Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer
File: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer (raw, json)
Hash identifier: xdWMwVJ9YsGFCvj0a02TBDpBnZivIp3PvHpejRkWa8Q=
Subject key identifier: EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 787F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 13 Mar 2026 13:27:26 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 161.64.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 Apr 2026 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30847 (0x787f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 13 13:27:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A917ACF1, serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f8:d2:8d:e9:45:1c:45:89:87:b2:83:4d:9a:
e2:1c:ce:11:b8:d9:4a:ba:44:1c:a1:62:4b:96:ad:
49:c4:8f:87:bf:b7:e2:c9:60:36:39:c6:76:e1:36:
d9:5a:00:9f:84:f6:1c:8f:4c:55:1b:15:02:dd:dd:
40:68:d6:fd:ce:86:3a:cd:d1:b2:f7:cd:98:48:6c:
5f:b1:81:f7:83:47:81:98:e5:94:08:bc:da:6d:75:
d3:52:89:e4:03:13:0a:b4:9d:df:01:ec:73:33:8d:
bb:e5:dc:16:74:b9:2b:bc:5f:a6:e0:41:e7:92:b0:
43:59:4e:5c:d3:08:0f:04:a4:a5:6b:ca:e3:e9:a8:
84:68:8a:b0:a4:fe:25:c4:c1:5e:dc:a3:23:9d:c4:
6f:9f:d8:52:fa:2b:62:8e:57:92:27:24:4b:10:f6:
4c:da:73:06:46:95:14:34:d0:8c:31:3d:02:2f:0c:
f4:d1:98:cf:27:d1:b3:56:58:5c:7b:9d:5f:3a:59:
24:10:63:f3:39:8a:eb:79:08:ef:04:bd:88:8f:6d:
53:8e:1c:ac:ce:f4:f1:47:08:43:0b:8f:7b:75:03:
a6:6f:16:1b:ea:b0:98:c1:4e:7b:17:18:1d:75:57:
0c:63:82:d2:e0:4d:96:6d:82:60:e5:dd:78:55:3a:
71:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2b:1c:27:fa:99:1b:76:f1:80:c9:09:83:ed:38:ad:37:8d:a2:
ab:8b:2e:3e:af:06:e8:13:39:1c:cf:2e:8e:0e:d8:05:a7:0e:
7e:fe:dd:d5:18:51:cf:0d:95:d6:e9:20:d4:8e:74:42:f2:89:
23:a5:7e:22:e2:73:28:fb:66:28:e4:be:63:18:f3:5c:46:d2:
7c:ca:2c:15:18:fa:b9:3a:23:73:6f:2c:5a:04:45:ae:b1:79:
83:32:79:3c:e5:80:0c:53:f8:34:f9:b1:6a:9f:b3:29:7c:70:
41:6a:38:ac:b1:5b:5c:d8:4e:4c:7f:32:b4:c4:ed:0d:24:5a:
bf:1e:0f:04:05:a7:05:0d:fd:ac:ba:8c:e6:06:60:0d:42:32:
d6:da:4c:04:a9:df:74:2f:23:df:46:dc:62:e8:d2:81:80:f2:
71:a8:20:7f:eb:d4:43:0f:01:4d:7f:72:91:7e:86:34:b8:02:
41:dd:c5:18:13:ca:6b:54:b9:da:5f:c2:9d:84:e6:f6:ff:9c:
9c:ef:59:25:c4:65:73:a5:71:bd:31:67:33:8a:02:e3:fe:e4:
80:51:d5:49:ba:df:cd:f0:32:f5:a6:21:4f:44:27:e6:39:db:
59:2d:e5:0b:64:19:cd:19:dc:9b:4f:66:16:3d:d0:69:bb:72:
e8:36:7c:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:54:36 2026 by rpki-client