Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0JnuqfXNtv5MbvmOjYzzNkudYmE.cer
File: 0JnuqfXNtv5MbvmOjYzzNkudYmE.cer (raw, json)
Hash identifier: vgOxRekaC0xDLXMrlhIRm3MA0FLfn6NrZXw4qvQjx/Y=
Subject key identifier: D0:99:EE:A9:F5:CD:B6:FE:4C:6E:F9:8E:8D:8C:F3:36:4B:9D:62:61
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B22E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/0JnuqfXNtv5MbvmOjYzzNkudYmE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 May 2026 14:14:13 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 152719
IP: 202.49.114.0/24
IP: 2401:9860::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 20 May 2026 05:22:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176686 (0x2b22e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 4 14:14:13 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A91B0D88, serialNumber=D099EEA9F5CDB6FE4C6EF98E8D8CF3364B9D6261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6d:7e:02:d6:6f:b6:06:5f:20:2b:49:b7:0b:
d7:33:e3:1d:29:7b:7f:b9:c5:2e:2e:c6:12:eb:33:
fc:98:27:3e:f9:e6:bb:45:75:05:58:df:aa:87:36:
70:12:e9:b9:f4:13:bc:21:85:1c:25:ee:42:bb:70:
3b:31:19:d0:d9:6d:fd:f2:51:43:92:dd:5a:e0:ca:
27:91:f7:d7:24:1a:a6:7a:93:9c:c4:9a:7c:29:9c:
37:83:8a:04:38:be:94:a9:ae:bc:b9:9b:11:3d:db:
1b:26:f6:16:cb:a8:09:54:fa:69:d6:51:5f:a5:9d:
a8:1b:0d:f2:48:ce:bb:35:42:74:16:8f:28:45:ee:
61:c6:83:64:a8:3a:ff:40:6f:94:bb:a3:c2:be:21:
10:dd:c1:ff:c5:f2:df:98:74:aa:3b:54:11:c0:c2:
fd:20:31:78:05:b8:2b:b1:c8:a0:68:73:00:68:42:
93:30:08:19:2e:4b:8c:63:b4:5f:2d:90:c2:02:8c:
d1:a8:b7:84:7a:9b:05:f0:76:fe:91:cb:be:ec:30:
c4:9d:3b:b5:2b:67:1f:50:13:0f:04:ea:9e:c4:3d:
44:f9:8b:25:6e:bb:ab:af:a0:ff:60:d8:fd:43:6b:
a9:1f:6a:d9:29:46:16:f5:23:ed:86:4a:98:0c:39:
4c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:99:EE:A9:F5:CD:B6:FE:4C:6E:F9:8E:8D:8C:F3:36:4B:9D:62:61
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/0JnuqfXNtv5MbvmOjYzzNkudYmE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152719
sbgp-ipAddrBlock: critical
IPv4:
202.49.114.0/24
IPv6:
2401:9860::/32
Signature Algorithm: sha256WithRSAEncryption
67:23:cf:ea:b3:21:21:90:f5:ea:6e:ad:03:2b:63:ef:bf:1c:
8a:67:2d:17:0a:db:ff:ad:3e:14:87:af:54:68:e2:8a:f5:cf:
30:7f:38:95:7c:17:03:6e:47:d8:9d:f1:d0:19:ea:da:52:de:
2c:e1:d2:59:e8:93:c8:b1:97:6c:6b:e3:d4:95:e0:9a:bc:a0:
b8:ea:d2:6a:da:fd:9e:db:20:f0:81:74:b3:ff:0e:0d:54:c8:
61:bd:98:7f:17:04:9e:cd:a8:6d:8c:67:2b:c2:bd:6a:c2:56:
be:07:67:fc:80:8b:64:2a:3f:7c:b3:5b:99:ea:96:ff:4e:db:
52:02:2a:e3:93:91:5b:08:37:8a:7e:ed:8c:0b:59:c7:59:36:
be:2c:98:67:24:ab:98:5a:47:31:86:c3:da:66:d4:a3:00:2f:
69:53:ed:2b:17:5c:11:a1:fa:85:2a:ff:7b:9b:b2:9b:76:cd:
8a:d1:91:e2:e7:01:19:93:04:a9:74:99:c4:f6:a8:ed:28:b4:
5d:dc:2b:c0:a8:d2:c6:5a:33:b8:bf:48:24:8d:0b:ea:cb:e7:
48:33:98:fb:07:90:34:8c:77:2e:bc:4d:40:6b:78:17:bb:c3:
30:12:ed:19:f1:6c:e7:13:a7:c7:5d:ea:59:65:41:89:49:a7:
54:b6:07:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:19:36 2026 by rpki-client