Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer
File: rYW34Ys6FvU-kpOKM07Guz64tjA.cer (raw, json)
Hash identifier: 1n3nKubWoXLNzcoHS4urB0xogTYG9TYv1J0cbLs+Tws=
Subject key identifier: AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A342
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Mar 2026 12:52:53 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: IP: 103.73.186.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 Apr 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172866 (0x2a342)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 9 12:52:53 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A913FBB2, serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a5:37:50:33:f1:45:6d:2c:4b:37:d9:45:e2:
59:92:a9:2d:82:85:55:82:70:b8:f4:9c:63:ee:32:
15:f8:0f:b9:62:1e:b5:4c:41:e4:d6:4b:89:d1:cc:
0b:c6:49:d5:24:b0:cb:d6:d5:94:4b:71:ad:b4:40:
d6:44:26:36:e0:59:90:b1:8f:f2:51:58:24:03:01:
70:fd:25:a8:c8:64:3f:15:e4:79:6b:a4:42:4a:7b:
2d:f1:ee:60:50:4e:17:ad:cf:ea:dc:e2:d3:57:bc:
75:ee:85:8c:3e:f4:57:1b:65:76:5b:78:d9:3e:31:
83:85:b7:53:8d:9e:b3:18:ef:12:7e:a7:90:f7:61:
f1:1a:d5:46:18:08:ed:23:97:39:1c:71:a8:72:11:
e8:c4:cf:8a:e2:b2:a0:48:2b:64:6b:d9:aa:c4:fc:
2d:08:5a:99:bb:43:3e:47:6f:fe:85:ef:55:5d:93:
4d:43:fb:f4:65:71:18:30:8a:f4:e0:04:88:b1:61:
ac:45:64:41:99:15:30:9e:7d:05:81:d4:7f:0e:71:
c4:a1:f9:e2:b5:59:60:82:c0:9c:b2:63:82:cc:13:
9e:28:ef:7e:1a:34:44:2c:12:c1:34:f2:09:d9:06:
b2:b5:15:27:73:a0:9c:86:b3:2c:83:0c:ef:51:81:
f2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.73.186.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:a3:ad:5d:b8:2a:29:cc:f4:c3:d7:35:74:5a:c4:c9:9f:6a:
2a:ec:2d:6a:b9:92:f3:1e:bb:fb:3a:4d:f9:36:e9:81:6d:ee:
a1:6c:dc:10:dc:af:3c:39:be:fa:6c:03:94:7e:9e:a1:4e:9f:
47:98:16:e0:eb:70:ba:ba:41:48:c4:f9:93:f9:b0:d4:20:e2:
2c:5d:f0:9b:5b:c6:25:35:3b:c6:11:dc:45:45:45:c1:f1:00:
43:f0:78:e4:85:a1:3a:0b:e8:22:c7:1e:ec:e8:18:47:04:cc:
7e:26:aa:62:c5:63:96:e9:03:d5:4f:3b:21:0c:49:83:55:8d:
09:5e:80:74:fe:c6:d5:b7:ee:a5:46:9e:29:e5:d7:fb:c0:b4:
bb:5b:20:f1:77:ec:30:29:89:26:d5:44:4d:e8:2c:7e:4e:1c:
90:b1:4f:fd:08:f5:ed:e7:46:5a:25:15:1c:4b:72:0f:e1:94:
93:a1:a2:fd:c6:a7:ca:25:01:c6:6d:63:c8:69:a7:39:26:6d:
b1:13:60:a8:58:8d:3e:b7:48:1b:69:3f:ea:7f:fc:32:6d:74:
04:b9:6a:94:94:d2:25:ac:e3:6d:c0:eb:a4:2a:86:16:9b:3d:
cd:89:65:ff:3c:05:70:41:6c:78:09:12:77:89:75:f5:59:cb:
8d:14:40:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:52:53 2026 by rpki-client