Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YWOpVUwzBnn36hZnixCNlk7ByAI.cer
File: YWOpVUwzBnn36hZnixCNlk7ByAI.cer (raw, json)
Hash identifier: 72J5vJ3X7sztdl29i/mTsH2EytCcxvUmDMq06csgZl0=
Subject key identifier: 61:63:A9:55:4C:33:06:79:F7:EA:16:67:8B:10:8D:96:4E:C1:C8:02
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7909
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/YWOpVUwzBnn36hZnixCNlk7ByAI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 29 Mar 2026 04:10:57 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: IP: 157.20.150.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30985 (0x7909)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 29 04:10:57 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91364F5, serialNumber=6163A9554C330679F7EA16678B108D964EC1C802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b4:72:6f:1a:cb:53:57:62:bc:9f:15:31:0e:
c0:7b:5d:84:10:e7:04:22:c0:90:f1:04:ec:e7:ce:
81:40:cc:52:01:9e:1a:81:a6:d6:46:57:22:17:77:
74:85:bc:de:37:fe:5b:9f:65:2e:b3:14:17:60:c3:
24:d9:1b:e5:82:7a:77:24:0d:2c:25:c1:a7:9f:88:
67:64:3d:06:c2:d3:b5:f6:26:24:f2:41:4a:55:91:
d1:14:c2:fe:51:5b:d4:39:a6:87:fa:8a:1c:7d:43:
00:a8:5b:84:2b:3b:fc:90:30:08:eb:2b:4e:fe:52:
cd:f3:1b:20:a9:30:26:15:4a:c3:ba:52:41:fd:27:
21:0d:44:1f:9a:b8:6a:aa:74:ae:3b:34:18:27:a2:
8f:10:81:95:68:f0:88:c9:0a:82:f4:95:ee:2f:d5:
10:39:02:89:07:98:d4:e6:e1:7a:67:9f:b0:7c:85:
bd:42:c9:c0:77:0d:be:32:2c:47:e6:39:3a:1a:e5:
2f:7b:53:ae:ee:ce:0c:79:82:5e:e1:f1:51:5c:cf:
5d:fb:d6:1c:10:6e:e6:04:95:22:f0:cc:d8:45:d5:
1b:7e:7c:5c:42:ef:06:35:1d:87:a0:62:c0:7f:30:
b5:da:a3:04:91:78:f4:9a:80:99:ee:26:fa:bf:61:
0b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:63:A9:55:4C:33:06:79:F7:EA:16:67:8B:10:8D:96:4E:C1:C8:02
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/YWOpVUwzBnn36hZnixCNlk7ByAI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.150.0/23
Signature Algorithm: sha256WithRSAEncryption
56:8a:97:0d:62:c2:74:24:60:94:24:e0:29:5a:ff:89:b3:96:
d6:66:bc:73:ed:88:63:02:a6:2e:8f:c1:31:8a:a3:99:8d:e8:
9a:58:b9:97:29:1c:a3:1e:c1:0c:08:f0:0d:c2:95:53:26:50:
63:ba:f5:94:d0:fc:35:ff:a6:55:9d:e3:e8:42:18:4b:e3:26:
32:da:ac:81:00:3d:19:83:fb:59:f8:b8:97:b9:e4:08:de:5d:
e4:21:81:33:ac:de:a9:fd:bc:fb:7c:89:1e:d0:85:cf:4d:53:
f3:09:08:e6:de:43:75:cc:79:34:44:e4:50:54:2f:16:3a:7b:
00:2a:dc:cb:ed:ba:48:2c:76:57:b9:c4:d4:08:cb:a1:84:68:
b1:78:1d:9e:05:ed:1d:6c:2b:16:89:a9:90:5a:0c:d8:86:2b:
56:f5:ef:bb:c9:8b:05:c6:d0:46:78:af:c6:1b:58:cb:fb:df:
70:58:04:fb:61:2e:c0:8a:3e:2e:28:0a:34:5b:0f:ae:59:53:
c3:7a:f6:4d:92:7c:bb:f3:65:aa:cf:b7:e4:5a:ae:5d:9d:a3:
df:4b:9a:3f:31:70:37:57:8d:7b:d4:04:6b:d4:d9:ff:5a:5b:
01:34:b6:cc:ae:05:3a:cb:01:d9:3b:f0:a8:90:d2:93:c3:d9:
6e:7e:16:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 13:35:31 2026 by rpki-client