Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer
File: rHyecYIsBWGFGGRT-WCywejKlOM.cer (raw, json)
Hash identifier: U+v+e1u6aLmTuoJhtcchSB3aYoO62jVLXB4EDsfdLUY=
Subject key identifier: AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B8A1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 31 May 2026 14:59:35 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 45947
IP: 202.43.84.0/22
IP: 203.22.215.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 Jul 2026 05:51:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178337 (0x2b8a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 31 14:59:35 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A91F4BB3, serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cb:67:fb:a5:ed:50:cd:bb:78:e9:a5:31:be:
df:5f:a0:07:d9:65:1f:21:45:fd:1a:98:45:c1:7b:
73:10:d0:98:d1:be:a9:07:c4:12:29:af:83:d6:85:
fd:33:f9:49:e1:55:6f:de:d1:5a:01:8e:96:fc:50:
af:be:d4:5e:db:e0:4f:c4:14:20:80:13:0e:fd:15:
05:e5:c2:40:38:88:ef:94:c7:11:b9:6d:eb:57:23:
c3:a9:42:1e:57:3a:55:bb:9e:1b:c7:74:a9:8e:cc:
49:c7:30:55:69:99:5e:2c:6a:ba:00:dd:41:98:bc:
99:6a:81:de:b7:9a:00:f3:0c:b1:db:e9:f1:40:b3:
3b:d0:ae:e2:77:ee:31:0c:3c:ef:ab:07:6c:1a:44:
1d:56:6c:be:21:2e:b7:62:63:c1:31:37:8a:32:a0:
fd:e2:11:ae:81:55:4e:e1:21:99:cb:74:56:0d:f5:
f2:a1:b6:c5:b3:fd:75:76:b2:c8:5f:15:b6:38:18:
03:3b:bc:31:8a:42:82:68:04:22:ac:0c:19:e0:a8:
93:cd:11:c9:1b:59:09:e5:49:a9:3f:a1:86:53:02:
34:74:aa:3f:77:3d:81:fb:42:2c:ad:96:b5:98:8a:
6a:69:8d:69:e7:02:18:cd:d6:88:67:8c:e2:8b:85:
7f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45947
sbgp-ipAddrBlock: critical
IPv4:
202.43.84.0/22
203.22.215.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:7e:af:1e:8d:f0:74:d8:68:c5:54:ce:f4:28:11:67:03:34:
1e:58:58:c7:e6:6b:2c:1c:9a:5a:66:8d:ab:49:64:4b:cf:02:
1a:88:18:a8:83:6a:cb:4e:9e:13:3b:d4:e5:8e:6f:19:2b:a9:
33:5d:ea:38:ae:d9:96:bd:a4:ba:93:a0:e1:fd:6e:2a:e5:e7:
fa:f8:58:cb:17:a8:bc:c2:ed:e7:2f:35:9d:19:52:29:d1:ab:
30:fe:33:80:92:a8:38:ce:0f:f1:35:07:1f:6e:7d:32:e3:82:
52:40:67:f7:42:9d:f2:16:39:3e:e5:ae:3c:50:90:94:70:9b:
d8:e8:83:35:00:55:8a:65:d1:7d:e1:04:05:6f:fa:fb:f3:83:
4c:a9:cf:e4:da:0b:bd:fd:5c:55:6d:40:4d:51:15:fc:08:b1:
ac:d7:db:33:0e:ed:4d:b7:53:11:df:ca:1c:6e:34:58:cf:7b:
e2:1f:a4:e4:3f:6e:dc:52:30:c4:d2:5c:1b:7d:80:de:7a:6d:
80:1e:d1:37:59:6c:0f:56:7e:d7:1a:97:d2:3d:cd:8a:81:ce:
f0:d1:55:69:6c:0d:3f:d8:8e:fc:95:2e:49:5d:3d:81:44:f4:
32:e1:9c:0f:b8:a4:85:1e:b7:79:d7:23:c2:4d:85:70:2b:2f:
05:5f:cd:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 10:16:48 2026 by rpki-client