Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YYrgnnRxNtZvEWWnuP6i_3OGffY.cer
File: YYrgnnRxNtZvEWWnuP6i_3OGffY.cer (raw, json)
Hash identifier: nSUc/2Xcu2SDIC9KCXOHWLBZMKJprIOf5IrrbBPf2NI=
Subject key identifier: 61:8A:E0:9E:74:71:36:D6:6F:11:65:A7:B8:FE:A2:FF:73:86:7D:F6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02932C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B4460/0D46883C148711F0A79EAB26C4F9AE02/YYrgnnRxNtZvEWWnuP6i_3OGffY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B4460/0D46883C148711F0A79EAB26C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:13:49 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 136942
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168748 (0x2932c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:13:49 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91B4460, serialNumber=618AE09E747136D66F1165A7B8FEA2FF73867DF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2e:1b:23:49:12:96:e3:53:e3:8d:34:ec:26:
f7:c0:b3:98:d4:19:8a:f2:c3:4e:30:65:18:63:66:
a6:51:22:6e:8d:0d:8e:a3:da:51:71:a1:14:17:8e:
b9:cb:83:d0:68:00:36:95:29:f1:9b:89:14:7a:5c:
70:a0:84:e3:83:17:4e:41:1a:f5:5b:9a:6f:7d:dd:
f9:ca:2b:70:5c:83:6c:fd:82:cb:7a:ef:9e:55:83:
7a:cc:df:91:46:98:6f:e0:04:6e:0f:f0:c7:9e:ae:
98:2f:00:ee:e0:af:32:26:e8:54:13:38:16:93:ff:
71:6b:67:fa:41:5f:d5:ae:19:20:42:9f:22:9c:3a:
bc:82:0f:7b:93:07:b1:0d:ec:dc:69:c7:b7:c5:a3:
0f:a4:e5:4c:37:c6:3d:8d:ed:b1:b4:cf:e1:19:ab:
28:f8:ad:a3:9c:4c:2f:00:80:43:0d:96:64:f4:a3:
75:c8:71:98:74:01:bf:df:df:8d:57:da:49:d5:48:
b4:fc:98:72:94:57:61:63:0e:e3:d4:6a:fc:77:b9:
cc:c4:3e:84:c4:5e:18:cf:e2:0f:02:d5:7b:81:ec:
f7:32:8c:5c:87:b5:73:c8:f8:47:5f:0b:e6:ae:55:
31:a8:11:4b:32:a3:35:4b:ec:70:a9:a0:55:1c:11:
8f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:8A:E0:9E:74:71:36:D6:6F:11:65:A7:B8:FE:A2:FF:73:86:7D:F6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B4460/0D46883C148711F0A79EAB26C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B4460/0D46883C148711F0A79EAB26C4F9AE02/YYrgnnRxNtZvEWWnuP6i_3OGffY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136942
Signature Algorithm: sha256WithRSAEncryption
c4:3f:76:4b:79:d1:66:bd:11:b0:41:70:58:46:64:32:48:56:
f0:dd:8c:62:f9:b3:8e:de:9f:1c:c2:64:7d:1e:08:63:fb:0d:
49:65:31:d8:a5:25:cc:23:d1:31:d9:f0:aa:9f:c5:bf:44:fa:
7d:31:50:74:34:22:64:fd:10:56:4a:43:94:67:ef:4b:d9:cd:
f4:85:9d:db:58:2b:6a:2a:64:57:be:08:ae:34:f6:ca:bc:ad:
d6:08:cc:46:59:9c:67:f9:cd:64:72:32:43:78:c7:46:2c:fb:
47:ad:08:28:8c:9f:73:6d:51:86:a5:2e:d8:77:76:48:e4:34:
18:4b:ee:f5:1c:2e:aa:52:75:be:b7:37:07:97:87:8e:c1:82:
b5:9c:98:18:ef:cf:59:aa:88:06:43:2a:ab:e1:a5:71:db:2c:
64:ba:69:a7:cd:19:a9:57:b4:5e:82:47:7c:ca:0b:53:b7:46:
8f:c1:d6:38:15:94:28:74:ca:f6:56:f6:7d:f9:9f:f5:7e:96:
bb:4a:a7:95:d0:a7:55:55:91:28:03:84:f9:a9:f1:8f:f8:28:
04:ad:62:31:ff:be:df:61:3c:47:42:23:b8:5b:22:2c:8a:d3:
fd:60:db:47:68:c0:1a:c2:c4:6a:4b:41:c3:57:54:eb:0f:95:
9a:16:b9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:22:45 2026 by rpki-client