Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKBb-WKVthwuROndPExIxFm56Vw.cer
File: rKBb-WKVthwuROndPExIxFm56Vw.cer (raw, json)
Hash identifier: Cw27HRDYlMm24RDR/DrnNpnzhkp6GTlQ7DrqJRuj0Cg=
Subject key identifier: AC:A0:5B:F9:62:95:B6:1C:2E:44:E9:DD:3C:4C:48:C4:59:B9:E9:5C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A4B9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91547EC/2E65979687DD11F0B74CFE76C4F9AE02/rKBb-WKVthwuROndPExIxFm56Vw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91547EC/2E65979687DD11F0B74CFE76C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 17 Mar 2026 06:45:55 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 137866
IP: 2001:df0:f1::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 04:30:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173241 (0x2a4b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 17 06:45:55 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91547EC, serialNumber=ACA05BF96295B61C2E44E9DD3C4C48C459B9E95C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cc:80:88:ac:30:0f:47:4e:7d:e7:58:b5:84:
06:01:12:c2:11:ee:94:08:7c:16:64:34:4f:96:51:
95:f7:d1:a0:b7:69:dd:f4:5a:b9:b3:33:b5:79:e3:
6c:34:b3:45:c1:0a:b1:1a:d5:ca:c4:f7:6f:ce:01:
a4:79:6e:7a:d3:87:f5:23:e4:42:15:a5:11:1e:a3:
16:07:fe:be:b0:26:1b:f9:5a:c3:7c:49:78:c8:91:
d8:f9:7b:79:0b:65:ba:e8:d8:04:e5:09:71:70:d7:
41:89:8b:b0:c0:9d:2a:d3:ce:aa:2f:e7:14:f5:c7:
17:fb:13:d5:90:4f:d1:bb:e7:4f:98:08:75:a0:66:
4f:78:c2:7a:e7:41:18:5d:a4:56:c7:c0:9f:60:61:
01:da:d7:d2:b4:a9:c0:f1:a7:e8:77:b4:81:97:f9:
e1:0a:ff:7c:33:9c:b9:39:58:b6:25:f5:b9:a2:04:
d6:f0:c0:92:0b:91:11:7b:5b:d1:16:bf:af:2b:bd:
ed:a5:0c:85:4b:d0:fb:09:92:fb:e8:f4:4d:bc:95:
56:47:74:db:45:13:dc:9c:ca:12:c9:12:e0:74:f0:
28:a0:39:74:4c:cb:7b:43:53:2e:ba:ad:c1:4e:c4:
01:eb:27:de:b8:89:f6:c8:08:b9:ad:04:26:2e:e1:
c7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A0:5B:F9:62:95:B6:1C:2E:44:E9:DD:3C:4C:48:C4:59:B9:E9:5C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91547EC/2E65979687DD11F0B74CFE76C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91547EC/2E65979687DD11F0B74CFE76C4F9AE02/rKBb-WKVthwuROndPExIxFm56Vw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137866
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:f1::/48
Signature Algorithm: sha256WithRSAEncryption
a6:ef:ad:79:a4:c3:a5:06:26:86:8a:8a:dc:6d:ca:b0:c7:8d:
e1:7d:c8:5c:d4:1e:21:cb:ab:99:7b:2c:12:cb:7c:f4:d7:d9:
b6:ca:88:c0:df:84:6c:0b:7a:19:d2:8b:87:fc:21:78:06:66:
b1:83:08:07:46:79:ee:b3:9a:1a:aa:01:6c:d7:d5:a5:84:35:
23:b4:a9:9f:20:e1:2a:fe:36:54:b2:5d:e0:44:3c:25:c5:c2:
fb:df:90:22:bf:68:5f:f8:a7:b9:3a:d8:65:05:e0:fe:72:79:
9e:92:a9:32:32:14:9e:24:4d:f0:8c:24:90:26:2a:96:d7:de:
ac:7c:38:99:07:73:48:25:f6:9a:09:b9:52:fa:db:1a:88:03:
b4:47:52:34:29:00:0e:89:ec:b2:bd:f8:2a:75:c2:c8:7a:e3:
31:c5:85:fb:e3:7d:57:8c:0c:4a:5b:f6:f7:f4:b6:54:71:24:
54:ea:9c:c7:20:04:85:40:14:f6:2c:ab:15:45:0e:ad:db:cd:
0f:da:3b:99:f2:33:f1:a9:88:26:83:84:f3:d2:66:24:66:90:
24:98:ea:62:bb:59:8e:ca:e6:ef:fc:82:d4:f4:41:b2:7c:27:
ff:00:ef:22:15:f1:e5:b9:ad:e3:8d:1c:9a:a0:03:2c:d0:1f:
25:55:57:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:25:01 2026 by rpki-client