Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer
File: XPuiiRbqwHsjWQlIVdieFqCBS6w.cer (raw, json)
Hash identifier: dsaGiYIQUnQMIhcVHoiD5+H3hWLukv8fnZl5Sl2GRmU=
Subject key identifier: 5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B368
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 May 2026 13:45:26 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: AS: 55497
IP: 59.153.40.0/22
IP: 103.4.114.0/23
IP: 103.198.32.0/23
IP: 202.9.66.0/23
IP: 2401:ef00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 20 May 2026 12:45:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177000 (0x2b368)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 8 13:45:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A918E843, serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:da:7d:99:8a:d9:ec:16:e6:bb:20:44:80:2c:
72:0d:22:69:a3:7f:59:d0:7b:ba:91:a4:a2:6e:f8:
29:68:5f:81:0d:db:06:14:14:31:bb:e7:aa:5c:dc:
b8:de:6e:8f:7c:83:2d:41:fc:c2:78:15:c6:c1:35:
15:86:d4:7f:11:03:00:81:36:33:92:3d:52:f7:ed:
99:f0:48:41:dc:a4:6e:62:2e:fe:70:ce:6d:e2:ff:
81:4a:cb:e0:ce:8a:4b:07:f3:65:8b:04:ce:b4:3b:
6b:b6:1e:43:b4:ab:ad:72:bc:74:4a:8c:4e:0e:27:
4a:0e:24:88:8d:01:40:bc:71:d0:80:13:9b:6f:34:
d3:47:f7:bf:1c:e6:0d:f6:df:1d:71:e2:5c:e1:e7:
fb:36:d8:ed:8b:38:12:88:2c:ec:0c:9c:49:43:bf:
f1:80:b8:51:68:77:e0:34:a1:59:3c:46:f1:2c:4e:
cb:c0:09:d4:05:51:be:3f:e1:98:2a:ce:2c:31:8d:
75:39:58:70:10:6f:e7:98:c2:6e:94:e7:11:c0:30:
23:78:3a:a2:5b:e7:e0:44:b5:f8:7a:35:8e:d4:39:
f3:95:bf:69:04:89:76:b0:0b:6b:f3:7e:34:6d:1a:
af:6f:de:fc:4a:02:90:1b:0b:a0:c8:00:17:8f:f5:
24:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55497
sbgp-ipAddrBlock: critical
IPv4:
59.153.40.0/22
103.4.114.0/23
103.198.32.0/23
202.9.66.0/23
IPv6:
2401:ef00::/32
Signature Algorithm: sha256WithRSAEncryption
36:d2:82:18:5e:88:79:b6:e9:fe:49:50:f7:03:11:e5:0f:f4:
20:75:3e:62:97:9d:13:e7:5b:ba:97:81:21:b1:11:ff:66:07:
d6:9f:34:a8:31:8a:24:bf:91:1a:70:42:7a:8b:f7:c3:bb:14:
db:51:ea:5e:f9:04:01:5a:d5:fc:55:45:a5:35:63:60:64:8f:
36:fb:3a:26:0f:ab:1b:65:f7:ef:96:20:92:eb:da:89:40:ac:
3f:47:45:fc:89:cc:e3:23:6b:6e:ae:bf:8e:e6:62:1f:5a:63:
ea:8e:ec:00:70:fd:89:b1:af:eb:b9:b9:4c:3d:36:30:32:d4:
8b:55:21:ae:a7:25:d7:73:04:30:c4:bd:e9:c1:94:23:3a:8a:
01:b3:55:8e:49:1c:c3:a8:b2:3a:6d:07:90:ef:66:f8:fc:75:
fe:3e:f6:79:24:2b:ad:04:48:d0:e1:79:af:f1:28:78:ef:c9:
6f:1f:d7:72:2f:2a:57:e8:8d:3c:fb:c2:54:a3:10:92:1c:86:
82:b8:f0:b2:f1:31:e1:b2:47:22:0a:5b:db:3a:d2:03:47:d0:
65:f8:40:4f:c6:46:ac:c4:89:5f:be:af:44:19:67:91:b5:ff:
c2:2d:22:d0:a6:f7:71:a1:54:fe:be:ac:35:c9:4c:fa:82:e6:
76:e1:d2:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:13:08 2026 by rpki-client