Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer
File: cLDwRtLzp0OW6Cx56OPazyYLOe4.cer (raw, json)
Hash identifier: 2lQU0sV6HbGuebUiJetCe/otkIxCRHd/AJPP12bOrjI=
Subject key identifier: 70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B418
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 12 May 2026 05:40:53 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 202.12.26.0/23
IP: 2001:200::/32
IP: 2001:dc3::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 19 May 2026 19:57:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177176 (0x2b418)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 12 05:40:53 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A916B6AA, serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b7:96:9f:de:3f:b5:85:f7:01:96:4d:89:54:
ed:59:cb:b1:a5:99:8a:77:8d:36:ce:83:35:23:a0:
44:a5:94:bc:b6:61:6a:a1:98:22:a0:1e:aa:b0:34:
c4:33:48:97:65:28:ea:dc:54:24:0b:f6:61:9f:71:
ee:71:b5:77:c5:5c:b7:a4:4e:e1:16:5f:9b:c2:86:
31:de:f2:d7:20:74:99:72:63:ae:d2:66:f9:f6:ee:
eb:7f:02:ca:80:19:b2:bd:37:ef:b1:bb:ce:bf:6b:
39:e0:31:6e:e1:c3:e4:e5:09:7b:2b:3c:d3:a3:e4:
6b:cf:e2:8d:9c:61:48:b0:de:e4:31:18:71:f8:2e:
80:b2:d5:4e:0e:7b:3a:61:57:31:25:bf:6f:b5:24:
79:76:20:18:e7:9e:c8:0b:fa:3a:82:6f:ba:d5:53:
4a:b6:03:c7:fb:46:a4:8c:dd:ae:aa:09:fa:69:a5:
0f:55:6f:a7:75:af:77:38:ca:bf:eb:1b:d6:f2:f9:
66:28:26:8c:37:35:85:e5:db:97:1d:c7:d9:04:b5:
34:5b:9e:b8:97:ed:44:a0:93:8a:80:a3:20:d9:8e:
21:69:cf:e0:55:7e:61:c2:b4:b7:6b:73:37:d8:11:
57:e4:fa:88:d3:58:f4:aa:a2:24:f9:0c:02:31:04:
e7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.12.26.0/23
IPv6:
2001:200::/32
2001:dc3::/32
Signature Algorithm: sha256WithRSAEncryption
4b:dd:15:5b:c8:9a:0a:a3:33:84:8d:c0:0e:f7:6a:50:44:e1:
17:8f:c3:58:cf:c7:bc:11:39:94:77:3c:fc:e1:05:24:c4:15:
bb:f3:17:3f:d1:91:8e:9b:10:83:83:a8:07:f6:6e:b7:d6:d3:
7f:4b:75:7f:52:65:09:31:39:dc:df:3a:1a:d6:b0:ca:65:87:
79:c7:96:3c:42:fa:33:88:c0:ab:f1:01:49:3f:74:9c:79:2e:
09:34:db:c5:0e:54:a8:5d:9e:4f:c8:f4:f8:33:41:8f:4b:39:
92:36:97:03:52:b1:c2:85:5f:a6:4a:5e:0e:cc:7d:0a:15:41:
7b:9d:a2:d3:f2:f7:67:fe:9a:99:f2:47:7a:01:fc:26:ba:81:
02:b9:ed:d6:db:4c:95:4b:f5:6e:a5:1e:8c:8e:a9:1a:53:c0:
b4:fd:d6:d6:63:f7:c5:da:2c:03:aa:e5:56:b6:f1:9d:09:40:
45:a7:f9:c5:df:a9:4b:ec:8c:6f:b4:18:f6:4d:d3:8b:05:5f:
d2:fc:39:22:3a:35:21:93:69:d8:92:6f:50:b6:77:47:a1:c0:
fc:31:43:b5:34:8e:98:25:06:8b:8a:a1:57:b9:c3:6d:2b:3a:
19:01:9a:a3:e2:5e:c9:20:9d:a2:c3:e8:a9:fe:9a:47:cc:f9:
b0:55:98:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:52:57 2026 by rpki-client