Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer
File: vTfx1AdHvmxfXGujMH32Vgq2gaM.cer (raw, json)
Hash identifier: khbUyLyGqT10kNBlJj/ogLvl7lYtkvNCMs2/6HSgSrQ=
Subject key identifier: BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02BDFB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 17 Jun 2026 13:31:44 +0000
Certificate not after: Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources: AS: 140712
AS: 149876
IP: 103.152.26.0/23
IP: 2001:df3:f280::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 Jul 2026 05:51:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179707 (0x2bdfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 17 13:31:44 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=A91817E6, serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:af:da:a3:49:ef:8a:14:ea:5f:3e:fe:b6:74:
e1:26:9d:60:e5:cb:d3:8c:57:a9:85:34:2d:a8:ad:
bd:49:cc:44:d3:6d:3e:4e:f6:b3:62:02:60:be:ed:
d7:6d:17:cf:41:14:64:b6:98:75:0a:ee:65:ef:24:
05:31:80:8d:75:18:e7:5f:b2:b3:ea:a2:74:39:6c:
b1:0c:33:1a:af:99:f4:fc:9d:47:18:cb:91:74:23:
70:89:34:ce:08:b4:eb:e2:a5:e4:aa:d3:bf:3f:89:
a9:1c:52:ad:bc:6a:d0:47:04:71:06:1b:05:59:89:
37:11:51:e7:67:13:26:77:a2:49:29:81:53:d7:a6:
b9:b8:72:54:52:3a:d3:e5:e2:e9:e8:02:e6:67:e0:
09:b0:a4:dd:cb:56:0b:5e:29:b7:74:d0:d6:9a:3d:
0f:e9:60:44:4b:81:11:8a:2a:42:1e:cc:87:e1:88:
37:be:4d:f6:30:d3:2c:5c:58:e9:f5:c7:6a:d2:af:
1e:a7:a3:c6:1d:2b:fb:71:7d:da:e2:54:6d:5b:d9:
7b:94:d9:9e:7a:c6:c9:c0:d9:ab:17:17:b0:6f:63:
f5:d4:28:47:9f:8c:9e:b7:41:86:a1:ec:91:8b:b3:
72:16:83:bc:e1:97:4d:b3:f0:b7:3e:60:ef:a0:80:
f1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140712
149876
sbgp-ipAddrBlock: critical
IPv4:
103.152.26.0/23
IPv6:
2001:df3:f280::/48
Signature Algorithm: sha256WithRSAEncryption
46:c5:5f:20:31:e6:08:ea:b7:33:a9:28:a4:12:38:23:8a:56:
70:6f:0c:32:25:f2:6d:0a:2a:10:e1:db:ed:12:58:ca:7f:42:
f2:fc:11:15:4d:e2:d9:dc:79:8c:ad:43:07:c3:ce:e9:ad:90:
b3:c6:2e:d3:dc:0a:0f:59:0f:5c:07:f4:cb:d0:19:51:3f:17:
c2:65:8c:fb:fe:1a:73:4d:0d:0d:a9:15:86:b3:9a:36:35:ec:
29:a5:54:1c:05:d3:e1:75:d8:c0:05:a7:57:0c:d4:ce:cb:fe:
ef:8d:ce:8d:6c:27:7d:70:d8:a0:8a:2e:bd:2e:bf:e3:94:3a:
1e:0f:5a:58:be:45:9b:8e:fb:08:d4:e6:7c:85:7a:74:46:ea:
08:a4:f5:d8:58:aa:3d:9d:b7:b7:a3:b2:54:3d:cf:7f:81:46:
98:17:8f:0c:21:4c:65:97:83:36:11:d9:8c:ea:f8:51:e9:a8:
43:7e:7a:fa:eb:5e:52:76:47:dd:36:07:46:15:30:0f:b4:d9:
c6:37:2a:42:0b:79:ec:69:63:b1:ca:31:58:25:26:42:ba:f0:
ed:af:c0:6f:aa:50:29:95:db:46:0a:b1:3c:b1:4f:89:cf:ea:
72:29:1d:7c:28:86:9f:56:43:cb:7a:56:7f:ae:08:ac:a6:81:
40:08:97:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 10:16:48 2026 by rpki-client