Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n0OyarpyjoL2JjN_omUh-Oafu8s.cer
File: n0OyarpyjoL2JjN_omUh-Oafu8s.cer (raw, json)
Hash identifier: kHjvBf2DcJeVZiUu/K97iZvcD1XMcema+n5uVMgF2IE=
Subject key identifier: 9F:43:B2:6A:BA:72:8E:82:F6:26:33:7F:A2:65:21:F8:E6:9F:BB:CB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02822E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917EB41/18D7955617BE11ED8B325938C4F9AE02/n0OyarpyjoL2JjN_omUh-Oafu8s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917EB41/18D7955617BE11ED8B325938C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 31 Dec 2025 13:27:35 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 9824
IP: 27.136.0.0/13
IP: 42.144.0.0/13
IP: 59.166.0.0/16
IP: 59.168.0.0/14
IP: 60.58.0.0 -- 60.62.255.255
IP: 61.21.0.0 -- 61.27.255.255
IP: 110.128.0.0/13
IP: 116.64.0.0/15
IP: 116.214.16.0/21
IP: 116.220.0.0/14
IP: 119.168.0.0/13
IP: 124.140.0.0 -- 124.145.255.255
IP: 125.8.0.0/13
IP: 203.165.0.0/16
IP: 210.20.0.0/16
IP: 210.194.0.0/16
IP: 220.152.0.0 -- 220.152.95.255
IP: 2001:ff0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164398 (0x2822e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 31 13:27:35 2025 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A917EB41, serialNumber=9F43B26ABA728E82F626337FA26521F8E69FBBCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:34:07:51:16:f8:41:41:ee:85:6c:57:a8:71:
46:43:73:b5:d7:4c:c6:47:17:4b:45:f5:4b:e3:96:
ef:c8:ca:e7:e2:d9:84:38:3e:63:53:0b:84:73:c7:
28:c5:aa:ba:99:42:65:73:33:5a:27:18:0e:59:7f:
fb:34:f8:35:ea:d8:14:74:58:8c:15:ab:cd:c5:2a:
b8:00:3d:b3:86:a9:a6:15:b7:8d:66:34:5d:dd:9a:
96:0e:3b:44:01:d2:50:c6:5c:79:2a:3d:71:9e:fa:
aa:af:3b:0e:45:f5:57:67:fa:6b:e4:1f:c2:60:c5:
c1:65:3d:42:54:11:80:cd:79:53:55:d8:6b:2b:aa:
3b:f2:b9:4f:a3:97:de:2d:79:24:9e:86:a5:e7:fa:
4e:0d:79:04:60:47:76:f7:65:76:a9:df:71:8f:f9:
31:74:0d:e0:c6:68:f3:f2:1d:a8:d7:f2:29:7e:5f:
e8:0e:1a:ab:5f:70:b6:36:28:10:4b:fc:4e:fe:34:
33:1e:f1:1e:7c:72:5c:7a:1d:ae:6d:ea:ad:bb:dc:
75:c3:89:63:fb:df:63:9c:d8:43:0d:9f:38:52:16:
fe:64:26:b5:26:53:aa:4f:56:36:9c:dc:7a:1f:f7:
56:fe:76:82:41:5a:e5:73:01:19:e5:66:ab:fe:49:
06:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:43:B2:6A:BA:72:8E:82:F6:26:33:7F:A2:65:21:F8:E6:9F:BB:CB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917EB41/18D7955617BE11ED8B325938C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917EB41/18D7955617BE11ED8B325938C4F9AE02/n0OyarpyjoL2JjN_omUh-Oafu8s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9824
sbgp-ipAddrBlock: critical
IPv4:
27.136.0.0/13
42.144.0.0/13
59.166.0.0/16
59.168.0.0/14
60.58.0.0-60.62.255.255
61.21.0.0-61.27.255.255
110.128.0.0/13
116.64.0.0/15
116.214.16.0/21
116.220.0.0/14
119.168.0.0/13
124.140.0.0-124.145.255.255
125.8.0.0/13
203.165.0.0/16
210.20.0.0/16
210.194.0.0/16
220.152.0.0-220.152.95.255
IPv6:
2001:ff0::/32
Signature Algorithm: sha256WithRSAEncryption
1c:6c:42:84:f9:dc:8f:32:d0:3a:49:a5:80:c9:14:21:6f:45:
26:b7:3e:20:12:4d:fb:60:ee:be:9a:76:65:5c:11:da:f0:75:
92:a9:12:d3:a0:9d:68:ff:08:60:1c:4d:70:28:36:bc:3b:6c:
65:85:59:54:59:29:75:a3:d4:08:7f:1c:39:3f:6c:e0:86:04:
10:73:18:f9:d8:39:d1:7d:f0:9a:23:68:a2:f3:78:41:5b:68:
6c:10:37:51:e7:32:db:30:f1:91:1b:cf:80:42:ef:fd:d0:83:
20:d7:a4:34:fa:dc:cf:50:99:44:b1:0c:56:11:5c:c0:c2:bd:
1e:45:86:b2:b2:ab:08:43:7c:f3:f2:f9:87:c3:4c:7f:73:a1:
98:38:87:de:77:1f:13:36:7e:04:a4:c0:b6:7e:71:61:8c:f0:
1b:64:7c:fb:83:44:43:33:75:e5:61:23:2e:f1:17:64:95:f9:
41:52:ac:4d:7d:ce:dc:e9:e5:1e:8d:ac:65:db:9a:82:25:2a:
e0:c2:de:86:69:b8:a6:4f:91:ef:ab:ca:f3:1a:60:2d:07:70:
8f:9d:e1:e4:38:11:e2:7d:17:0f:9e:09:37:9c:df:3d:be:3e:
65:9d:3f:c4:ed:d9:35:5b:bd:fb:2d:8e:7a:22:c1:ae:c8:7a:
85:80:af:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 18:49:11 2026 by rpki-client