Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer
File: sY-YmWfTDyUJ49KXB8X4W19r228.cer (raw, json)
Hash identifier: nBNRvuaYXsiL+ah87KVtfJb4JH0dJJ0tddC1Z2feFdg=
Subject key identifier: B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A6C4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.mft
caRepository: rsync://rpki.sub.apnic.net/repository/A91905300000/3/
Notify URL: https://rrdp.sub.apnic.net/notification.xml
Certificate not before: Fri 27 Mar 2026 12:27:30 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 37990
IP: 203.4.168.0/22
IP: 2001:df0:206::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Apr 2026 14:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173764 (0x2a6c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 27 12:27:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A911AC370000, serialNumber=B18F989967D30F2509E3D29707C5F85B5F6BDB6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:1a:ab:b2:7b:21:f5:5b:4b:40:e7:70:47:ea:
25:f9:77:b5:66:43:ee:1b:6e:df:28:c7:a2:d0:f0:
29:64:6b:fd:77:ac:2d:42:40:ee:c1:dc:c6:f7:36:
1b:c6:8b:c0:7e:94:13:1e:ff:68:a0:13:07:7c:eb:
55:37:91:36:c1:be:18:b6:fc:2c:09:c6:91:1c:8c:
07:49:1f:cb:65:61:76:39:c7:4f:92:3a:d3:bf:5d:
d8:ca:c0:25:99:a3:90:bc:2a:8e:2b:50:1f:70:41:
20:ef:f5:db:40:76:50:72:f5:1a:12:94:94:db:ec:
6e:11:a0:be:7c:8f:b3:cc:66:86:ea:15:a5:16:5a:
26:f0:c1:0a:2e:15:8d:51:e7:a9:23:bc:49:96:75:
d7:6d:89:ca:e7:fd:bf:86:a0:85:25:82:27:2d:3a:
b6:b2:6c:f4:3b:f1:28:77:a1:96:a8:58:78:d6:04:
23:7e:76:b4:2a:ca:7d:2d:ef:68:ba:c5:9d:03:ab:
b9:ec:34:0a:46:62:f5:87:28:85:c1:2d:9b:31:4f:
e9:04:11:09:4e:ab:f3:b1:d6:52:3a:49:c9:09:63:
54:70:a8:28:41:de:3a:3c:bd:7f:fc:03:3c:61:91:
94:57:5c:48:bd:5e:24:cf:2c:6c:a3:99:c0:44:33:
96:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/
RPKI Manifest - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.mft
RPKI Notify - URI:https://rrdp.sub.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37990
sbgp-ipAddrBlock: critical
IPv4:
203.4.168.0/22
IPv6:
2001:df0:206::/48
Signature Algorithm: sha256WithRSAEncryption
1e:68:74:d0:6e:dd:45:9e:d6:b1:78:99:73:f5:10:16:f4:58:
7f:3a:14:08:79:6a:17:e2:1e:9e:52:c4:eb:97:f5:4d:05:a6:
c3:64:11:47:f2:61:34:1d:89:aa:ef:22:35:17:49:b8:94:93:
45:5d:45:34:bf:e5:85:2e:b8:d0:35:63:d6:03:2d:df:20:fb:
f7:63:90:78:1c:93:29:1d:2c:ff:4c:92:57:c6:ed:10:1d:11:
d7:6d:e6:97:f6:ac:57:48:86:65:5e:12:0e:a2:36:38:3d:38:
c6:79:24:e6:b6:44:34:88:d1:29:a5:b7:62:45:cb:b7:db:1a:
82:f9:9b:26:bd:98:20:21:af:4a:02:2f:5e:1e:f1:d1:61:7e:
0e:d0:a2:4b:5d:2c:16:e8:56:63:51:86:f3:71:fe:13:62:7f:
ad:d8:7e:d6:cf:14:8c:13:d9:97:29:42:16:03:45:4c:a6:ac:
8e:ef:b2:69:7b:a4:83:fd:89:a5:6c:27:ec:98:15:c4:1f:08:
46:7c:de:07:3f:28:07:fb:e7:c4:f4:93:75:d8:e5:ab:51:a6:
b3:69:31:2a:fa:cb:a5:dc:6f:bc:21:d1:be:67:83:17:13:0a:
6b:5c:8b:9f:77:59:3d:8d:e2:b8:57:bd:c0:19:af:cc:93:a4:
0b:67:83:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 5 18:34:59 2026 by rpki-client