Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer
File: yAlz0WzMyeGME6aIAz3E0PDmHEo.cer (raw, json)
Hash identifier: 1KVwGFaHsXxlp11Z9yvXHs8oIuKb0NBdz7mg/WtRP00=
Subject key identifier: C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02AD84
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 20 Apr 2026 13:16:47 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 203.56.195.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 19:57:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175492 (0x2ad84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 20 13:16:47 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A91657FE, serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f3:6f:b9:0c:db:1b:e7:3f:c5:12:4a:48:20:
7d:2b:12:c1:0f:f9:9d:30:12:a6:27:e6:ff:1b:18:
04:2d:09:c4:0b:37:0d:f6:88:14:a4:a1:7e:0a:3f:
b8:40:26:ef:5f:ed:80:0b:96:cc:ac:31:c5:dc:c2:
5a:9e:8f:e8:d1:79:bf:b7:0f:17:7d:c3:fc:01:99:
d4:09:5f:1a:66:66:d8:eb:4c:09:d0:39:b6:53:88:
12:47:11:ea:33:35:7e:8e:74:66:75:3b:07:c2:e8:
4c:0a:75:2f:7f:ee:f8:e5:33:ff:8a:54:20:0d:4d:
c7:02:64:61:54:05:de:e0:d3:2c:0e:ac:d0:e3:9c:
22:42:58:2f:7d:29:4a:bc:30:8c:65:91:a9:4b:59:
b3:e3:7e:34:1c:36:09:eb:30:a8:e3:e4:97:6a:21:
e7:f1:cb:fa:d1:ed:bc:f5:ba:e8:d5:e5:de:5a:1a:
32:dd:3e:17:8f:a4:f1:9b:8c:a2:10:ff:9a:cc:98:
32:e6:93:a3:10:56:c7:c8:e5:d9:cc:f4:47:b5:d4:
cc:52:ae:1d:bc:e2:5b:12:b7:fb:61:36:79:67:aa:
91:83:a8:dd:19:8e:85:90:85:18:fd:9b:dd:8a:2f:
6e:fe:4b:98:ca:f8:95:fd:da:09:27:23:01:6a:be:
e7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.56.195.0/24
Signature Algorithm: sha256WithRSAEncryption
96:45:b4:bf:dd:f3:6c:21:89:0f:c9:cd:2e:6b:a7:75:96:f3:
03:36:5d:41:63:87:0a:2b:3a:7d:e9:0e:74:c1:0d:53:d7:1b:
58:2b:ee:2b:ed:82:85:62:e4:38:d8:34:9d:00:2a:1e:a7:64:
c5:58:a8:ea:b5:3c:f5:a2:e1:c2:1f:40:1a:a2:e6:4d:19:d6:
9f:53:3c:41:bd:1d:3a:a3:cd:06:b8:79:24:a3:c6:fc:24:be:
ac:6f:61:79:59:97:b6:ab:01:00:91:ef:c0:8c:77:b5:91:c6:
b6:15:a2:92:00:8d:0b:25:9d:b3:48:e2:9f:8e:4a:12:8d:6f:
4e:c2:b9:fd:30:2f:ad:35:b0:c6:a7:42:03:1b:b1:f6:72:23:
09:9f:4a:a4:72:74:e9:96:fc:99:cd:0f:9a:1f:fe:fe:b7:9d:
8f:78:c4:4b:96:40:52:2f:dd:e9:4d:6a:92:71:52:bc:62:2d:
f3:70:c1:48:dc:f0:3e:00:c7:f1:c0:b5:9e:e2:8a:50:fb:57:
15:1f:a9:38:e4:ce:ce:74:b3:02:3b:74:ec:ba:8c:a0:20:87:
f6:61:d2:f3:d3:6d:b2:fe:0f:20:69:97:c6:3e:0d:34:a9:a7:
a2:69:d5:0c:f2:19:39:55:9c:13:b3:96:f3:8b:21:83:e7:7d:
45:ba:63:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:39:23 2026 by rpki-client