Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer
File: up0rragmh4TwCuhYcC744p5ytLw.cer (raw, json)
Hash identifier: J2mXLSPwUCH+BD3yubYmsPatLToWDSE6Z9P+vSWcn6o=
Subject key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028EEB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 12 Feb 2026 13:50:49 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 17480
AS: 131248
AS: 149003
IP: 43.255.236.0/22
IP: 103.23.52.0/22
IP: 113.21.96.0/19
IP: 202.171.64.0/20
IP: 203.20.74.0/23
IP: 203.147.64.0 -- 203.147.87.255
IP: 220.156.160.0/20
IP: 2401:c00::/31
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167659 (0x28eeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 12 13:50:49 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4b:8c:8a:e6:86:b3:c9:a2:d6:e1:3a:21:96:
17:88:f5:05:f9:65:f7:47:e8:c0:c7:57:d6:74:bc:
1f:c4:e2:01:07:72:ea:82:2c:d9:0e:0a:78:3f:8d:
06:16:17:e6:c0:35:b6:3f:97:86:9b:3e:01:dd:3d:
d4:78:d7:53:ba:18:05:0c:9c:49:04:d9:35:24:d0:
8f:30:cf:c4:8a:4f:17:07:5a:59:92:85:41:d0:ad:
22:21:fb:16:04:cb:8b:e1:9f:f6:19:65:0d:a5:29:
ef:a9:92:83:7b:d7:04:93:9b:de:f9:3d:8d:fa:78:
e3:7b:a8:47:32:4a:85:c4:41:a8:0e:11:f3:28:74:
74:68:cb:1d:07:39:f9:87:b3:0e:56:bf:ad:ad:9e:
77:d2:78:cd:dc:d5:8a:db:94:73:e5:b5:b7:82:58:
19:35:c7:e2:e8:87:10:39:f8:e7:92:91:27:aa:c6:
a8:68:e8:b8:94:d5:35:33:77:5f:a5:09:85:b6:12:
f5:b7:34:88:f4:08:05:fc:1b:24:73:c0:c7:62:2b:
21:c5:a3:0e:89:13:43:17:59:1f:8c:90:da:5f:a3:
6a:93:7a:c5:28:64:9b:51:c2:dc:d4:2d:54:a9:e4:
e6:7f:6d:51:3a:d8:6b:07:e4:e1:fd:63:68:9f:d6:
42:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17480
131248
149003
sbgp-ipAddrBlock: critical
IPv4:
43.255.236.0/22
103.23.52.0/22
113.21.96.0/19
202.171.64.0/20
203.20.74.0/23
203.147.64.0-203.147.87.255
220.156.160.0/20
IPv6:
2401:c00::/31
Signature Algorithm: sha256WithRSAEncryption
36:c5:a2:37:2e:f1:8f:99:98:91:6b:3c:14:ae:ec:eb:e1:a9:
13:8f:62:66:84:74:fc:d6:55:64:ce:c2:9b:fc:96:b3:33:14:
76:e9:71:fb:d9:7b:ac:40:c0:ac:10:2e:78:67:ef:96:31:10:
b9:bc:c1:81:5c:9c:05:16:8d:bc:1b:b4:b0:6d:47:67:cc:21:
59:d6:5b:83:80:97:2f:65:01:c3:d1:b7:bb:26:10:12:aa:45:
eb:2a:56:31:76:fd:12:d1:98:96:f9:c4:e7:8a:98:54:9b:7d:
22:98:7e:1d:9b:14:8e:0b:79:b3:5c:28:ef:bd:e7:0b:07:4f:
86:23:e8:ac:58:0c:48:a7:25:11:7a:4f:e7:5f:e2:f9:a0:9d:
9e:02:19:c9:7b:d1:0d:e4:7d:55:22:16:ad:69:d1:cb:dd:e5:
20:ce:fc:c7:bf:8b:87:25:be:01:e6:ab:3c:74:aa:42:14:44:
fd:66:5f:3a:08:c2:cc:af:62:b8:19:50:c8:bd:ed:cc:bf:8f:
de:08:ca:27:fe:1e:e8:13:bb:01:9e:36:8a:23:9f:c3:e7:5f:
9e:e8:81:1e:d7:7f:f7:50:ad:67:cc:43:bb:63:b2:63:cd:14:
35:df:36:28:83:74:92:ec:16:d3:4c:9a:06:92:b7:e6:81:9e:
4e:29:fd:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 16:41:29 2026 by rpki-client