Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rDKuLAwq1FPHzruPsoyhI5ov5aU.cer
File: rDKuLAwq1FPHzruPsoyhI5ov5aU.cer (raw, json)
Hash identifier: vwW2JkjQwJ4QQljlW2L+JICMSOPTrcmXLk2wCvR9UOE=
Subject key identifier: AC:32:AE:2C:0C:2A:D4:53:C7:CE:BB:8F:B2:8C:A1:23:9A:2F:E5:A5
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 5328
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FDC31/2CD3D1924A3111F19BD3103690833773/rDKuLAwq1FPHzruPsoyhI5ov5aU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FDC31/2CD3D1924A3111F19BD3103690833773/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 07 May 2026 16:24:13 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: IP: 151.158.208.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 14:50:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21288 (0x5328)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: May 7 16:24:13 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91FDC31, serialNumber=AC32AE2C0C2AD453C7CEBB8FB28CA1239A2FE5A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:41:08:48:c4:78:1c:94:a1:6e:ad:0d:63:ba:
cf:07:5a:c0:11:1a:0c:0d:d4:64:d2:7a:1c:f5:ac:
12:76:c1:1f:f0:b0:64:20:1d:db:57:95:1d:89:18:
63:44:09:69:da:9e:34:6a:03:f6:42:2d:b5:11:65:
bd:1c:3f:79:82:2b:b6:ff:ec:ef:e3:27:b5:df:d2:
26:32:34:3a:ad:e3:3e:7a:13:70:cc:26:7d:7d:ec:
fe:5c:4b:5e:6e:4e:2c:1b:10:65:bd:5e:20:a6:ff:
c2:f6:45:49:70:3e:75:8c:aa:2f:49:47:8c:38:97:
64:cc:30:17:9f:e7:ad:fd:e6:de:d6:24:f5:9f:0c:
f9:7e:86:3a:37:0a:fd:63:fe:a6:dc:57:a0:88:e8:
65:01:ea:b5:ba:f3:e3:78:1b:0a:40:03:a0:85:36:
6d:b7:9a:54:eb:a1:90:5c:29:71:ee:79:c6:ac:69:
ba:d6:7f:68:8f:a1:3e:19:12:c9:ed:c8:0a:41:c7:
7f:f4:d4:d7:43:02:dc:9b:d3:ac:e3:a6:5f:35:db:
2f:e4:12:af:b2:2f:26:6f:3a:ce:3d:f3:6d:e4:41:
3c:ae:09:bb:2b:e0:4a:4c:93:49:74:f7:63:cc:31:
b1:a8:21:8a:26:8d:59:da:22:31:08:af:2d:53:cf:
19:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:32:AE:2C:0C:2A:D4:53:C7:CE:BB:8F:B2:8C:A1:23:9A:2F:E5:A5
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FDC31/2CD3D1924A3111F19BD3103690833773/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FDC31/2CD3D1924A3111F19BD3103690833773/rDKuLAwq1FPHzruPsoyhI5ov5aU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
151.158.208.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:ed:1b:93:b1:fd:49:bd:ca:d3:39:0a:f0:53:fa:2f:66:7d:
ab:e2:90:65:00:ec:69:e0:ba:74:c9:b8:d1:57:ae:d0:3f:2c:
af:16:66:ec:3b:87:63:ab:8a:51:ba:8e:83:66:df:30:ec:b3:
89:8c:7c:4a:9c:dd:73:cf:a6:45:5d:80:51:d1:29:f0:1c:57:
b9:75:f2:c1:70:6f:2b:34:2a:5e:1d:58:c6:2e:65:a5:88:f4:
f7:01:8c:bb:16:0e:65:70:ac:4f:79:85:6d:b4:b3:4b:ad:84:
ff:eb:65:a3:a0:8f:21:9f:71:f2:65:c0:71:57:fe:7d:97:30:
17:90:14:3d:b4:01:27:15:a9:31:54:a0:4c:f4:95:85:cc:65:
66:ef:ff:48:1c:c3:bf:b0:27:cb:1f:5d:18:33:f5:83:5c:bb:
f1:92:12:23:10:70:d2:f3:5d:7f:d2:fd:47:00:a6:b0:6c:fc:
b3:b1:f1:34:28:7d:4f:bf:0e:7f:e8:4a:30:b3:d7:ae:87:f2:
20:89:90:32:81:13:fa:f5:78:a7:d2:a8:f3:a2:eb:57:94:b4:
ff:db:3e:da:a7:de:ee:e7:02:8a:ab:d6:eb:c4:95:d4:84:59:
78:7b:5e:49:85:e0:ed:13:24:3a:b6:53:3b:5a:2d:ca:54:f8:
3e:cb:a5:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:20:43 2026 by rpki-client