Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LYC7UpVYC-No2mj7jQPqtI16xss.cer
File: LYC7UpVYC-No2mj7jQPqtI16xss.cer (raw, json)
Hash identifier: IDtFrqjaGygPQ6SrBWMinVw0drg6DEta2lpMNCJYpvw=
Subject key identifier: 2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7C48
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Jun 2026 14:34:47 +0000
Certificate not after: Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources: IP: 160.25.44.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 09 Jun 2026 15:18:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31816 (0x7c48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jun 2 14:34:47 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=A91B7948, serialNumber=2D80BB5295580BE368DA68FB8D03EAB48D7AC6CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d6:6f:94:f9:88:fc:29:af:b5:fa:05:e5:14:
01:23:cd:ff:c8:ca:4e:0b:f1:2a:38:5f:b6:24:d9:
fb:0a:7a:d3:83:a2:2e:a1:a1:56:b6:d7:9e:bb:0e:
fb:67:4b:ec:48:86:22:d8:e6:2f:28:38:61:25:e5:
35:e9:21:24:e9:0f:05:5a:00:95:0a:94:0a:4b:77:
24:4e:f3:75:2e:26:75:d0:2f:cb:9f:fe:6d:8e:85:
be:6d:03:6e:f9:a8:07:b2:2d:cb:aa:ef:a1:43:6f:
a2:d8:e6:a8:59:ed:0d:38:7c:4b:db:b0:ba:75:f4:
bc:fa:96:e3:7c:c9:f7:da:95:d4:e1:5c:a7:01:17:
6e:fb:b7:b5:85:41:5f:fa:5f:bc:35:7a:ca:4f:b0:
b4:30:5a:6e:a0:28:a9:5d:9a:6a:6a:da:27:a1:f7:
15:3c:f4:af:42:e6:4b:f8:d8:b5:df:0e:ed:31:c2:
6d:0e:78:fb:f3:fe:a6:df:4e:dd:23:4a:a7:ad:55:
b0:39:32:a3:98:56:5e:14:27:81:7e:f0:f4:f3:7e:
7c:1a:87:d9:64:7e:d6:04:b0:90:09:f5:34:04:01:
10:1d:71:24:4a:5b:74:42:c3:26:7e:60:b4:ff:89:
40:cb:a8:c2:c7:4e:f0:0b:d9:4b:09:f3:b2:32:77:
aa:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:80:BB:52:95:58:0B:E3:68:DA:68:FB:8D:03:EA:B4:8D:7A:C6:CB
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B7948/46DC6B0A37D011EF8945471AC4F9AE02/LYC7UpVYC-No2mj7jQPqtI16xss.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.44.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:e5:aa:2b:22:ee:f2:e9:0d:f5:c1:8c:91:02:99:e4:0e:9e:
5e:c0:d1:44:0a:c2:e7:d2:dd:76:49:98:4a:82:5b:3a:1e:e7:
c2:1f:5b:fe:76:8c:ec:70:42:bc:4e:26:a2:de:80:4d:cf:89:
bb:97:ff:70:cc:0f:3d:48:66:df:92:b4:b9:74:6d:90:1c:65:
0d:b5:76:f3:6d:19:40:d5:c5:58:16:59:2b:41:04:52:c7:96:
bd:2f:b6:55:05:b7:73:07:7a:59:eb:28:8f:52:c0:0f:17:2d:
46:85:e8:a6:94:8c:27:e7:e6:62:0a:f1:46:ec:10:cf:2a:97:
f6:7a:f4:43:a3:e8:71:7c:8f:51:b3:c8:4b:ff:6a:71:f9:b2:
e7:4a:a3:37:fb:93:6e:30:80:7e:d9:b2:4b:41:1d:0f:09:ff:
ad:3b:43:03:67:91:ab:e9:e0:a9:22:11:fe:0d:41:a7:f6:02:
18:18:a4:8b:18:59:a3:95:9a:1a:99:5b:3b:60:11:3e:af:3c:
90:a9:12:ab:b1:cd:fb:38:d4:ba:00:44:3f:05:8f:d1:e9:79:
95:1d:de:51:f1:7a:1c:e2:af:3b:c3:69:0f:c7:f2:39:d3:63:
ac:01:62:ee:fd:9d:2f:9d:06:40:3c:ef:78:86:b1:47:b7:38:
31:d8:e3:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:12:10 2026 by rpki-client