Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer
File: Ygf27_AJl4bjCgNbG1uQPBY_WX4.cer (raw, json)
Hash identifier: EwxxylijhzMFkWEVDSgb1Kz11AkTy9xFPBPNNKgkles=
Subject key identifier: 62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02ACC4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 15 Apr 2026 12:41:55 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 55928
IP: 36.255.144.0/22
IP: 103.7.24.0/22
IP: 2403:7500::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Apr 2026 03:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175300 (0x2acc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 15 12:41:55 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A912D4AE, serialNumber=6207F6EFF0099786E30A035B1B5B903C163F597E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:16:90:77:7b:81:71:cb:56:7a:21:86:52:5a:
2c:8b:14:70:dc:96:7f:0c:a5:21:76:0c:a6:a8:a5:
67:e9:2d:97:16:25:8f:b7:53:50:af:48:8f:04:ec:
41:d2:eb:41:7d:d2:62:fa:ee:2d:1c:0e:01:d8:13:
5f:74:5d:32:54:2a:14:ad:11:c7:18:ec:85:4c:e0:
5c:7e:a5:8d:0a:36:8f:ab:ab:f8:37:d7:67:37:81:
43:44:84:e9:af:9f:6b:83:f4:88:c3:6c:f4:6c:05:
ec:6f:63:3e:27:c8:67:16:25:81:15:74:cd:fa:10:
37:07:39:8b:5b:d7:a8:d1:8d:09:21:a6:d2:48:20:
6a:b9:bf:79:d4:fc:4b:50:c7:b3:7f:04:0a:c8:64:
4e:14:4b:55:0e:c7:30:6c:a0:a5:1f:f9:de:be:e0:
ce:11:ce:6d:6d:4c:dc:be:1b:41:05:a5:76:f7:3c:
47:50:f5:b4:ce:e4:da:a6:d3:22:88:f7:0b:c3:6a:
a1:24:7e:68:ae:a7:18:4d:3d:52:61:04:3e:08:ee:
55:2b:d9:c2:c8:f7:df:1a:1a:41:ab:ab:d0:84:79:
59:22:a9:90:a9:d0:96:c8:84:f7:2d:ef:14:76:6f:
41:54:df:ba:8b:ba:9c:6b:43:a6:e1:58:e5:cd:9b:
12:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:07:F6:EF:F0:09:97:86:E3:0A:03:5B:1B:5B:90:3C:16:3F:59:7E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912D4AE/D7B2F82C134711E58655A526C4F9AE02/Ygf27_AJl4bjCgNbG1uQPBY_WX4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55928
sbgp-ipAddrBlock: critical
IPv4:
36.255.144.0/22
103.7.24.0/22
IPv6:
2403:7500::/32
Signature Algorithm: sha256WithRSAEncryption
0c:85:fe:08:80:66:6d:8b:93:d8:ff:e2:2c:ef:e9:19:75:45:
83:4d:f5:43:de:0e:14:ec:19:21:8b:bb:d7:0c:a2:8a:89:14:
3d:87:68:68:49:3d:37:1f:5e:72:da:c2:33:ca:89:23:20:ce:
ed:a4:f7:ed:21:15:2d:13:f4:ff:80:0c:45:2d:3c:8d:d8:31:
e3:35:de:a5:8e:a7:66:d3:e7:b6:a0:f2:e1:00:74:b4:ce:a9:
00:31:f3:ec:f6:fe:9f:52:98:21:7b:32:9f:69:92:e5:8b:0e:
e9:49:d4:e9:cc:88:8b:0a:6e:79:82:f1:dc:4d:f5:67:3d:77:
2f:17:cb:ad:11:b2:c8:ed:c7:9a:10:97:f2:9e:c4:6f:a4:3d:
79:4f:45:35:73:73:11:e8:88:45:5b:d8:bc:3b:6e:13:3b:bd:
f6:75:74:b9:6c:52:fd:93:f1:a4:36:dd:d3:6c:f6:d2:58:c5:
0c:fd:d3:fc:76:e9:52:02:c3:36:dd:6c:f0:d0:1f:77:d1:8c:
d6:ad:7d:45:5e:96:42:c2:2a:ad:a5:db:03:a4:69:9a:82:e3:
0b:05:88:df:2a:89:47:dd:e4:8e:7b:8a:35:c9:4b:9b:95:5a:
8e:34:c2:9f:7c:7c:fd:c1:03:08:1c:b4:4a:f1:ad:72:12:a7:
ba:6e:1a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:23:46 2026 by rpki-client