D:FD:F1:B8:B2:A5:A8:15
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9731
sbgp-ipAddrBlock: critical
IPv4:
202.80.160.0/22
202.80.165.0-202.80.167.255
202.80.169.0-202.80.175.255
IPv6:
2407:6300::/32
Signature Algorithm: sha256WithRSAEncryption
2d:d1:d6:4c:0d:d8:6e:02:f1:90:14:bd:08:33:53:f6:73:fb:
5a:5b:82:57:de:51:28:dd:91:78:85:18:43:ca:c8:d5:c5:76:
0e:39:95:3e:01:57:cc:2b:e2:ef:8f:c2:1a:d1:e3:79:e7:ef:
55:d9:4c:07:81:9a:a6:7b:5d:ef:60:ef:fb:40:d6:58:1d:a8:
e2:59:d6:65:e4:5f:0f:97:ab:ab:30:87:d0:d6:77:44:02:81:
a6:72:89:8f:8b:fe:c9:db:c4:91:6d:64:2f:eb:79:f0:59:0c:
54:f6:90:dd:4d:43:b4:bb:3e:f8:c9:e0:68:50:4f:7f:1d:3b:
76:b3:e1:7a:60:20:77:e6:dd:bf:0d:3c:bd:1b:e9:64:b6:79:
39:da:c3:44:aa:ab:05:f3:db:99:bb:3f:40:37:10:b2:e4:fb:
f0:84:88:36:6b:32:94:00:f4:23:77:81:74:36:30:3c:99:c8:
43:04:d0:4a:ec:cb:34:3e:bd:2a:69:a5:76:23:60:8d:07:0c:
ff:87:d6:bc:ba:88:94:67:85:06:03:e2:c7:d1:ce:50:c3:1e:
62:4c:52:46:8e:16:fa:cb:e9:7f:8b:a8:fe:7e:c5:f3:7d:3e:
04:9a:60:b0:1a:eb:f7:55:05:9b:70:32:27:5d:65:de:b6:23:
d0:ad:34:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 16:41:25 2026 by rpki-client