Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer
File: vnJUhLjNDR2Nd-2HzM7633k_Rwg.cer (raw, json)
Hash identifier: BVPctKwXHaqm3Z68wUK83F5XQythl/l4ZmBudONzDdU=
Subject key identifier: BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7A91
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 29 Apr 2026 13:48:02 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 147.76.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 14:50:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31377 (0x7a91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 29 13:48:02 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A918E6B7, serialNumber=BE725484B8CD0D1D8D77ED87CCCEFADF793F4708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:9c:98:db:b5:9e:db:a9:14:b9:36:d2:1f:
ce:a6:2c:c5:f8:a0:d2:b0:f5:37:95:13:c6:6b:e3:
b4:25:46:f3:54:d2:da:26:52:a0:82:3f:3c:43:b6:
4b:a8:1d:53:52:32:57:82:81:c5:3c:15:81:1a:d6:
ad:ba:c3:b7:12:5d:08:c2:28:5a:4d:1b:24:4c:57:
00:5c:83:8e:5d:4d:43:16:7e:90:12:20:51:d9:0f:
8e:47:ef:16:64:7b:6a:62:1c:a5:0e:c8:55:d2:58:
18:7a:a6:d5:b9:79:9c:95:be:f4:ee:1a:21:90:f8:
e6:80:03:00:d5:82:7f:d4:71:98:45:a6:dd:e0:60:
74:1c:f6:1a:ac:e4:99:6a:4e:19:00:57:5c:a3:03:
04:5b:e2:26:5b:15:ab:16:60:d5:54:11:6f:95:f9:
39:f1:a2:81:ae:75:de:53:c6:eb:39:f2:ab:ab:d0:
12:c8:92:9f:2b:50:58:d6:ad:31:3b:b9:b7:f2:30:
97:54:80:65:dd:17:c3:62:4f:fd:27:64:b4:73:83:
de:4c:42:b5:0c:e5:fb:8b:31:36:2a:ba:53:2e:92:
0f:e2:2a:51:3c:77:88:8f:7a:8f:d2:91:c4:76:ed:
4b:a6:9c:ef:73:ff:a2:67:fa:7d:7a:d3:70:4a:6f:
f1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:72:54:84:B8:CD:0D:1D:8D:77:ED:87:CC:CE:FA:DF:79:3F:47:08
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/AE7D4D4E46AC11E996088348C4F9AE02/vnJUhLjNDR2Nd-2HzM7633k_Rwg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
147.76.0.0/16
Signature Algorithm: sha256WithRSAEncryption
71:cf:25:eb:37:93:cd:50:cd:ff:e7:d0:43:1e:dd:c9:8c:47:
98:1e:5d:ca:65:c6:db:a6:7c:75:8d:e1:29:85:6b:a9:4f:49:
70:9b:4b:57:90:de:2e:7b:4c:d5:2f:ea:60:65:d1:c0:bd:e0:
cc:82:d5:6d:60:ad:1f:04:19:1b:bd:6c:e8:d6:fb:e9:55:fd:
43:e9:d3:1b:bf:4e:ca:f0:55:47:32:28:12:a3:6c:82:4b:e2:
69:23:67:17:27:2f:17:67:75:f1:0e:cd:fe:a5:86:5f:68:53:
75:cb:31:10:55:f5:e4:06:81:c6:7e:7b:64:26:62:91:39:1b:
3c:41:d3:3a:5e:ba:85:08:2c:71:1f:d9:4f:90:3a:29:f3:89:
76:b7:72:3a:2f:92:b5:57:ec:24:b1:c8:fa:0f:e6:09:2f:85:
e7:27:73:65:62:21:0b:70:32:46:0d:e8:55:88:0a:d9:86:40:
37:08:71:2c:9d:5f:ad:40:3c:8c:8f:d5:30:2d:e4:88:fb:99:
7a:14:6f:68:4f:89:53:16:f5:05:dd:88:11:2a:2b:b5:50:ee:
0a:d5:7c:0e:8a:47:df:62:51:68:fe:9c:29:a4:be:a2:fe:e1:
4d:68:ac:57:c5:02:7a:fc:a4:ef:22:71:d6:46:76:fc:fd:4a:
0c:41:41:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:30:27 2026 by rpki-client