Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9I4pw6sem_8a5CrMM77dzkhb0o.cer
File: H9I4pw6sem_8a5CrMM77dzkhb0o.cer (raw, json)
Hash identifier: HH0UXWb8BTHG2JggQ1vqMM5uhVs3/qqRy5dGFYhQWR4=
Subject key identifier: 1F:D2:38:A7:0E:AC:7A:6F:FC:6B:90:AB:30:CE:FB:77:39:21:6F:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0292F1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913DD09/70C10760622B11F0BE528B1FC4F9AE02/H9I4pw6sem_8a5CrMM77dzkhb0o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913DD09/70C10760622B11F0BE528B1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:12:45 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: IP: 2401:de60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168689 (0x292f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:12:45 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A913DD09, serialNumber=1FD238A70EAC7A6FFC6B90AB30CEFB7739216F4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6f:dd:1b:68:34:44:79:6e:65:d2:7a:ea:a7:
5a:ef:33:49:56:c2:e0:64:41:47:7b:0e:23:3f:0d:
df:e6:78:78:c5:b9:97:e5:f5:6c:73:98:3a:04:fc:
c3:2b:1e:be:95:d4:a2:7f:c1:24:9e:b2:62:8d:a6:
c1:46:0b:49:a6:a1:59:5b:99:44:bf:e9:d1:49:9e:
e2:b0:64:bd:bc:bd:31:ec:16:c5:44:28:49:79:10:
e7:ba:a3:29:e4:54:f0:8e:6a:22:b9:00:d5:96:28:
9e:52:8f:84:be:c8:78:64:16:e7:be:ae:60:f4:b2:
b2:18:6f:05:cc:48:60:9c:bc:f8:50:43:15:93:5d:
e8:d9:ec:38:7a:90:b9:29:a2:4c:5a:9c:97:8d:15:
52:3e:6d:74:6b:3d:76:53:3e:92:88:42:24:1e:54:
a0:b9:4b:c7:ad:88:ec:ac:33:6a:6d:2a:e3:60:5c:
94:95:73:8f:42:d3:f9:5e:eb:cf:af:07:fa:42:9c:
6a:0f:c2:62:5c:b5:e0:57:4e:7a:64:a2:8b:bb:9a:
db:1c:50:fe:07:d3:15:24:d6:47:00:96:81:6b:80:
e6:13:c9:53:47:3e:2f:b2:06:29:ea:73:74:da:b2:
d4:43:a0:93:f6:ae:20:93:ab:81:b8:61:86:9a:e4:
11:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D2:38:A7:0E:AC:7A:6F:FC:6B:90:AB:30:CE:FB:77:39:21:6F:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913DD09/70C10760622B11F0BE528B1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913DD09/70C10760622B11F0BE528B1FC4F9AE02/H9I4pw6sem_8a5CrMM77dzkhb0o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:de60::/32
Signature Algorithm: sha256WithRSAEncryption
a0:18:40:17:c7:1d:9e:18:ed:6b:40:e2:60:77:66:e8:80:2d:
8d:99:ab:a3:6e:47:a5:3e:45:8c:55:97:0a:48:cd:d6:84:ea:
93:36:f0:f0:26:ea:3c:6a:f7:41:4c:74:41:fd:68:d0:fb:de:
0e:73:eb:b2:cf:d6:2a:0b:29:85:b7:73:ef:68:dc:d7:c3:9f:
df:b4:21:51:4e:87:48:5b:24:2b:70:d9:01:5a:3d:55:fa:4f:
4b:5c:31:4d:d2:1a:4b:f4:20:0c:d4:75:af:95:04:bd:57:4c:
17:e0:52:6f:6d:6c:17:ee:85:91:5b:ee:ed:a5:09:98:3e:b1:
bb:63:98:38:6f:44:d5:27:c4:ae:12:c1:10:12:6e:ef:18:b5:
53:bf:1c:8e:d5:a1:2a:9d:f6:fe:77:37:6f:50:06:06:fe:7d:
ad:27:7b:33:22:de:61:34:e8:d7:bf:56:fe:03:5b:f9:d1:3f:
84:8a:1b:38:a3:67:01:1c:2f:75:6e:8e:3e:cb:5d:c7:72:d0:
a9:7a:b3:0a:f6:7c:9d:f3:2e:50:8a:ac:59:37:57:eb:c6:19:
1c:fd:5f:26:ca:d7:4f:91:76:46:02:14:ce:5d:fd:fa:b3:94:
9c:43:c3:c2:65:43:e2:66:3c:9d:cd:79:90:83:90:88:4f:c1:
3d:95:16:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:22:29 2026 by rpki-client