Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGicZx-u8ZZ896mxozaNi5FLe6c.cer
File: RGicZx-u8ZZ896mxozaNi5FLe6c.cer (raw, json)
Hash identifier: TetJhMTacwpWFXyAWK03D2iYYNXMHriTmPOXlugvCaI=
Subject key identifier: 44:68:9C:67:1F:AE:F1:96:7C:F7:A9:B1:A3:36:8D:8B:91:4B:7B:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 029CF1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EBA46/07AE7A969CF611EF8A6C8581C4F9AE02/RGicZx-u8ZZ896mxozaNi5FLe6c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EBA46/07AE7A969CF611EF8A6C8581C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:59:31 +0000
Certificate not after: Tue 02 Jun 2026 00:00:00 +0000
Subordinate resources: AS: 153394
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 03:24:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171249 (0x29cf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:59:31 2026 GMT
Not After : Jun 2 00:00:00 2026 GMT
Subject: CN=A91EBA46, serialNumber=44689C671FAEF1967CF7A9B1A3368D8B914B7BA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ea:f3:23:60:08:c0:85:df:2f:9b:b7:4b:ac:
2c:38:6c:f0:a7:a1:54:74:55:4b:a5:b6:c6:42:3f:
7b:fd:df:27:22:54:77:bf:a8:03:75:1f:70:38:be:
a0:8d:d6:46:2d:a0:d6:bc:67:a5:d6:17:cc:6a:38:
9d:be:dc:66:14:f8:79:bb:d4:96:d7:9a:b0:21:33:
ad:f5:f8:06:94:d8:79:b8:3c:79:f4:bc:5a:94:e6:
89:17:86:9c:79:fb:ce:ad:46:e6:85:c4:5b:db:9a:
f5:f1:e9:7f:bf:75:4e:45:1a:5a:1a:0a:29:e7:eb:
1f:63:12:30:ab:cb:59:08:73:48:c5:50:77:c4:6f:
56:ed:43:e3:d4:c8:ca:92:8f:eb:79:d2:e3:79:8e:
86:46:89:42:b2:42:f6:1b:89:19:59:82:90:bb:00:
0a:1c:53:98:e6:96:ea:25:a4:29:5c:ee:a2:1c:10:
20:15:93:4d:31:44:0c:c1:f0:8b:ab:e2:80:a9:66:
66:91:9c:42:77:25:35:5c:7f:a7:db:51:8a:b0:64:
fc:5b:ee:fa:30:d3:e7:01:3f:a9:fa:7d:26:a1:39:
c1:c1:db:d7:0a:d3:f5:9a:45:02:c0:9e:df:be:27:
99:99:27:70:33:71:44:a9:2e:59:bd:4e:1b:8d:ea:
96:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:68:9C:67:1F:AE:F1:96:7C:F7:A9:B1:A3:36:8D:8B:91:4B:7B:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EBA46/07AE7A969CF611EF8A6C8581C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EBA46/07AE7A969CF611EF8A6C8581C4F9AE02/RGicZx-u8ZZ896mxozaNi5FLe6c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153394
Signature Algorithm: sha256WithRSAEncryption
bd:70:86:48:5f:ed:40:6e:24:0c:bb:e6:1e:97:00:d2:49:b7:
e8:d2:fd:96:07:56:ce:58:fb:93:3f:bd:07:89:2c:a6:89:36:
2c:0d:69:9b:f2:e7:14:d4:45:14:a4:39:54:27:2b:c2:de:b8:
5b:22:34:8d:cc:77:79:71:66:7a:b5:09:e9:b5:ea:89:61:d7:
04:81:d3:eb:c4:a8:76:84:07:59:7e:51:91:5a:a4:34:87:4e:
87:10:e7:82:8e:5c:03:04:81:8a:58:a9:95:3d:1c:b0:9d:69:
e6:8b:06:15:9c:e8:e7:dd:74:a1:9f:d0:f9:3e:02:ea:0f:53:
ec:48:97:88:d7:0e:99:bf:bf:82:12:26:00:9c:c8:76:e2:e8:
a3:70:3d:a3:0f:c0:44:bc:cd:b7:c2:08:a1:9a:0b:d3:12:c6:
55:5e:51:a5:4c:b8:16:fe:81:4d:49:98:42:12:e5:39:4a:7c:
29:25:9a:4d:e2:b2:9a:99:6b:a3:b8:10:d3:92:99:a9:19:3b:
bf:da:85:3d:bc:97:ce:1e:51:cf:65:93:28:d0:a0:b8:e3:52:
ee:48:1c:74:ad:76:10:d4:92:b6:c4:bc:7c:91:d4:18:a6:c9:
cd:46:e1:29:d0:41:c7:6e:61:af:21:6e:19:be:fe:1c:2f:17:
34:0d:57:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:54:52 2026 by rpki-client