Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer
File: gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer (raw, json)
Hash identifier: TTI3jmc4vR/k2ZSWQFtOrwYARm39ncy2hX8/i8dWvdc=
Subject key identifier: 83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A0B6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 01 Mar 2026 12:31:31 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 9474
IP: 202.140.64.0/18
IP: 2403:fa00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172214 (0x2a0b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 1 12:31:31 2026 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A911C005, serialNumber=830DCFCB5A9AA0C7FA7D7AB9989DA2343DED2C22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4a:ca:ce:10:29:9b:ce:b3:08:d0:fd:90:1a:
cb:cc:4c:f3:92:ff:9e:ef:20:ee:c1:11:33:28:de:
d7:13:17:a8:47:5f:cb:35:d5:ea:a6:05:41:5f:09:
4c:bc:02:83:e5:92:f0:22:7b:a5:e1:7d:74:1b:df:
76:b8:fd:27:16:21:32:a3:a6:51:84:33:52:d5:f8:
ac:f6:b3:a7:b3:7b:0e:f6:d6:ef:31:d3:65:68:c3:
12:57:d9:0a:63:39:a9:6d:73:d5:4b:9f:c4:81:e4:
35:ea:32:c2:15:24:6d:ce:35:36:8d:01:cd:53:a2:
e0:d3:bb:31:b0:0e:13:26:ab:5e:19:d9:25:5b:d2:
9b:6d:9b:84:c6:15:37:db:66:19:41:86:10:6a:cc:
4e:74:88:e9:a6:16:2e:8e:4b:4e:f5:4c:bb:9a:e8:
40:47:8f:ac:92:3c:79:86:97:87:e7:d8:dc:c7:d0:
f7:e6:2e:16:38:20:c4:87:77:2a:df:3a:57:dc:84:
a7:5d:76:8a:41:36:1b:ae:76:6e:b6:de:18:5c:52:
6e:ed:f8:7a:1b:37:bf:52:19:e4:3c:9a:6c:77:ee:
5c:16:75:6e:15:1c:d2:ff:76:75:e9:0b:ea:f8:9b:
a6:ff:c2:b0:08:f1:df:76:9e:61:80:42:f9:56:39:
27:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9474
sbgp-ipAddrBlock: critical
IPv4:
202.140.64.0/18
IPv6:
2403:fa00::/32
Signature Algorithm: sha256WithRSAEncryption
7e:91:ca:69:f7:a6:36:e6:1f:40:1d:d5:61:93:82:5a:91:75:
94:7f:c3:9e:55:73:bd:39:d2:0f:a4:ad:98:60:b7:c9:c2:35:
dc:cf:4d:f0:3e:8c:77:10:bd:d0:06:f3:8e:02:54:37:f0:09:
aa:84:9b:db:00:63:b0:e2:6b:5e:2c:96:cf:b6:d4:fb:0c:de:
77:09:c3:01:9c:ac:b2:2e:ea:2c:18:07:8c:69:c7:85:c5:2a:
38:c4:4d:f7:37:ab:9b:45:fd:ef:a1:5d:67:11:25:d1:22:51:
2f:45:27:d0:65:56:6b:89:77:61:eb:ee:17:bd:80:2f:25:e9:
4a:31:b7:fa:bf:c4:da:0a:85:cb:98:41:9b:b1:05:16:58:2f:
cf:ea:5a:4b:76:71:5a:ca:d4:01:fc:e7:98:c5:45:df:f2:c1:
26:f2:23:22:6e:bd:65:d0:b6:c0:f0:ec:5a:49:f6:be:ed:ba:
24:0d:99:3e:69:c7:4a:7e:0a:44:1b:38:aa:ad:5e:d9:2b:7d:
b1:a1:d3:36:ef:38:1d:a6:93:8a:e0:96:46:f0:d7:25:e0:b3:
47:84:dc:f0:03:dd:30:d7:0a:71:f0:37:33:0e:69:ae:03:8b:
e4:e6:af:32:31:b5:49:fd:6b:30:d6:49:4f:dc:59:30:c7:8e:
a0:4b:a1:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:23:46 2026 by rpki-client