Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer
File: tXSEdav1kHeBiVHMH-bti9LzEhM.cer (raw, json)
Hash identifier: LMV8Jn7zyqsQO8idY1kSOLsnFLtFAnIU2WpUdZV2rlM=
Subject key identifier: B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028AC0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 31 Jan 2026 12:47:36 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 138587
IP: 103.133.252.0/22
IP: 2404:57c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166592 (0x28ac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 31 12:47:36 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A913DA50, serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c3:ca:ce:22:98:56:b2:ad:1a:8d:f6:3e:7f:
eb:94:ac:e3:e5:53:a3:b5:c1:bd:09:c3:d5:41:83:
03:db:33:c5:4a:27:f0:91:88:88:75:72:bf:ed:5d:
89:81:c7:1d:00:ae:af:f6:25:cc:00:1e:4f:1b:35:
53:5a:a4:95:e6:e1:3d:8a:4d:4d:51:5c:15:0f:7a:
c7:a8:28:d7:19:b4:12:b8:41:15:d4:bf:21:fd:65:
2f:81:7e:80:74:cb:4c:15:f9:5f:24:e3:1d:aa:f7:
a5:9c:eb:3c:5d:47:94:86:6f:53:69:9e:78:0e:2d:
de:07:76:f0:76:f0:da:cf:76:17:66:28:9a:b2:a0:
0e:30:3f:ff:bc:5b:e5:6d:48:d4:93:7a:49:45:53:
cc:d2:db:4f:aa:2b:5e:5b:ea:2c:f2:f9:7c:21:85:
6b:23:14:7f:9f:b1:f8:ea:6e:33:b4:32:50:e2:6e:
e9:6d:05:b0:6e:26:91:e1:b9:eb:db:cd:b6:b5:46:
a7:4b:17:e0:32:e1:c0:b0:2b:7f:c5:22:d6:fc:e9:
c2:a7:cc:11:c7:b2:4d:a9:69:79:86:12:40:ef:8a:
1f:25:dd:f9:2c:11:b2:fe:08:87:0e:26:67:0e:c8:
5a:d6:a2:8d:9e:b8:98:26:dd:9f:35:9f:76:2c:80:
10:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138587
sbgp-ipAddrBlock: critical
IPv4:
103.133.252.0/22
IPv6:
2404:57c0::/32
Signature Algorithm: sha256WithRSAEncryption
50:f5:e0:36:dc:9d:0a:c9:d4:80:0d:e5:0a:65:fa:55:c8:b5:
71:ca:02:ef:8f:b6:a7:2a:8d:f0:8a:8c:a4:9d:85:3a:b2:27:
56:d2:de:9e:a5:1c:f7:e4:ce:b6:31:46:de:a8:40:51:9e:67:
11:b4:2f:24:b0:f5:8e:14:8b:6f:96:8f:6f:de:52:1e:5b:53:
73:34:52:de:90:92:a3:cd:c3:48:b8:25:d4:d5:75:ec:75:68:
7c:61:14:89:f5:4b:e3:0c:29:7e:11:2a:2b:fd:ca:9c:40:ce:
db:99:06:27:0b:11:af:67:06:73:f3:b2:1a:c4:b3:4a:fc:2b:
43:db:c8:33:4f:b0:19:c8:99:b1:57:d5:ec:ff:06:34:6b:64:
df:db:79:4c:a2:f9:5c:dc:4f:a8:b6:af:f8:34:24:be:fa:0d:
4f:fd:96:98:3b:9a:27:e5:fc:a4:a8:94:91:43:e5:1c:c5:9c:
b7:04:7f:d0:ee:ae:84:10:90:7e:ba:f8:ad:96:3f:7d:fa:08:
1b:2d:64:c5:56:bd:22:b1:fd:67:55:f5:30:3e:95:44:10:12:
5d:5e:78:21:34:80:2e:85:af:0a:8c:67:93:70:4c:20:a5:ac:
b0:2e:5c:49:14:9b:af:bc:fc:48:cc:71:40:61:09:ee:17:be:
c4:23:80:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 22:39:55 2026 by rpki-client