Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLRm2Zm4G_ldb5XWwSqzycdbQtE.cer
File: wLRm2Zm4G_ldb5XWwSqzycdbQtE.cer (raw, json)
Hash identifier: /lhm4sBC0mxpiiBT8Zv9kuderjkEmLoIJa1akwm5C+E=
Subject key identifier: C0:B4:66:D9:99:B8:1B:F9:5D:6F:95:D6:C1:2A:B3:C9:C7:5B:42:D1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B99B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9134309/DE36345C3EE311F0B9398442C4F9AE02/wLRm2Zm4G_ldb5XWwSqzycdbQtE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9134309/DE36345C3EE311F0B9398442C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Jun 2026 12:49:33 +0000
Certificate not after: Thu 01 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 153879
IP: 2001:df5:87c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178587 (0x2b99b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 2 12:49:33 2026 GMT
Not After : Oct 1 00:00:00 2026 GMT
Subject: CN=A9134309, serialNumber=C0B466D999B81BF95D6F95D6C12AB3C9C75B42D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ea:9c:5d:e2:a6:80:3f:b2:0d:ad:13:24:56:
c1:10:af:5d:53:86:33:3d:e6:f2:9b:14:56:c8:dc:
f3:1d:84:22:a0:ae:d9:f2:79:c7:95:ac:3b:2e:bc:
f8:9b:f3:29:1c:d6:8d:d7:d1:ae:77:8e:76:4c:63:
f7:4d:6c:9c:e5:cf:9b:a2:fa:e6:7a:53:8a:19:71:
8d:af:37:f8:87:57:a7:91:2a:46:b1:7c:39:1a:a8:
a0:50:5a:6c:47:39:8e:83:b1:86:12:b5:5a:5b:4b:
ea:30:0b:82:b3:8a:7f:1c:3a:03:dd:cc:7f:e0:e2:
fc:38:55:d4:a8:fd:8b:08:67:99:88:10:4f:e9:00:
37:40:39:73:ad:f3:81:9c:1b:6e:40:9c:0f:8b:d2:
b8:b9:71:c5:e9:d5:e2:3d:9d:11:13:9e:0d:22:49:
c7:a8:de:1a:0c:ea:76:44:38:6b:bc:4e:61:77:71:
f1:10:16:53:b4:c0:1e:25:fc:20:c9:d7:4f:e0:80:
6d:bb:56:e7:bc:09:d5:b9:bf:3c:86:ba:7f:eb:cf:
35:2e:a2:ed:54:1b:f6:c2:b6:f0:7c:81:49:b3:1a:
7d:27:f7:0d:5f:5b:4d:f1:6e:94:b1:82:b3:24:c4:
1a:86:64:16:ec:0a:00:ad:58:1b:f1:a7:56:e0:a8:
55:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B4:66:D9:99:B8:1B:F9:5D:6F:95:D6:C1:2A:B3:C9:C7:5B:42:D1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9134309/DE36345C3EE311F0B9398442C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9134309/DE36345C3EE311F0B9398442C4F9AE02/wLRm2Zm4G_ldb5XWwSqzycdbQtE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153879
sbgp-ipAddrBlock: critical
IPv6:
2001:df5:87c0::/48
Signature Algorithm: sha256WithRSAEncryption
c9:c0:02:aa:fe:ae:98:74:6b:98:c4:ba:a3:0b:16:20:12:25:
d0:84:1b:87:0c:4e:33:7b:8b:78:6e:18:d8:aa:c7:6a:71:f6:
6c:25:f1:7a:7c:46:bb:2d:fd:2a:5f:30:77:1a:4a:53:8e:2b:
2c:10:01:c1:f6:67:60:b4:3c:46:bb:b2:fe:e5:fb:c2:e9:54:
b1:84:53:e1:11:14:23:16:23:f8:f0:ce:7b:34:8d:d3:5c:d7:
ae:0b:df:ec:2e:12:c9:e2:a7:59:5f:e1:c8:28:9d:b9:5d:40:
54:c4:3c:5d:96:f9:0b:a0:65:29:44:3f:69:3a:58:17:7d:31:
bb:67:d9:83:5f:05:54:dc:c9:9f:e1:1b:0a:5d:7b:0f:84:93:
18:1a:dd:bf:ae:f5:ae:c3:01:d3:58:4e:62:bd:c0:23:ff:5c:
1b:84:df:42:40:73:9d:a8:b8:75:a0:dc:39:f8:da:68:7a:75:
20:52:ee:9d:fe:34:3f:2e:39:a9:b9:00:ad:7f:92:f5:ef:e4:
bf:8f:9f:d7:2a:1a:10:66:1c:d3:be:6f:3f:1f:36:0e:b0:61:
7f:77:64:af:e8:c8:71:6f:bd:03:2c:36:6b:3e:46:90:61:ba:
78:68:a9:76:de:4b:ed:b7:5f:7d:8b:c0:2c:f9:f9:f7:ae:d3:
b3:6a:cc:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:12:13 2026 by rpki-client