Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q30L1dKrXe4vHNaWuCm675d_eM4.cer
File: q30L1dKrXe4vHNaWuCm675d_eM4.cer (raw, json)
Hash identifier: 4eTK3V78VLXbwSW1PONEC+kA9gqZ6dvN0TJ9uVleMiE=
Subject key identifier: AB:7D:0B:D5:D2:AB:5D:EE:2F:1C:D6:96:B8:29:BA:EF:97:7F:78:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028C51
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/q30L1dKrXe4vHNaWuCm675d_eM4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Feb 2026 16:20:48 +0000
Certificate not after: Tue 02 Jun 2026 00:00:00 +0000
Subordinate resources: AS: 17627
IP: 123.231.0.0/17
IP: 203.189.64.0/20
IP: 2405:4400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 15:55:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166993 (0x28c51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 2 16:20:48 2026 GMT
Not After : Jun 2 00:00:00 2026 GMT
Subject: CN=A9171A5B, serialNumber=AB7D0BD5D2AB5DEE2F1CD696B829BAEF977F78CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4e:57:dd:7e:b0:86:55:98:c6:2c:4d:5c:8f:
1a:77:ba:be:0c:01:3a:4e:bc:0b:6f:7f:8f:75:b7:
ba:fd:ee:a7:21:40:ee:16:ee:57:35:c1:a2:47:69:
b6:72:b5:11:75:c0:9a:3e:58:c7:0d:30:79:2a:8f:
69:b3:a6:c6:bf:74:90:00:1d:f7:92:d0:25:c4:64:
d5:35:98:40:ec:79:75:87:23:67:1d:1d:05:e1:d7:
b9:13:64:62:15:35:f8:be:46:ad:c6:27:24:5d:f5:
e4:ac:1e:a7:37:97:3e:e6:7a:17:3e:1a:71:3d:42:
5b:5b:90:8b:ce:ff:b9:d3:be:f6:b6:bf:51:2e:89:
b0:8d:31:df:b2:e0:8d:9e:51:0b:7f:c8:bd:3a:9f:
bd:88:eb:af:c9:70:6b:65:a1:29:12:3b:26:35:6a:
54:76:ba:e9:47:91:73:ba:f6:bd:06:8a:f1:ac:99:
54:0c:0d:4b:e4:c5:ce:8a:7e:c3:f3:4a:5e:27:6b:
17:33:20:33:1e:59:38:68:c8:b3:f2:4b:f2:ed:13:
46:d3:a7:83:32:5d:02:41:d0:4f:78:e6:01:db:9a:
10:85:79:d4:24:6f:07:46:d5:97:a4:b0:22:ab:f6:
5e:0a:a1:61:6d:1c:1c:c5:b8:08:66:5c:8f:6e:92:
98:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7D:0B:D5:D2:AB:5D:EE:2F:1C:D6:96:B8:29:BA:EF:97:7F:78:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/q30L1dKrXe4vHNaWuCm675d_eM4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17627
sbgp-ipAddrBlock: critical
IPv4:
123.231.0.0/17
203.189.64.0/20
IPv6:
2405:4400::/32
Signature Algorithm: sha256WithRSAEncryption
16:e4:ec:95:30:64:ee:df:98:e6:4d:4c:01:3c:47:b6:be:03:
90:4a:ab:2b:02:73:95:fe:47:b5:15:49:d3:68:2a:23:4e:f4:
96:37:12:a0:44:a3:c2:12:a9:bf:bc:28:81:88:c5:6e:45:53:
44:2b:c7:6a:db:81:cf:f6:91:89:6f:a5:9d:48:6c:9f:ad:6a:
8a:87:73:fe:c9:a9:f5:aa:f4:17:3c:83:99:27:58:f0:9d:69:
9c:2c:04:8f:92:bf:76:5f:f0:4b:98:ee:5e:24:db:af:58:39:
49:a1:53:22:02:5a:b2:52:e8:58:38:3e:e5:da:e0:0e:7f:a0:
1d:cc:67:68:90:13:a0:53:6b:97:ef:9b:74:f3:5b:d5:d0:50:
3e:14:32:68:05:97:7c:a0:a5:46:d6:58:40:4e:51:ba:56:f0:
2e:31:c0:4b:63:50:cc:0a:c6:84:87:d5:56:d5:b2:e2:38:0f:
76:c2:90:d8:06:bf:92:bc:c2:49:dc:9f:c9:38:10:57:97:00:
b5:90:1b:c0:4d:4b:1d:9a:55:d4:53:8d:0a:36:18:ab:08:90:
20:45:07:83:e8:d7:51:de:80:ea:ef:d9:1d:ef:41:b3:68:8d:
2d:13:16:a0:0e:e2:69:02:8f:09:6a:71:36:8e:9b:09:9d:ca:
d0:28:85:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 22:40:19 2026 by rpki-client