Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQyucO4FJzcpUQC_DPAR6zIEYrc.cer
File: iQyucO4FJzcpUQC_DPAR6zIEYrc.cer (raw, json)
Hash identifier: kb1Vt32TVjPWs/FqdonxulZ1DxxOgah66PXMf5DTONk=
Subject key identifier: 89:0C:AE:70:EE:05:27:37:29:51:00:BF:0C:F0:11:EB:32:04:62:B7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0299DC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91801AC/B075028A12CA11F1BCBA005E063D8C67/iQyucO4FJzcpUQC_DPAR6zIEYrc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91801AC/B075028A12CA11F1BCBA005E063D8C67/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:46:02 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 203.34.156.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 18:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170460 (0x299dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:46:02 2026 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91801AC, serialNumber=890CAE70EE052737295100BF0CF011EB320462B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a9:e3:4d:b4:73:dd:e5:a0:e0:7b:c8:5b:24:
d3:c1:62:b1:64:01:de:c3:b9:05:91:eb:b5:ef:3c:
07:19:28:5c:42:53:b0:24:08:7f:8f:b7:13:bd:12:
6f:66:90:44:28:15:2e:55:25:f0:45:d4:a3:58:d5:
d3:1a:4c:1c:01:2a:6c:63:5e:f5:a4:91:b1:c4:ee:
50:a7:0b:e1:0a:45:7c:cf:ae:5b:c4:90:99:bf:1c:
b4:0c:18:e3:ee:41:73:51:01:58:d6:4f:99:42:b6:
71:ce:69:36:9e:a7:4b:e6:5c:1f:b8:3a:fe:2f:c4:
6d:84:d9:35:69:4f:8e:75:b3:0c:42:24:1e:d3:67:
38:66:0c:ed:78:60:40:db:84:94:90:e7:ad:cf:97:
bd:0c:08:f2:45:1c:9a:c3:6c:91:3c:cc:86:ea:de:
89:09:73:7c:08:67:33:29:77:fd:c7:93:12:d1:45:
3f:87:8b:1d:98:e2:e8:5d:99:32:6b:3a:5f:08:9c:
25:db:18:eb:a8:cd:53:9c:0d:61:e8:4d:6f:0e:1a:
3b:84:69:b6:2b:a2:f9:17:ba:37:b8:7f:20:85:a1:
8c:0c:13:d4:58:da:60:f9:4e:d8:d8:75:52:d3:57:
21:51:2f:f9:17:c5:4c:84:3a:68:1d:37:78:89:ee:
b5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:0C:AE:70:EE:05:27:37:29:51:00:BF:0C:F0:11:EB:32:04:62:B7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91801AC/B075028A12CA11F1BCBA005E063D8C67/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91801AC/B075028A12CA11F1BCBA005E063D8C67/iQyucO4FJzcpUQC_DPAR6zIEYrc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.34.156.0/22
Signature Algorithm: sha256WithRSAEncryption
38:47:fe:a0:6a:78:de:5f:70:ee:79:a2:23:93:27:c7:2d:03:
0d:6c:a1:ca:b0:23:4a:94:b8:f2:fb:e6:69:b6:52:05:4a:42:
e9:7a:4e:29:3a:d5:a0:06:98:7c:7f:c6:41:86:c3:f7:69:4a:
13:41:66:b2:9b:90:e7:54:b5:13:6f:0a:ce:a9:4a:7c:58:f9:
14:dd:f9:f7:33:40:c2:7e:73:67:1c:49:9c:7d:ea:d9:9c:b8:
76:f9:1e:db:6e:a2:54:2a:d5:aa:9b:d1:f6:99:47:82:5e:a7:
94:1d:46:1a:20:ed:0b:68:05:7e:58:ea:2d:54:b4:ce:76:4b:
c2:0f:27:02:66:4f:51:9e:6d:de:24:27:60:9f:01:4d:de:5a:
3b:b9:0e:1b:9e:b1:db:6b:a3:57:2b:87:10:12:4a:14:39:46:
df:aa:f7:ad:6e:dc:a1:a0:c3:14:67:9b:72:41:a6:f8:b0:b6:
72:0a:34:06:87:0b:bc:17:53:a1:f7:68:ef:a8:06:dd:76:c8:
63:87:47:cb:15:88:64:7f:88:b7:e9:e6:7b:fb:28:51:88:93:
28:2a:27:a7:f0:38:4d:4d:0a:17:8a:38:d5:b4:37:ea:ab:da:
1f:69:c3:e6:ba:7e:73:c4:41:3b:b6:1b:4f:a6:a5:c7:d8:3a:
4f:42:65:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 22:32:29 2026 by rpki-client