Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgXWapgEftsGpJSzdC9eyCuB3LA.cer
File: ZgXWapgEftsGpJSzdC9eyCuB3LA.cer (raw, json)
Hash identifier: 2zTlFUhMawnF26sDs80GzYWyh8RKsFE8ozGQUtMBqlU=
Subject key identifier: 66:05:D6:6A:98:04:7E:DB:06:A4:94:B3:74:2F:5E:C8:2B:81:DC:B0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0288B6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Jan 2026 03:36:40 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 38495
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166070 (0x288b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 27 03:36:40 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91E22E3, serialNumber=6605D66A98047EDB06A494B3742F5EC82B81DCB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:19:a9:21:47:21:fa:76:00:9e:78:61:b5:8c:
5e:d5:19:bc:a8:27:3f:b4:f0:51:ff:4b:97:70:07:
16:13:d5:c4:5f:43:5b:8c:d1:c6:84:14:0d:e9:29:
6d:df:4d:3c:2c:7b:79:ce:d2:7d:8e:ff:bf:2b:28:
ec:09:ec:ed:05:2b:b2:55:07:87:04:34:64:ba:48:
eb:10:80:e4:db:ac:b6:13:17:95:a6:ee:83:06:7c:
36:db:ca:64:f0:db:44:9d:0b:cb:c8:dd:fb:0a:87:
c9:b4:74:8c:59:78:d2:d0:d4:1c:1b:b8:7e:ee:7b:
c0:9f:3c:6f:ec:da:7c:cd:96:9a:2e:cb:ad:4f:2d:
12:f0:be:6c:60:7a:bf:ef:87:6c:66:21:0c:d3:dd:
8d:bf:00:d9:a3:cf:36:d2:19:3b:d3:72:77:fd:20:
5b:0c:83:94:26:50:09:8a:de:a7:44:54:e4:7f:b8:
0b:0d:08:55:9e:35:87:0b:66:0a:4b:8c:a0:62:46:
d3:41:76:75:2d:03:34:ad:16:16:82:e6:f1:c9:03:
4d:6a:9e:ea:34:fd:aa:36:ef:4b:af:19:f2:09:7e:
94:c5:3c:bd:13:75:6e:64:a9:e9:bb:3c:3d:ad:0a:
8c:1c:e4:43:5b:4a:2d:b5:18:cf:95:65:b7:81:84:
f7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:05:D6:6A:98:04:7E:DB:06:A4:94:B3:74:2F:5E:C8:2B:81:DC:B0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E22E3/84B0A85E170C11EF94F17C14C4F9AE02/ZgXWapgEftsGpJSzdC9eyCuB3LA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38495
Signature Algorithm: sha256WithRSAEncryption
06:ae:b2:13:77:d5:f1:da:52:d1:05:4c:08:f1:de:2c:b2:ee:
fc:10:f1:7a:4e:39:37:84:4c:cb:53:20:00:6a:98:70:b6:15:
af:20:28:e3:e3:b6:fe:e1:fe:e9:c8:be:1b:c6:b2:bd:f8:28:
a3:a7:ae:d9:16:74:1b:b1:df:0b:80:af:4a:1a:df:03:60:2c:
45:cd:dc:80:85:ab:e2:bc:a3:e7:7c:3a:cd:7e:9d:7c:fa:06:
91:71:d0:cd:34:42:09:d4:36:79:91:3f:87:34:13:e0:35:4d:
63:d2:b5:ab:92:e7:cd:ff:4f:e7:42:8b:29:b2:72:f1:20:98:
c9:35:29:30:6d:60:8f:50:11:b0:19:b3:cd:fd:5b:a8:fe:f1:
fa:7d:41:6e:88:6c:3b:56:82:be:f3:66:75:da:0d:4b:35:45:
71:2e:a3:b4:f7:55:5e:e1:5d:a5:5a:62:2a:79:a0:c4:93:0c:
92:05:3b:b0:70:31:13:0b:af:fc:1b:ed:f5:e4:e6:00:38:dd:
b5:8f:fd:04:79:eb:16:fd:82:46:72:4d:7e:f7:9d:c8:1f:73:
5b:54:11:c6:b9:7b:69:03:6e:1f:3f:7f:9e:d6:69:68:77:ef:
b2:c0:14:9d:75:d8:7d:cf:01:2c:ea:c6:98:c2:d4:d5:11:c5:
b4:20:11:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 16:39:04 2026 by rpki-client