Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer
File: SZ1pGw9zLZAG6VE8YLc2a05pBAA.cer (raw, json)
Hash identifier: WDn3/3Gm2135tihHjpfs7PkBNhuhhzbGY3CUw3frMhY=
Subject key identifier: 49:9D:69:1B:0F:73:2D:90:06:E9:51:3C:60:B7:36:6B:4E:69:04:00
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 5184
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:05:03 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: IP: 151.158.14.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 13:59:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20868 (0x5184)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Feb 27 03:05:03 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A91D2B9A, serialNumber=499D691B0F732D9006E9513C60B7366B4E690400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4f:b7:f9:14:a7:99:8a:84:96:2e:0f:88:9c:
4a:e4:36:fa:6a:e6:65:b7:e2:e3:d9:f5:8e:13:6d:
26:d4:97:ed:05:47:5e:10:15:40:0f:c2:73:63:22:
bb:ea:4b:b5:1d:56:96:c6:37:fe:52:b2:15:06:07:
1a:c1:13:38:ae:ab:32:86:1f:aa:a8:08:a2:89:ee:
8c:c7:0c:e6:cd:16:8a:5a:51:2f:9b:2f:93:5e:d0:
e7:5c:54:5d:98:12:0a:56:37:f2:bf:67:ca:e1:07:
0e:54:60:be:7d:1d:3f:7e:b2:24:c5:7e:27:0a:2b:
e7:83:e5:6d:bd:80:82:22:6b:d1:30:8f:e9:00:2c:
c8:f7:60:cd:2c:00:cb:31:06:df:f2:4a:aa:2b:e1:
55:a8:6e:f4:c9:fa:f6:a7:65:e8:8e:db:3c:be:07:
ec:a3:2c:8b:40:dc:34:77:23:da:94:8f:2a:44:73:
ba:69:4c:bb:6a:cf:4d:93:39:24:d4:4d:a5:6a:fd:
00:fb:19:5a:0b:ff:6f:0d:78:77:c2:a5:64:5e:85:
32:aa:db:79:ae:f5:b3:22:8e:4c:61:c7:e2:2f:6a:
d1:c0:0e:2e:27:9e:43:60:ea:3c:44:96:f7:71:e4:
cd:fc:ca:c1:38:56:f5:ef:7e:c6:3c:90:8c:48:0a:
71:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:9D:69:1B:0F:73:2D:90:06:E9:51:3C:60:B7:36:6B:4E:69:04:00
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/77969B8CF12211F0AC5CDA7E4E6F56BC/SZ1pGw9zLZAG6VE8YLc2a05pBAA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
151.158.14.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:6d:26:06:37:c2:48:9f:c3:46:8e:fe:d3:f5:fc:85:b5:29:
ea:6f:8f:2a:13:41:07:4a:a8:1b:b9:9b:fa:77:b1:fd:87:91:
ff:4b:2d:ca:d4:c1:36:bc:f8:c8:1d:f8:c3:5c:a4:a3:e1:bb:
41:6b:70:5e:7a:09:2b:b5:4e:98:57:93:03:2f:46:c5:61:cd:
cd:6a:a2:7a:cf:61:25:b9:cc:9f:f9:01:52:97:8f:95:78:73:
f2:a4:55:ec:b9:5b:57:2b:0e:9f:9c:bb:5a:92:82:76:72:de:
69:77:12:44:4a:53:eb:05:9d:f5:a5:36:38:45:f8:36:57:96:
c9:98:2b:b6:53:f8:60:83:62:59:60:4e:a0:9e:c2:72:c8:e5:
03:74:04:68:23:97:8c:bc:0b:16:08:9e:f3:b0:d7:08:6b:39:
e9:3f:0a:13:5b:24:16:96:14:35:30:28:77:29:9e:70:e5:6d:
fb:8a:a4:ff:81:b7:f0:69:90:ec:7b:01:f1:cd:ba:99:b8:ea:
a4:23:d1:39:92:23:52:79:c4:d0:93:42:bd:bb:02:95:cc:f2:
9b:87:03:fa:22:48:97:b2:65:2c:3d:28:13:4a:69:02:ab:71:
8b:04:c3:f1:52:d4:31:74:d0:46:ab:eb:fc:f8:22:47:7e:6d:
ca:d6:fb:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 16:20:52 2026 by rpki-client