Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y8QELC5YMug5UaBUZeiB1qfd0CI.cer
File: Y8QELC5YMug5UaBUZeiB1qfd0CI.cer (raw, json)
Hash identifier: iceSY+6fcRCGkRjQylK27EztJfPR8LypuJ7B2MVZUP0=
Subject key identifier: 63:C4:04:2C:2E:58:32:E8:39:51:A0:54:65:E8:81:D6:A7:DD:D0:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A3D5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9146039/840752F21D5611F19653F658233D8C67/Y8QELC5YMug5UaBUZeiB1qfd0CI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9146039/840752F21D5611F19653F658233D8C67/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Mar 2026 14:28:09 +0000
Certificate not after: Sun 31 Jan 2027 00:00:00 +0000
Subordinate resources: AS: 152741
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 Apr 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173013 (0x2a3d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 11 14:28:09 2026 GMT
Not After : Jan 31 00:00:00 2027 GMT
Subject: CN=A9146039, serialNumber=63C4042C2E5832E83951A05465E881D6A7DDD022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a7:36:07:94:96:c4:e5:cf:06:8a:f5:d6:48:
bd:ca:87:65:69:3f:7d:ae:b1:ac:5a:fd:88:00:c1:
7f:06:92:a0:e1:94:8a:45:48:78:c6:81:05:49:78:
e8:5b:72:1a:df:3e:d7:6f:d2:3a:9c:6b:c9:96:21:
27:12:0b:fd:db:c1:18:39:d2:95:94:fc:00:f9:87:
98:18:d5:1f:a3:a2:c4:90:2d:9d:5f:7f:b1:48:1c:
18:58:71:50:b5:c2:dc:33:eb:7a:f8:0c:8e:c1:18:
a8:35:65:77:d7:64:cd:30:e4:98:15:0c:4c:73:51:
b3:4e:f0:c6:bd:4b:54:19:bc:fc:07:66:b8:55:e9:
1d:75:2e:fd:cf:90:fc:7a:9b:df:01:ed:df:31:2f:
70:11:24:fb:60:88:46:6d:0d:d0:ca:9e:a5:8e:68:
5c:98:fb:7c:3c:fd:cf:83:c1:b1:e4:94:03:19:93:
ea:5c:ed:34:4b:cc:b7:2c:1a:0f:5e:79:7f:0c:37:
f2:06:be:09:4b:63:69:b0:26:76:c2:9d:ab:7e:91:
05:15:5c:36:48:3d:b0:4a:a0:40:8d:ea:c0:2b:88:
06:ca:6e:9e:55:4f:e6:1a:c8:f4:3a:8a:5b:f2:8b:
bb:4d:65:4e:a9:9f:ee:49:6d:ff:85:9b:6c:0c:23:
58:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C4:04:2C:2E:58:32:E8:39:51:A0:54:65:E8:81:D6:A7:DD:D0:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9146039/840752F21D5611F19653F658233D8C67/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9146039/840752F21D5611F19653F658233D8C67/Y8QELC5YMug5UaBUZeiB1qfd0CI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152741
Signature Algorithm: sha256WithRSAEncryption
a8:71:96:bd:8f:43:42:4c:8d:fb:16:c4:96:5d:c6:c7:85:c0:
b3:ee:75:a3:10:d4:dd:39:af:97:8a:99:55:55:17:3f:43:4b:
c5:9c:61:76:4a:8b:e9:18:77:26:88:58:0a:c9:9d:49:d1:bd:
5f:0c:6e:2b:97:6d:1c:72:6f:81:83:f2:90:61:43:9d:b4:d3:
2b:ad:a3:2a:b0:9e:24:30:ff:1a:84:26:e4:bc:e1:b4:71:a3:
79:27:27:ba:96:7d:66:db:1d:51:96:de:2e:85:4e:31:28:b3:
97:90:c2:39:ad:3a:63:7b:60:f9:2d:2f:8c:75:e1:0f:4d:64:
f2:cf:74:f3:12:22:7c:7d:36:4e:3e:59:cf:a6:de:2c:01:3b:
d9:2c:2d:0b:ae:af:d3:2e:57:02:42:2a:c1:b4:ee:10:f1:db:
37:09:ba:87:90:d1:a6:1c:98:11:eb:bc:01:38:25:9f:6d:ac:
17:9c:d4:83:3f:ad:b9:c5:e7:bd:80:59:ca:5e:f0:fa:8a:d8:
46:13:c9:41:e4:2b:92:b7:18:e5:22:16:cf:ef:a4:24:8f:89:
ff:d9:df:16:4d:21:d7:aa:2b:6c:cc:cd:58:9c:5b:43:8f:39:
1d:29:cb:4b:ca:12:06:2c:c5:bf:95:ad:8b:2f:bc:a1:05:cf:
32:5d:fd:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 22:54:54 2026 by rpki-client