Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer
File: XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer (raw, json)
Hash identifier: 00JJKQ+IipcovReZs9wvSpJ4jVZCT/kM7UG+9JuS4dU=
Subject key identifier: 5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B14F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 May 2026 13:54:37 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 103.91.156.0/22
IP: 123.253.44.0/22
IP: 2406:1ec0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 23:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176463 (0x2b14f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 1 13:54:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A91923A9, serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:32:da:01:c2:9b:69:37:54:71:98:70:e1:e9:
09:db:c6:15:d8:4f:f8:fe:b8:22:4f:65:dc:8c:28:
94:f7:9f:23:9d:12:dd:d3:55:19:0f:1a:b0:63:23:
3d:33:84:08:22:38:03:cd:d0:59:38:92:d2:34:5c:
39:fd:03:a1:f8:3b:16:b9:f9:a9:b3:32:24:e0:cc:
22:29:84:35:8f:88:b5:d6:17:32:63:b2:8c:e4:92:
4f:9f:70:dd:19:28:24:c0:29:9b:ad:30:23:0d:cc:
fb:b0:cb:5b:7c:6a:49:f8:a5:2f:47:da:93:da:08:
d0:27:8f:c9:ff:58:9a:28:ba:38:dd:a8:e2:82:0b:
1f:07:e0:99:1b:36:52:97:89:7e:83:65:5d:16:0b:
63:c2:f0:38:61:d6:4b:6c:33:f8:74:fa:47:b4:d1:
1a:dd:45:d3:8b:5a:c0:0c:0b:a0:65:94:5e:ee:36:
28:02:f0:9c:b3:52:d8:11:c7:9b:06:67:ef:19:2d:
c6:f9:d4:c4:ac:93:93:21:c8:cb:e8:53:b6:ac:24:
eb:40:ce:7b:54:fb:18:09:ab:a9:c9:6d:dd:73:70:
be:ea:29:79:7e:e8:0c:2d:eb:55:96:9d:ee:17:0a:
d2:e5:cd:4f:9c:c4:92:d5:ab:7a:62:69:fe:62:15:
ec:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.91.156.0/22
123.253.44.0/22
IPv6:
2406:1ec0::/32
Signature Algorithm: sha256WithRSAEncryption
88:91:6a:a1:db:81:df:98:7b:f4:46:a9:c1:d9:10:85:ca:4e:
ed:84:33:a1:6e:c6:64:d7:99:67:fb:ae:56:58:f4:70:02:7d:
02:98:d8:cd:ed:65:0a:25:27:9d:03:17:e6:b8:68:5b:86:7d:
2d:cd:21:f6:51:58:b7:b6:88:0c:be:94:af:65:c2:ac:56:ed:
db:66:eb:04:55:1a:61:5b:1e:ea:58:97:ce:24:ad:e1:8c:ff:
21:a3:3f:d6:b5:8d:95:2f:b7:bc:8f:93:54:8f:fa:3f:09:c6:
f7:c6:aa:a0:3f:b5:bd:7a:7a:77:d2:88:15:e9:30:ca:59:ca:
af:7c:81:0d:e4:38:17:9b:da:5c:33:13:97:26:eb:aa:a7:f9:
62:3e:71:9b:9a:f5:74:a2:67:20:00:19:c9:d7:63:08:ec:0b:
19:55:b0:be:50:d1:a8:19:50:52:20:e0:fe:24:90:e8:36:ae:
5e:44:c1:8c:16:5f:a5:f9:ce:b3:f9:f2:9f:b1:8b:08:7c:48:
6f:35:e0:2a:bc:1b:0f:d4:2a:0c:fc:10:40:50:14:0c:5d:c3:
ad:a1:b8:b4:1c:1f:66:7f:eb:74:a6:b6:d1:89:0d:cb:0b:2c:
d5:d9:89:f2:34:cc:17:1d:09:78:d2:01:71:8b:f4:5f:91:01:
9b:f8:29:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:07:16 2026 by rpki-client