Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmmU0Zdivg-YhPpO8NymbD9TAqg.cer
File: YmmU0Zdivg-YhPpO8NymbD9TAqg.cer (raw, json)
Hash identifier: /ojY6Ctp4kZoj5ZgdYU4BNGaGfQ3VD7pF6k3Aja184U=
Subject key identifier: 62:69:94:D1:97:62:BE:0F:98:84:FA:4E:F0:DC:A6:6C:3F:53:02:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B06D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 29 Apr 2026 13:12:32 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 18172
IP: 103.87.255.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 May 2026 04:46:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176237 (0x2b06d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 29 13:12:32 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A9157E6E, serialNumber=626994D19762BE0F9884FA4EF0DCA66C3F5302A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1c:2b:c2:9f:bb:7a:53:96:13:0c:61:72:0d:
c1:b3:54:26:8b:67:f9:bb:74:6e:bf:52:c2:57:af:
f0:e1:03:60:b0:91:b0:2a:d8:25:97:08:59:78:97:
5a:da:08:55:aa:7f:0b:e7:2e:84:6b:75:5b:67:16:
d0:f9:8c:5b:c7:49:5d:bd:57:00:3d:11:67:1e:43:
f2:fc:16:e7:34:b2:fb:6d:d1:3e:08:bf:4f:b5:d7:
ab:63:92:ae:ce:37:6b:b2:55:49:47:48:ee:88:09:
38:fa:4d:42:3f:a8:cd:8f:23:0d:be:bb:88:5b:7a:
c2:de:f4:5b:52:06:c8:5e:e5:61:54:24:1a:d5:43:
ea:4f:23:70:ad:83:d2:76:89:52:16:bf:b4:1e:b6:
02:74:70:ed:d8:54:3e:dc:32:fc:2e:43:92:b8:81:
25:d9:78:ca:d8:80:e5:18:e1:69:c0:fc:33:9d:9c:
bd:45:66:cf:0d:cf:dc:a8:d5:c5:99:54:e6:e7:71:
4c:bf:d3:b6:0d:70:56:29:dd:18:e2:6d:62:c5:60:
a2:eb:b5:0c:55:c7:50:43:89:c3:ae:fb:cd:b9:e4:
69:8a:df:8c:dd:1c:01:a6:3c:00:24:3c:0b:e1:86:
3c:f1:86:1c:a6:b3:61:20:7a:8f:03:73:a9:a6:6d:
93:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:69:94:D1:97:62:BE:0F:98:84:FA:4E:F0:DC:A6:6C:3F:53:02:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18172
sbgp-ipAddrBlock: critical
IPv4:
103.87.255.0/24
Signature Algorithm: sha256WithRSAEncryption
94:a5:29:3c:de:82:0b:8f:da:89:e0:92:44:fb:73:f4:ef:61:
de:1a:de:4d:e2:88:09:85:ea:fc:c7:51:8a:38:9f:61:11:ad:
6d:85:52:84:a8:ca:64:39:b6:cb:4e:01:d3:09:d1:8f:15:b7:
5c:34:b2:5a:3f:c7:37:e8:9a:71:f3:1f:91:d1:90:37:24:75:
28:02:71:41:d1:48:d1:89:d5:3d:ce:18:d7:b5:81:fe:fd:7f:
20:1f:3d:d6:2b:c6:08:dd:3c:89:da:99:b5:43:a5:d1:aa:7a:
01:0a:0a:34:4d:6f:24:a7:a7:8b:48:44:56:2a:a8:89:97:2b:
63:d6:1e:9e:dc:e8:d3:1e:e9:c2:e3:42:81:a4:19:00:7d:b0:
5f:34:89:c5:e5:0b:69:43:f8:f3:db:ad:4a:2f:e5:b7:ec:a7:
db:12:dd:0b:35:d1:56:58:fe:5d:74:0e:9d:c5:91:ba:36:85:
9d:01:82:3a:f3:ed:90:59:8d:80:6a:a3:98:7b:21:48:0e:53:
33:5f:de:30:a7:c2:37:4b:87:c5:ce:df:21:b8:d3:0a:4c:38:
36:64:44:f3:d9:87:7e:8c:48:ed:83:0a:39:2c:1b:48:f1:e7:
83:99:a5:2e:2e:b5:4f:f2:7e:2f:96:ca:3d:8f:eb:43:28:1e:
60:24:39:8b
-----BEGIN CERTIFICATE-----
MIIGGTCCBQGgAwIBAgIDArBtMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDQyOTEzMTIzMloXDTI3MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTdFNkUxMTAvBgNVBAUTKDYyNjk5NEQxOTc2MkJFMEY5ODg0RkE0
RUYwRENBNjZDM0Y1MzAyQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQClHCvCn7t6U5YTDGFyDcGzVCaLZ/m7dG6/UsJXr/DhA2CwkbAq2CWXCFl4l1ra
CFWqfwvnLoRrdVtnFtD5jFvHSV29VwA9EWceQ/L8Fuc0svtt0T4Iv0+116tjkq7O
N2uyVUlHSO6ICTj6TUI/qM2PIw2+u4hbesLe9FtSBshe5WFUJBrVQ+pPI3Ctg9J2
iVIWv7QetgJ0cO3YVD7cMvwuQ5K4gSXZeMrYgOUY4WnA/DOdnL1FZs8Nz9yo1cWZ
VObncUy/07YNcFYp3RjibWLFYKLrtQxVx1BDicOu+8255GmK34zdHAGmPAAkPAvh
hjzxhhyms2Egeo8Dc6mmbZONAgMBAAGjggMOMIIDCjAdBgNVHQ4EFgQUYmmU0Zdi
vg+YhPpO8NymbD9TAqgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU3RTZFLzgzMEM2OTcwMERFQjExRTc5NzcxQjY2NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1N0U2RS84MzBDNjk3MDBERUIxMUU3OTc3MUI2NjZDNEY5QUUwMi9ZbW1VMFpk
aXZnLVloUHBPOE55bWJEOVRBcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICRvwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnV/8wDQYJKoZI
hvcNAQELBQADggEBAJSlKTzegguP2ongkkT7c/TvYd4a3k3iiAmF6vzHUYo4n2ER
rW2FUoSoymQ5tstOAdMJ0Y8Vt1w0slo/xzfomnHzH5HRkDckdSgCcUHRSNGJ1T3O
GNe1gf79fyAfPdYrxgjdPInambVDpdGqegEKCjRNbySnp4tIRFYqqImXK2PWHp7c
6NMe6cLjQoGkGQB9sF80icXlC2lD+PPbrUov5bfsp9sS3Qs10VZY/l10Dp3Fkbo2
hZ0Bgjrz7ZBZjYBqo5h7IUgOUzNf3jCnwjdLh8XO3yG40wpMODZkRPPZh36MSO2D
CjksG0jx54OZpS4utU/yfi+Wyj2P60MoHmAkOYs=
-----END CERTIFICATE-----
Generated at Thu May 21 08:43:36 2026 by rpki-client