Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2tVCi8MZCvc1Ni-pQOEmy1FD5g.cer
File: z2tVCi8MZCvc1Ni-pQOEmy1FD5g.cer (raw, json)
Hash identifier: 9JJCjX7QzBANphFbZsQCRDKKEMzTXpaaTNHPAW3505g=
Subject key identifier: CF:6B:55:0A:2F:0C:64:2B:DC:D4:D8:BE:A5:03:84:9B:2D:45:0F:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028DEC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B018/39B47F4AC5F611EEBE0B7960C4F9AE02/z2tVCi8MZCvc1Ni-pQOEmy1FD5g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B018/39B47F4AC5F611EEBE0B7960C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 08 Feb 2026 12:46:31 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 152297
IP: 2401:70a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167404 (0x28dec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 8 12:46:31 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A913B018, serialNumber=CF6B550A2F0C642BDCD4D8BEA503849B2D450F98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3c:06:27:81:fc:23:64:80:3f:80:2f:de:ab:
96:bc:6b:e1:20:8b:7f:bf:61:3d:00:63:18:90:a7:
7d:4e:05:8b:0c:2f:a8:e5:e6:23:95:e1:3e:fd:21:
1a:5c:73:5b:68:f4:bd:f4:26:09:20:81:16:7e:f5:
38:63:5f:00:de:18:15:b0:4f:05:90:4d:34:89:de:
1e:40:13:59:67:04:f6:e2:21:09:62:ec:0b:4a:91:
6b:24:00:ac:38:8b:48:14:1b:80:87:d9:28:9f:c6:
64:a2:fe:1f:9d:93:82:45:3e:e9:76:48:2e:4a:13:
d3:d2:5d:ff:87:9a:57:65:06:41:55:25:b1:3d:f1:
f5:93:83:1b:ce:c9:0e:5b:1b:ef:17:59:06:52:b8:
1b:b8:8d:00:ef:30:0e:62:26:f6:db:10:fb:b2:00:
02:1a:e1:aa:93:3b:21:eb:89:1b:b3:d5:90:98:51:
c4:f3:ec:e8:f8:69:0b:fc:76:4a:54:c8:df:ac:4c:
fa:a9:32:ee:05:41:3b:8a:8c:73:c5:14:ab:2c:cc:
51:52:1b:74:f8:ce:a0:4e:19:e1:e6:58:0e:fc:66:
c0:9c:2a:65:44:af:d4:4c:09:55:c0:07:43:b9:a4:
ce:48:45:42:b5:6d:58:dc:1a:83:ab:8a:b1:fd:2e:
69:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6B:55:0A:2F:0C:64:2B:DC:D4:D8:BE:A5:03:84:9B:2D:45:0F:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B018/39B47F4AC5F611EEBE0B7960C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B018/39B47F4AC5F611EEBE0B7960C4F9AE02/z2tVCi8MZCvc1Ni-pQOEmy1FD5g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152297
sbgp-ipAddrBlock: critical
IPv6:
2401:70a0::/32
Signature Algorithm: sha256WithRSAEncryption
73:ec:00:43:c3:04:96:67:c5:e2:89:c4:b2:8c:d7:f3:21:3b:
bd:59:0e:46:24:1a:17:50:29:a6:70:cd:ab:dd:12:1f:9c:6d:
7c:0d:23:68:d9:93:3a:5d:cd:2d:00:e2:0c:31:3a:e5:3e:1b:
a4:ba:95:c8:3f:14:97:43:a6:c5:3f:47:db:56:c9:b2:f4:01:
16:61:42:e5:10:8c:41:5e:10:b2:34:9d:d3:72:8b:c8:87:b7:
82:7d:64:6c:0d:72:41:70:9f:a1:2b:6c:ae:4e:fa:7b:9b:84:
3e:39:bd:16:93:0c:50:ea:63:37:4a:2f:97:72:07:bb:2a:fe:
ca:a5:e3:68:e1:90:5e:27:c1:ed:0a:98:a8:0a:24:66:37:e8:
e4:dd:7f:03:20:43:2c:86:48:f7:67:df:5f:94:5c:6e:3e:8c:
d0:8c:b4:ae:41:8d:e1:b6:3b:93:44:a5:eb:a4:c9:cf:b3:60:
60:54:9a:20:c3:a6:37:9d:35:79:a7:c7:6b:b2:a5:2f:a7:7f:
d9:2c:55:aa:e7:1f:b8:53:64:cc:44:68:d2:a9:78:68:03:ed:
ca:c9:1e:7b:a7:1d:be:ae:db:ac:a8:00:f8:8f:2a:f0:e3:37:
f0:58:20:46:20:e2:2d:09:b9:76:a5:ba:64:a0:a9:a2:1b:8c:
26:3f:f1:b0
-----BEGIN CERTIFICATE-----
MIIGGzCCBQOgAwIBAgIDAo3sMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMMCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDIwODEyNDYzMVoXDTI3MDMzMTAwMDAwMFowRjERMA8G
A1UEAwwIQTkxM0IwMTgxMTAvBgNVBAUTKENGNkI1NTBBMkYwQzY0MkJEQ0Q0RDhC
RUE1MDM4NDlCMkQ0NTBGOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCmPAYngfwjZIA/gC/eq5a8a+Egi3+/YT0AYxiQp31OBYsML6jl5iOV4T79IRpc
c1to9L30JgkggRZ+9ThjXwDeGBWwTwWQTTSJ3h5AE1lnBPbiIQli7AtKkWskAKw4
i0gUG4CH2SifxmSi/h+dk4JFPul2SC5KE9PSXf+HmldlBkFVJbE98fWTgxvOyQ5b
G+8XWQZSuBu4jQDvMA5iJvbbEPuyAAIa4aqTOyHriRuz1ZCYUcTz7Oj4aQv8dkpU
yN+sTPqpMu4FQTuKjHPFFKsszFFSG3T4zqBOGeHmWA78ZsCcKmVEr9RMCVXAB0O5
pM5IRUK1bVjcGoOrirH9LmkPAgMBAAGjggMQMIIDDDAdBgNVHQ4EFgQUz2tVCi8M
ZCvc1Ni+pQOEmy1FD5gwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTNCMDE4LzM5QjQ3RjRBQzVGNjExRUVCRTBCNzk2MEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzQjAxOC8zOUI0N0Y0QUM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi96MnRWQ2k4
TVpDdmMxTmktcFFPRW15MUZENWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlLpMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAFwoDANBgkq
hkiG9w0BAQsFAAOCAQEAc+wAQ8MElmfF4onEsozX8yE7vVkORiQaF1AppnDNq90S
H5xtfA0jaNmTOl3NLQDiDDE65T4bpLqVyD8Ul0OmxT9H21bJsvQBFmFC5RCMQV4Q
sjSd03KLyIe3gn1kbA1yQXCfoStsrk76e5uEPjm9FpMMUOpjN0ovl3IHuyr+yqXj
aOGQXifB7QqYqAokZjfo5N1/AyBDLIZI92ffX5Rcbj6M0Iy0rkGN4bY7k0Sl66TJ
z7NgYFSaIMOmN501eafHa7KlL6d/2SxVqucfuFNkzERo0ql4aAPtyskee6cdvq7b
rKgA+I8q8OM38FggRiDiLQm5dqW6ZKCpohuMJj/xsA==
-----END CERTIFICATE-----
Generated at Thu Feb 19 22:41:16 2026 by rpki-client