Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer
File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer (raw, json)
Hash identifier: K+vppZftG0mD24mCGO9zqtgmqQkmLThwsPyxaNbKQco=
Subject key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A788
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Mar 2026 14:23:10 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 150777
IP: 103.89.240.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Apr 2026 00:25:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173960 (0x2a788)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 30 14:23:10 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0e:c3:ae:7c:b8:e0:32:71:df:77:88:8a:3f:
12:49:d0:9d:22:c3:3a:70:0f:21:4a:6f:05:34:2e:
4e:48:bc:9a:a5:ba:ae:07:36:aa:e8:f7:05:f9:08:
27:be:01:30:81:39:60:0c:e1:bc:d1:bf:11:e2:b3:
4c:4c:97:11:31:5a:87:08:d0:cd:43:e2:0e:c1:ff:
ed:5d:db:c1:40:13:60:70:a9:80:43:c2:52:4d:71:
f2:33:7a:29:97:f7:eb:46:af:03:e0:84:80:03:58:
7d:18:75:4b:ff:e4:77:8a:4a:72:b6:69:04:61:41:
e9:34:f7:c0:5a:a5:88:68:88:d8:57:1c:3f:d4:37:
ce:8e:9e:39:07:81:f0:fe:28:83:1c:2a:b8:5e:3a:
0b:f5:a5:7a:14:2f:48:49:d4:03:f9:ba:0c:00:92:
e7:2a:85:6b:0c:c9:64:93:6a:5a:59:35:f2:bc:55:
59:62:4e:22:e6:28:9e:9a:6a:c1:4e:6d:21:a6:5c:
38:a9:b7:0e:83:8c:4d:fe:fd:b9:74:81:2f:18:38:
2e:27:ca:6f:cb:69:26:e1:e7:1a:73:2c:62:8f:75:
30:9a:85:c5:54:ba:1c:e5:7d:06:ea:60:b9:2e:5c:
dd:77:2f:99:74:1f:e9:83:f7:8a:c9:fb:fb:e7:25:
6e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150777
sbgp-ipAddrBlock: critical
IPv4:
103.89.240.0/23
Signature Algorithm: sha256WithRSAEncryption
c5:d3:78:46:52:d7:92:36:71:f7:66:46:2e:91:81:48:dd:4a:
d2:8c:67:ff:0c:43:86:d5:96:41:bb:00:cf:a2:ae:b6:74:1f:
47:44:c4:c2:4e:57:01:f4:a6:e8:b6:fd:f4:61:8f:5f:ba:8c:
9a:db:0e:bd:92:2a:99:e7:a3:4b:af:47:dc:17:c4:1a:d6:dc:
17:f8:93:f9:76:4d:eb:5a:61:03:78:10:e9:1f:64:41:c2:c8:
0d:52:c8:8b:57:b1:90:8f:96:dd:f8:aa:0b:8f:f5:55:8f:6c:
7e:27:61:1b:f0:98:a7:40:95:34:00:87:09:a3:11:cd:50:3e:
cb:06:51:cc:89:57:50:6c:f4:19:43:26:a5:b5:f9:f9:73:3d:
63:91:6f:9d:dc:a0:77:d6:76:2d:bf:a5:01:01:0d:7f:dd:ef:
76:62:eb:85:98:34:3a:8e:6d:8b:2e:ba:ff:7c:67:6e:f8:6b:
8d:7a:ae:85:7a:69:e0:10:04:d4:58:ac:2b:d1:52:3e:d7:20:
86:f3:d8:69:ad:a1:49:23:ec:80:3b:f6:da:5c:b9:4e:22:06:
4c:44:c1:ee:e6:ec:59:c5:95:2d:18:75:fb:1c:02:4c:43:ad:
3a:e6:1c:47:c7:df:16:31:93:13:50:cb:c9:3e:48:4d:dc:e0:
37:65:50:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:11:18 2026 by rpki-client