Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRT6pSOY594ly7jXeUObHjA3Rw4.cer
File: tRT6pSOY594ly7jXeUObHjA3Rw4.cer (raw, json)
Hash identifier: yUHuYTYB98CoGRucR1YAR4ThJ7Dwueq7dAZRXt4MBPk=
Subject key identifier: B5:14:FA:A5:23:98:E7:DE:25:CB:B8:D7:79:43:9B:1E:30:37:47:0E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A354
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919874A/F61D89C6EAD311EFB1C4CC55C4F9AE02/tRT6pSOY594ly7jXeUObHjA3Rw4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919874A/F61D89C6EAD311EFB1C4CC55C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Mar 2026 13:50:13 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: AS: 153488
IP: 2401:f020::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 04 Apr 2026 06:24:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172884 (0x2a354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 9 13:50:13 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A919874A, serialNumber=B514FAA52398E7DE25CBB8D779439B1E3037470E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:17:36:bf:cb:e9:0b:a1:b9:93:72:90:e4:a9:
ef:fe:fd:1e:70:ef:f6:a0:ac:40:2a:68:53:39:d2:
d9:ae:5f:68:9b:cc:40:50:d3:eb:0c:2d:32:76:c5:
db:99:db:39:3e:d9:5f:8f:2a:06:50:84:31:33:ff:
af:e3:61:ce:3b:74:1d:e5:23:12:ca:07:d4:14:6c:
5f:41:71:a6:83:9b:c2:01:8a:e1:2c:16:f8:d8:de:
96:b6:08:32:ef:30:cb:e0:f0:28:74:56:9f:37:3b:
be:14:7f:54:d2:53:bb:a4:64:51:6a:5b:dd:96:67:
1d:30:16:7c:ea:86:e3:8f:0b:4b:70:9f:88:6c:34:
0c:3e:c1:cc:b2:bb:08:0b:b3:e2:cd:90:6f:7a:fd:
45:e0:98:08:8e:1a:eb:15:b4:97:16:80:c9:e2:2e:
20:7d:d7:43:fa:bd:e7:43:43:a0:4b:f5:9f:a3:28:
c8:3b:62:ce:52:73:c2:3a:c3:4a:b3:3f:92:b5:91:
0b:39:44:0f:c2:02:a8:61:af:1e:73:59:ca:25:1f:
58:81:07:36:02:59:f1:e7:61:76:e3:4c:fe:32:67:
1a:39:9d:f0:be:b6:81:4a:26:96:f7:fe:24:52:db:
0e:4c:b1:da:c8:4b:94:5c:b6:88:22:b0:b9:75:0e:
78:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:14:FA:A5:23:98:E7:DE:25:CB:B8:D7:79:43:9B:1E:30:37:47:0E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919874A/F61D89C6EAD311EFB1C4CC55C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919874A/F61D89C6EAD311EFB1C4CC55C4F9AE02/tRT6pSOY594ly7jXeUObHjA3Rw4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153488
sbgp-ipAddrBlock: critical
IPv6:
2401:f020::/32
Signature Algorithm: sha256WithRSAEncryption
87:c9:0e:21:f4:c4:bd:59:b8:e5:9a:5a:56:2b:7a:e1:32:42:
9b:19:76:6f:07:53:0f:55:5d:7c:86:93:6f:cb:87:db:be:b6:
2c:fc:df:c3:50:fd:70:7b:4a:a6:7c:2f:c0:83:4f:e4:2f:9f:
e1:b5:0e:c8:f4:96:03:d4:5a:f1:7a:8c:d6:23:53:33:f5:ed:
d9:5f:f6:c8:a2:e7:0f:1e:46:a2:54:bb:0f:52:62:92:e5:2d:
88:3a:4e:93:38:0a:a2:e5:be:d1:2a:a2:c0:62:57:e0:37:4d:
68:e7:95:c0:8d:3e:5a:d9:5e:24:e2:c3:d6:28:95:e8:bf:dd:
dc:c4:a1:d5:f9:3d:02:cb:63:8a:4f:62:fe:31:66:5f:20:40:
18:d5:fd:78:33:98:4e:61:15:b4:cb:09:35:b6:49:a4:08:7a:
04:69:f6:64:ce:b7:ab:4a:18:08:cb:ed:c9:df:02:d5:3c:d2:
cb:7d:4a:a6:b5:4c:22:37:a1:94:e5:13:3b:7f:bb:85:28:40:
cb:3f:68:d3:14:f7:5f:ae:4c:61:e4:f6:e1:15:3f:bc:9b:33:
86:b2:e9:60:73:d3:88:43:97:05:fd:a2:a5:d2:15:7d:47:f0:
a7:82:2f:ad:ec:70:c5:b2:0d:64:70:35:86:9d:80:bc:1b:a4:
a0:d3:dc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:45:15 2026 by rpki-client