Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhQyTH_rm8iZLUocPkWehqPxjuE.cer
File: bhQyTH_rm8iZLUocPkWehqPxjuE.cer (raw, json)
Hash identifier: QDPjRjEO89hL6Y80MBsnVW3/cyGtPfTGEI+ZYxw2Y1k=
Subject key identifier: 6E:14:32:4C:7F:EB:9B:C8:99:2D:4A:1C:3E:45:9E:86:A3:F1:8E:E1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 029ECF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 04:08:19 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: IP: 45.125.240.0/22
IP: 103.253.216.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171727 (0x29ecf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 04:08:19 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A91CDC08, serialNumber=6E14324C7FEB9BC8992D4A1C3E459E86A3F18EE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b2:0d:60:66:66:23:bb:d4:36:ea:80:d3:35:
ef:fe:5a:01:72:8d:9b:a1:95:0b:27:88:73:b1:de:
54:b6:49:86:da:e7:04:a5:54:61:92:90:e7:3d:fc:
0c:98:83:68:07:a4:ba:0e:2f:86:be:4e:0b:e6:7c:
da:db:c5:1a:9d:38:e2:d3:68:82:60:e2:b8:40:d3:
92:d8:11:7b:23:31:02:3c:b3:98:48:df:c1:e9:12:
77:3b:52:3c:67:e4:2e:94:c0:c2:8d:6b:58:38:ef:
85:79:29:db:c7:9c:93:a2:7a:81:c0:b3:d4:05:ee:
dc:ee:89:90:c7:3e:48:76:87:c8:57:69:2a:b4:ce:
1f:c6:0f:4a:a8:74:af:e0:7d:b0:ff:09:e0:3a:fa:
f1:dd:2c:03:bf:ea:f3:ef:19:ed:3d:e7:36:e3:09:
fd:f7:07:ea:6a:6d:da:9d:22:71:d3:2d:5c:8b:38:
0a:09:0d:0c:1e:c7:0c:91:ba:9e:4b:45:55:72:cb:
3c:eb:ad:e1:21:17:e1:b3:be:b3:9c:79:8a:6f:51:
b0:b4:74:e0:30:24:9b:01:74:4b:9b:f3:b4:e6:74:
f8:be:52:ec:80:c6:71:21:48:33:45:bd:3a:4f:14:
bb:e6:f1:ec:54:5f:31:a3:79:fe:6a:9b:bc:09:df:
8a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:14:32:4C:7F:EB:9B:C8:99:2D:4A:1C:3E:45:9E:86:A3:F1:8E:E1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CDC08/F3E657FC001511F195D58AD4406F56BC/bhQyTH_rm8iZLUocPkWehqPxjuE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.125.240.0/22
103.253.216.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:30:fd:6d:eb:e4:ea:8e:6c:a6:82:94:94:2a:30:49:54:4d:
73:b8:ee:04:31:7a:bc:c9:6b:77:5c:49:cb:a5:8a:52:a5:51:
f5:be:6e:6f:2f:29:90:7f:71:40:fc:c2:34:21:40:03:7b:c7:
c9:25:d2:e7:33:02:3a:f9:e4:a6:6a:e5:46:6d:b2:00:67:74:
e1:c2:33:91:3a:70:9f:33:a3:1c:90:01:69:e8:bd:d4:8c:3d:
7e:c9:e4:47:ac:da:08:4a:c0:3c:1e:cc:1a:10:5d:ce:07:3b:
7a:c8:a6:c7:31:eb:ca:c3:54:0c:54:be:44:0d:84:6b:d0:43:
2c:3c:fa:ef:44:55:15:03:fe:20:c8:58:8c:81:e6:b4:b4:d5:
c4:46:ed:99:3f:76:8c:c8:af:1f:88:f4:3b:f5:b3:05:b2:40:
f0:9a:71:c1:37:58:ba:d2:04:fe:df:0c:3c:77:e0:7b:b8:3c:
30:92:35:10:46:d0:01:a2:13:e9:4b:c6:f8:43:bc:8d:c3:f0:
3f:a2:f6:ef:00:be:4a:f1:7b:90:89:54:7b:cc:68:59:d3:97:
1a:75:32:9e:bd:70:eb:e2:84:18:20:a8:95:06:4b:84:fb:14:
06:4b:df:20:be:03:04:fd:43:75:88:ee:a6:30:69:65:94:0e:
60:97:8b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:08:52 2026 by rpki-client