Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer
File: 15aZWndnWcQmQxeAAofr7u-0umo.cer (raw, json)
Hash identifier: CYDSRpYefKLhdPP9BTVrcaa+d8DftguK3PvrBBPTb10=
Subject key identifier: D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A90B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 Apr 2026 14:34:46 +0000
Certificate not after: Sat 01 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 153528
IP: 2001:df4:ec40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Apr 2026 14:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174347 (0x2a90b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 14:34:46 2026 GMT
Not After : Aug 1 00:00:00 2026 GMT
Subject: CN=A91C022C, serialNumber=D796995A776759C4264317800287EBEEEFB4BA6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2d:74:9e:dd:4d:fa:05:6b:66:3c:6d:76:bc:
d8:f3:07:e8:5d:7b:f9:d0:50:99:64:74:98:85:63:
18:c6:0a:51:ef:70:e6:be:0a:12:62:5d:30:9a:e5:
f2:7b:22:aa:72:ec:30:4a:f5:7f:82:40:03:c1:3f:
4c:49:69:77:0f:80:db:16:9f:e2:0c:21:56:78:e5:
23:e9:42:18:57:a5:ae:33:f9:57:f2:27:a9:e9:de:
47:1b:bd:bd:4b:30:e7:4c:93:ad:97:0b:30:88:50:
84:1d:34:cf:7e:1c:29:12:01:52:13:7b:70:3b:32:
f7:d4:21:ec:ab:ba:14:73:19:26:b4:62:81:14:41:
fd:62:90:01:8c:be:71:bf:df:a4:45:10:b1:09:4e:
f9:87:45:d9:32:39:11:fc:dc:51:65:90:04:ef:24:
34:4e:c2:a8:26:cb:f0:68:c1:68:d8:87:54:19:86:
4f:30:92:d1:57:cc:7e:d9:9a:52:6e:0d:4a:f3:d3:
b1:25:e3:f7:8a:89:47:d0:9f:de:94:1f:e7:9e:7c:
6e:56:08:42:47:99:25:f0:54:aa:ca:83:25:47:38:
24:26:19:69:9e:5e:fe:c9:b9:b0:af:b6:04:cb:38:
6a:21:a8:6b:7c:0f:6a:3e:68:f5:a0:24:36:f4:a3:
2a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153528
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:ec40::/48
Signature Algorithm: sha256WithRSAEncryption
44:bb:0d:ff:8f:02:fe:f1:a4:1b:fb:d1:0e:e5:7a:9f:e7:e4:
8b:db:1c:1a:58:fa:cb:98:2e:3f:2f:55:fb:37:eb:21:1b:ed:
32:2f:8f:ba:52:2a:68:8a:14:f0:ab:21:29:0a:e6:10:37:a8:
d1:65:af:ec:58:5b:86:40:af:3c:4a:98:7b:8f:72:62:60:f6:
3a:cc:16:62:15:99:dc:d6:fe:bc:43:aa:e9:40:bb:70:c5:ee:
9e:bc:b3:8e:76:4b:28:ca:02:1b:38:3c:e2:35:85:15:5c:e4:
5d:50:b4:15:45:78:90:42:6c:5f:f3:d6:85:e1:03:3b:01:ef:
4f:d8:24:2d:ec:b5:73:c0:5c:f8:19:dc:95:c7:f0:54:1b:fa:
0c:a9:15:3f:74:3b:76:a2:dc:d3:54:ee:b6:2e:c2:f1:44:22:
3e:a4:0a:5b:6f:1d:c1:50:41:63:f9:2a:b8:33:c3:40:55:ba:
90:03:ba:39:7c:c2:b4:a5:09:dd:44:0c:1f:0e:03:a9:11:33:
5d:91:77:68:02:f8:25:6a:7f:ac:07:5d:69:a9:45:ea:d1:31:
51:f3:ee:35:cc:29:b3:21:95:13:db:f1:41:dd:7f:14:19:55:
c4:68:fd:8b:af:16:6d:6a:cc:ff:45:5d:e6:01:de:97:85:ab:
89:80:f8:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 5 18:33:44 2026 by rpki-client