Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vO4SgFOJtXjDX9i0JVpggdJoP3w.cer
File: vO4SgFOJtXjDX9i0JVpggdJoP3w.cer (raw, json)
Hash identifier: C3JJAhj6xuiiaPisvngevjSKvEVjqjjx8oF9q1/I5Jw=
Subject key identifier: BC:EE:12:80:53:89:B5:78:C3:5F:D8:B4:25:5A:60:81:D2:68:3F:7C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A6B2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Mar 2026 04:31:41 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 152588
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173746 (0x2a6b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 27 04:31:41 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91B4B33, serialNumber=BCEE12805389B578C35FD8B4255A6081D2683F7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:83:ac:31:fa:c5:8b:05:5a:fe:ae:ab:b2:00:
00:ab:86:4e:ca:6e:be:c7:54:19:0c:84:e7:8b:2e:
33:b1:e0:f3:67:6d:70:95:0a:95:0e:28:0a:72:8b:
2d:70:52:bf:52:6e:54:1f:2c:98:3b:bc:ea:7c:9a:
c2:32:46:ce:24:41:22:7b:3f:0a:28:48:bb:e2:38:
e2:e7:14:2a:e3:57:50:9b:81:a1:6f:fc:38:56:c4:
57:71:0b:57:c9:59:5f:05:40:99:37:ff:96:5b:46:
6c:82:e1:77:c6:a8:ad:30:c1:6c:7e:46:16:5a:e2:
ab:83:e9:5f:fa:f9:a0:c7:06:7f:03:e6:30:a9:e9:
f0:16:ec:e4:22:b3:00:18:cb:22:b1:44:26:84:aa:
ac:3f:fb:8b:94:17:83:14:c1:32:7e:f2:ec:1b:61:
08:c5:54:95:37:7f:6b:fc:cf:ca:e8:9b:c4:b2:c2:
78:fa:e3:76:b7:3c:11:39:73:f6:90:f2:bb:5e:5f:
75:4f:20:48:ee:5f:42:97:ce:f9:a9:24:70:04:58:
dd:74:91:fa:9b:a3:ee:0d:db:4e:43:1b:9f:35:1b:
ed:cf:e4:78:b0:f7:6c:12:6b:43:9e:0f:dc:31:89:
1e:4a:2b:38:61:d0:72:54:65:d4:f2:2f:d1:e8:07:
66:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:EE:12:80:53:89:B5:78:C3:5F:D8:B4:25:5A:60:81:D2:68:3F:7C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152588
Signature Algorithm: sha256WithRSAEncryption
26:35:6a:5e:72:24:17:1f:c6:e4:b3:cb:9c:ff:9c:46:fe:07:
56:ca:69:78:e8:19:e5:b4:a2:83:48:df:9b:19:9f:cf:a4:8e:
1c:98:c1:fb:f9:df:55:31:da:60:55:4b:9c:5e:38:88:9f:93:
ab:f8:8a:d2:bc:85:92:5b:bd:83:c9:04:37:56:3f:92:a4:8b:
eb:3d:44:f1:ad:98:9c:7b:e5:47:89:bc:24:1a:ce:b8:09:93:
c3:9d:91:0b:90:ca:1f:f8:d2:78:40:ce:dc:83:ad:b7:ac:70:
5a:22:a2:66:67:6b:54:25:85:7e:33:57:16:a6:60:66:a1:89:
22:5a:b2:70:10:f4:16:86:17:2f:10:12:05:ce:a6:00:3c:18:
0c:72:5b:c6:b5:b6:72:71:fe:2b:bb:69:bc:65:86:45:39:ec:
38:21:51:16:b8:4b:d4:8a:77:58:26:3a:8a:25:17:54:7a:e5:
45:93:ea:5a:d6:25:b7:4d:a9:ee:d4:ee:ca:24:bd:61:b6:d7:
6b:40:b6:32:b0:de:3d:45:d6:1f:07:44:0f:ab:aa:a4:1a:26:
90:35:55:0b:e0:e5:ac:cc:cb:24:8d:f8:69:b6:76:7d:79:6b:
7e:de:f2:25:61:01:04:62:5c:64:e0:93:85:84:70:9c:65:01:
03:39:aa:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 07:13:45 2026 by rpki-client