Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer
File: yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer (raw, json)
Hash identifier: KUZVrqiYmdHZhnwc6BJJIFyWqI5EDxVu3dcaJuBRFPY=
Subject key identifier: C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02976F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:34:35 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 137474
IP: 202.93.248.0/22
IP: 2001:df4:c240::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 15:22:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169839 (0x2976f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:34:35 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A917E1FA, serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:db:69:a2:35:bc:ba:e9:e1:69:e3:2e:e8:a4:
10:f9:b0:0c:e8:71:f3:3c:50:1e:c9:a3:63:a7:d8:
d0:de:dd:f0:7c:17:fb:76:15:57:15:e0:ea:90:07:
30:5b:6f:52:0f:7f:26:ca:37:08:c2:df:ac:11:bd:
9e:67:57:70:36:b9:c8:e6:da:7d:1f:e5:ca:19:45:
cb:e5:07:16:0b:42:65:8c:32:f3:dc:6d:d1:8c:c0:
30:84:49:d1:49:00:e1:a4:63:e4:16:29:15:ad:c5:
a1:26:b0:97:94:89:72:23:8d:0d:60:b8:15:84:a4:
7c:e8:de:64:5a:11:cf:eb:43:8d:93:62:da:2f:2f:
1e:17:39:af:92:41:a1:48:91:cc:fa:8d:7a:84:62:
d7:02:f6:71:98:4b:1f:64:63:62:5b:f3:e0:a6:aa:
de:a4:9e:d1:11:8a:6a:fd:08:ea:5c:a8:90:99:14:
97:15:0a:3b:9a:f1:52:4e:40:8d:7b:d1:d2:46:eb:
af:29:18:34:6b:59:56:bf:63:86:12:49:61:24:e0:
44:49:bc:92:08:c6:ef:66:60:22:14:2d:ff:1e:cb:
7b:c1:26:93:c1:81:f8:cf:3c:6b:da:39:0e:05:c9:
a4:68:c0:63:5a:1e:6b:7b:a5:5e:2d:88:60:e7:e2:
0a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137474
sbgp-ipAddrBlock: critical
IPv4:
202.93.248.0/22
IPv6:
2001:df4:c240::/48
Signature Algorithm: sha256WithRSAEncryption
15:c7:28:c1:fe:f4:c2:30:94:54:e5:67:bc:db:cc:50:70:d8:
24:04:68:c6:66:7c:4d:c0:e5:cd:92:15:99:96:0f:d8:a9:b7:
ec:06:eb:88:3f:cb:1a:36:f1:d4:ef:d4:b0:57:45:5d:b9:92:
db:46:f9:46:c8:3c:fd:62:e8:9c:f9:a4:c3:6c:1d:e8:57:cb:
6f:80:a4:2b:7d:35:35:98:eb:cd:8c:7f:b5:33:4a:07:d8:c6:
7d:12:6b:59:22:1c:49:32:48:44:1d:b4:d5:d8:92:32:59:30:
cb:09:a1:20:88:a4:5e:81:d4:7b:db:20:60:d3:eb:7a:69:49:
4e:c0:05:f5:d4:8f:6c:5e:ae:97:1a:da:60:48:88:44:7e:32:
21:c0:7e:d9:36:90:f6:4a:f6:5f:aa:6e:8f:4d:20:7f:eb:72:
a3:e1:50:df:97:8f:45:93:e6:f0:fa:59:1d:7c:02:b0:29:32:
a6:89:5b:98:0b:4d:d1:1d:4c:1b:a9:81:e2:1e:7a:58:4e:8c:
29:0c:f7:68:d8:5b:d8:09:23:ea:c6:42:0f:6b:eb:8a:52:da:
6e:07:6b:4b:5b:62:4f:03:97:23:a2:8b:12:90:8e:ea:d1:91:
f0:4f:93:96:83:24:81:0e:1e:3b:ef:ee:dc:b1:cc:d4:b0:fc:
33:21:df:b6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Mar 2 18:09:31 2026 by rpki-client