Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGHkRpDveLCtqNg1DRHKngGUnBQ.cer
File: YGHkRpDveLCtqNg1DRHKngGUnBQ.cer (raw, json)
Hash identifier: TeE3Qh4S5zOtMOm9ycM0+WKYz+8cP5/LA99uZquknug=
Subject key identifier: 60:61:E4:46:90:EF:78:B0:AD:A8:D8:35:0D:11:CA:9E:01:94:9C:14
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0272BB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BFE76/E333EC2EB92711F0B80EC45EC4F9AE02/YGHkRpDveLCtqNg1DRHKngGUnBQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BFE76/E333EC2EB92711F0B80EC45EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Nov 2025 02:42:26 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 154279
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Nov 2025 16:10:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160443 (0x272bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 4 02:42:26 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91BFE76, serialNumber=6061E44690EF78B0ADA8D8350D11CA9E01949C14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:70:84:3f:07:42:0a:95:38:4e:38:05:d2:d4:
2a:cf:f5:0c:ae:41:60:ae:a7:48:4d:c3:7f:38:25:
2c:a9:8c:c0:50:16:a6:e2:6f:3e:f2:3a:d8:93:e7:
9e:59:19:f5:3a:95:40:a6:76:0b:be:6a:b9:61:d1:
21:45:45:58:c9:60:a3:8d:75:0c:7b:59:ed:a8:cb:
09:73:28:7e:d0:e5:d7:35:e6:2f:47:d7:b5:e2:cd:
73:71:e0:51:d0:b4:6f:35:b5:65:7b:8e:1b:b4:d2:
de:f3:33:a7:c9:79:ed:ac:a2:47:a4:93:b6:71:4a:
65:3c:4c:76:ce:38:ae:c0:9d:75:4e:e0:d2:d4:22:
1f:15:e6:ea:8f:83:13:22:50:a6:4c:02:0d:ea:dc:
83:09:b0:be:fa:4e:62:a4:cd:66:01:73:e2:24:27:
be:4b:d4:66:68:59:e9:dd:e6:f9:5f:1e:02:22:4d:
51:98:89:5a:72:d4:0a:38:31:92:70:b0:40:be:9e:
a1:42:56:62:02:83:f5:2c:e3:4b:55:3c:a1:f1:eb:
fb:85:66:74:43:39:65:53:68:94:7a:b1:e1:75:5c:
8f:fe:ae:a5:04:62:45:6a:01:45:40:1b:af:b3:f6:
3d:ae:fd:bb:c5:4a:99:21:5f:bb:86:53:82:0e:67:
52:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:61:E4:46:90:EF:78:B0:AD:A8:D8:35:0D:11:CA:9E:01:94:9C:14
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BFE76/E333EC2EB92711F0B80EC45EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BFE76/E333EC2EB92711F0B80EC45EC4F9AE02/YGHkRpDveLCtqNg1DRHKngGUnBQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
154279
Signature Algorithm: sha256WithRSAEncryption
32:4b:fe:19:2e:7c:d5:13:6d:64:bf:66:d7:2a:47:c4:61:e5:
c7:d7:f2:ea:5c:39:97:b6:67:f9:bc:d0:0c:5e:94:fa:85:30:
61:5b:fa:56:b4:56:4b:5d:4d:f7:76:9e:74:34:b9:fc:82:72:
4a:18:62:b5:8c:11:fc:eb:b3:5e:99:c4:33:e3:09:5e:54:44:
20:72:fe:eb:b8:7d:9a:d2:ef:3b:c3:2c:ad:f6:b7:0a:02:eb:
87:c0:12:b4:60:ee:94:a2:1d:ee:7c:db:ef:27:de:28:28:3d:
67:55:df:61:8c:ea:8b:13:62:9f:b9:a4:ee:26:4f:ed:6e:49:
7f:42:f7:41:a4:b4:1c:bc:c4:8e:3b:a7:b2:3b:7b:fd:f8:9d:
a3:0a:37:fc:29:9c:90:23:47:51:40:c3:05:0d:5c:ab:40:91:
85:02:3f:11:bb:8b:52:dd:0d:33:a6:db:97:75:89:13:69:2d:
c1:c5:3d:de:95:f0:bc:4c:59:ab:fa:10:cf:eb:84:c4:36:12:
b0:04:99:af:ea:51:b1:7b:87:ec:57:30:e0:89:95:95:7b:79:
97:39:2d:b4:78:28:74:9a:30:5e:de:1f:2c:dc:d6:f9:84:43:
34:22:93:c8:f9:38:ed:70:29:6b:3c:ec:6d:bb:07:f3:4b:c1:
52:ae:1c:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 18:01:21 2025 by rpki-client