Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znNgvRqU6JF702ckM_gh7HgKjSg.cer
File: znNgvRqU6JF702ckM_gh7HgKjSg.cer (raw, json)
Hash identifier: 09ZqJ+bjnH+lCkC2fbRaA9B2Q2mAza7RIDRyPPMTAVs=
Subject key identifier: CE:73:60:BD:1A:94:E8:91:7B:D3:67:24:33:F8:21:EC:78:0A:8D:28
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028F19
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915E1F9/AFE4A90A8DE211F0A308AC7CC4F9AE02/znNgvRqU6JF702ckM_gh7HgKjSg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915E1F9/AFE4A90A8DE211F0A308AC7CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 13 Feb 2026 06:31:46 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: AS: 18108
AS: 45868
IP: 111.235.144.0/22
IP: 180.94.220.0/22
IP: 202.49.32.0/24
IP: 203.4.204.0/24
IP: 203.15.228.0/22
IP: 203.17.252.0/24
IP: 203.19.134.0/23
IP: 203.28.13.0/24
IP: 203.33.176.0/24
IP: 203.33.217.0 -- 203.33.219.255
IP: 203.55.216.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 13:09:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167705 (0x28f19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 13 06:31:46 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A915E1F9, serialNumber=CE7360BD1A94E8917BD3672433F821EC780A8D28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2f:b1:24:b8:c9:8c:ea:9a:31:08:c9:a8:9e:
d0:eb:ae:ab:c2:bf:c4:d4:69:11:d9:52:8b:80:11:
22:69:37:f9:fa:30:31:1f:1c:b9:76:93:0c:9a:11:
74:df:c0:d1:86:09:7d:b5:04:02:84:3f:c1:73:cd:
e7:09:a3:d6:96:1a:9c:66:4b:37:f6:aa:e8:93:61:
e6:06:c5:17:72:58:fc:f8:b0:e1:bf:bd:36:9a:4f:
24:28:80:a9:35:dc:ed:45:a8:5b:aa:88:24:e3:c3:
4f:fc:bc:cd:74:d0:4c:cc:66:3e:3e:1b:90:93:9d:
68:2c:6a:6b:f8:cf:aa:1d:3a:a8:bc:ee:64:3e:9c:
68:6c:b0:b1:6e:cc:db:36:68:c6:e5:d1:75:ed:76:
38:59:4e:5f:0f:19:76:2a:0f:70:24:9d:86:04:11:
d4:9c:ce:08:2e:6d:7c:0f:ce:a7:75:11:d3:d4:95:
bd:bf:33:8f:06:b9:47:e5:29:72:ed:e1:59:b4:ec:
22:5b:79:f9:fb:e2:d8:68:9e:2c:04:97:9e:91:3d:
53:0b:34:5f:99:26:b3:76:50:0e:60:b4:7d:ba:e0:
f5:a3:7e:7e:fa:f2:0a:9e:7b:37:98:d3:9a:94:61:
9b:b4:4f:85:5e:89:da:e9:30:6a:52:a7:07:57:83:
d3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:73:60:BD:1A:94:E8:91:7B:D3:67:24:33:F8:21:EC:78:0A:8D:28
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915E1F9/AFE4A90A8DE211F0A308AC7CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915E1F9/AFE4A90A8DE211F0A308AC7CC4F9AE02/znNgvRqU6JF702ckM_gh7HgKjSg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18108
45868
sbgp-ipAddrBlock: critical
IPv4:
111.235.144.0/22
180.94.220.0/22
202.49.32.0/24
203.4.204.0/24
203.15.228.0/22
203.17.252.0/24
203.19.134.0/23
203.28.13.0/24
203.33.176.0/24
203.33.217.0-203.33.219.255
203.55.216.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:29:69:4c:29:a7:ee:d0:62:6e:a8:53:4c:0b:41:45:fd:08:
a0:a1:e5:c0:d8:3e:c8:32:28:a6:87:1e:2a:3c:50:6d:12:39:
22:37:53:99:d9:06:6e:49:62:76:4c:26:64:64:99:ad:62:42:
e1:b6:e1:62:de:3d:16:4d:a6:44:ad:e3:b0:0d:ea:8d:a7:c3:
8a:3a:18:50:b3:23:e7:01:05:4c:80:48:ca:6c:c9:d4:a2:84:
92:0a:9d:e9:41:2c:fe:1b:8b:72:fd:5c:88:f3:c1:53:a0:94:
6a:60:29:71:97:ea:02:3d:00:8d:ea:b2:68:14:fe:af:0f:68:
82:34:bb:c9:ce:8d:69:38:15:23:cb:7f:c3:ca:aa:6a:1d:4d:
9e:75:de:d4:4a:32:fc:0e:67:58:20:24:80:0d:36:ac:97:e1:
12:1b:e8:a9:10:1e:e8:f1:44:50:f6:18:bc:fa:b7:3a:52:a7:
58:fb:96:8d:47:00:96:be:70:14:57:72:64:09:c7:82:99:0b:
31:05:ff:c5:f0:c3:c1:15:79:07:73:9d:d7:d0:63:10:e5:e6:
63:1a:ad:a2:aa:86:a9:3b:28:58:89:48:c9:ec:b5:42:c2:3b:
5b:e1:12:dd:5a:19:72:00:2c:04:36:68:c8:c3:c9:b9:45:bb:
2b:bb:fa:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 15:08:11 2026 by rpki-client