Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer
File: vY9TgeGI5FgPskcsJxoFQp4tXCI.cer (raw, json)
Hash identifier: mBjFvX4dfxJqif31dBO/JSnlOReWK5mpLXXVQLVJzkk=
Subject key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B529
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 17 May 2026 13:10:44 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 135379
IP: 43.251.84.0/22
IP: 103.216.56.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 May 2026 08:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177449 (0x2b529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 17 13:10:44 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A915D66D, serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4c:db:9b:69:0e:1d:bf:b0:d9:85:af:f3:68:
cf:ec:e6:c7:1f:58:b9:2b:dc:ca:b8:89:52:71:5f:
fe:fd:e4:96:13:1c:c4:ba:98:22:4b:1d:80:fb:af:
b5:70:38:86:d8:cb:f9:ed:82:42:e1:14:0d:f2:d7:
47:be:5e:e9:da:f9:9e:e4:78:e7:37:cc:e6:43:67:
7f:d4:be:c9:e6:16:bd:60:04:cc:80:ef:57:c1:18:
01:43:56:d0:b7:fb:20:3a:47:86:54:c6:e4:78:e1:
60:89:69:87:b0:da:81:a7:39:f4:cc:0b:ff:1b:4f:
a9:54:39:b6:47:c5:e3:d6:cf:6d:a2:bb:56:87:b5:
f3:83:c0:e3:c4:d4:c5:2d:cd:4c:bd:6e:6c:c8:92:
b0:c2:ae:5f:97:5b:e4:9b:71:f0:d0:ed:ee:9d:26:
f3:ad:ca:56:5c:4f:d5:b8:4d:f4:8f:50:58:c3:45:
62:04:44:87:b7:7f:e0:5d:b5:a3:1b:69:fc:68:bd:
05:1b:ce:83:9b:ff:56:43:f9:9e:58:81:ad:79:3a:
1c:b2:af:ec:fc:92:0e:25:68:4b:25:13:56:d7:bd:
32:16:8e:7f:5c:b2:94:54:9f:da:4f:64:3b:a7:ef:
bf:9b:f5:5c:f6:8a:df:57:1c:08:b1:9c:cf:d7:c6:
42:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135379
sbgp-ipAddrBlock: critical
IPv4:
43.251.84.0/22
103.216.56.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:11:61:ab:d5:87:0b:9a:01:9c:21:38:14:c5:20:64:63:a0:
1f:5b:19:f3:06:42:57:42:90:30:4c:f0:01:89:ac:44:a1:4a:
d8:b8:f1:85:ff:af:89:45:d3:27:d3:a3:46:a6:9c:9e:6e:c0:
11:b2:cd:f0:b0:87:b3:67:91:c2:95:90:8e:bf:c0:90:12:3c:
df:c1:42:40:b9:04:9c:d8:25:56:0e:93:f5:7c:a6:72:e9:f5:
49:70:07:a2:5f:c8:ec:d8:80:cb:7b:a0:3e:83:df:26:92:61:
88:66:cd:42:82:e1:71:fb:74:16:d1:30:13:d0:2e:1c:d0:11:
6a:74:ed:88:b9:92:4a:57:1a:9e:dd:31:53:c7:19:70:a4:02:
cb:23:ca:09:92:84:3f:1b:0f:ca:fd:75:41:f1:b9:5e:39:ba:
00:57:c0:b1:c7:e5:1e:e0:90:54:61:7f:6c:1a:c3:89:d9:b5:
8f:c0:37:81:f3:72:cd:dc:3f:a6:8e:16:8a:8a:52:83:26:fb:
01:a8:8b:25:fa:d9:83:5c:4d:a1:b3:b6:0c:88:6f:0f:15:fd:
15:37:11:fd:fd:0b:2d:58:1d:05:cd:88:5b:a0:69:0a:03:1c:
72:fe:1c:50:77:e7:0f:fe:e3:a1:ad:38:70:15:80:de:c3:57:
35:e9:e0:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 21 10:17:23 2026 by rpki-client