Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer
File: WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer (raw, json)
Hash identifier: edd6b9poDLJozITfri70WVqou8n/dA2JBA/ro+aUK3g=
Subject key identifier: 58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 52BA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Apr 2026 14:17:34 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 47365
IP: 195.114.14.0/23
IP: 195.114.126.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Apr 2026 02:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21178 (0x52ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Apr 14 14:17:34 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91C7B15, serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:56:ad:fe:3d:d1:74:27:dd:1d:85:27:3f:29:
8b:67:0e:a7:b1:de:a2:b2:7a:da:35:83:97:85:d3:
21:d6:eb:64:4e:a5:8c:ae:e6:10:2f:a5:37:02:6b:
74:b5:7c:07:9e:fd:51:d3:66:e1:f1:cd:de:22:14:
44:2d:75:3a:50:cf:a1:0b:09:5a:6e:7b:c7:c2:a1:
d9:fe:06:27:ea:84:d0:2d:98:4c:71:4b:28:08:99:
9b:08:b5:af:97:db:46:b7:39:74:7d:3b:fa:e4:3f:
65:52:da:a0:78:44:50:35:70:21:cc:a9:10:92:f4:
25:fb:a9:13:a6:39:f4:5f:95:a2:05:13:e1:a2:ff:
94:f7:77:6b:9c:03:ec:d3:c5:52:2d:98:e5:ce:72:
e8:3b:c5:d5:c4:fc:c2:9a:cb:dc:aa:b8:20:49:37:
f1:28:05:dc:17:62:f7:3f:2a:b1:7b:a6:47:3f:7f:
2a:90:a8:a8:86:70:28:33:55:01:09:0a:12:e6:59:
ed:68:5e:d0:5f:eb:8b:0e:6b:72:ea:6f:95:c6:63:
9c:23:44:91:dd:fc:c5:ac:c7:dd:0f:9a:25:72:0b:
0e:59:14:50:95:b4:a7:c2:c5:48:01:5b:7b:7f:e0:
b2:b1:75:97:e0:b7:63:33:00:68:48:78:f8:c3:e5:
3c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47365
sbgp-ipAddrBlock: critical
IPv4:
195.114.14.0/23
195.114.126.0/23
Signature Algorithm: sha256WithRSAEncryption
36:36:9b:87:27:c5:68:80:69:2e:11:77:68:63:e3:f0:8c:6e:
16:e2:2b:c0:94:df:bd:44:a9:68:a4:ee:af:28:94:62:df:df:
38:f8:39:77:93:52:f5:23:d3:e9:99:48:1d:4e:63:f4:20:c1:
88:09:8d:12:1b:e1:69:28:49:28:e1:35:36:a6:30:54:0f:f9:
fb:ac:ce:2c:dc:09:ab:31:d7:04:db:c2:0b:0a:02:f6:29:c0:
38:bd:19:da:15:13:6d:03:6c:31:e9:37:66:a8:9e:61:eb:e0:
46:f1:49:0b:0f:9f:b1:2e:ea:df:6a:d6:2d:ce:4f:00:6b:55:
64:5f:fe:9d:54:d1:a8:96:13:e2:d1:ea:ad:cd:e9:09:93:f8:
94:f4:ec:96:78:80:a9:98:44:b4:34:68:28:ff:b6:33:60:90:
e2:52:34:8a:1c:44:86:ed:f3:e5:b9:a8:43:fe:16:87:68:8b:
b1:77:d8:b3:40:57:63:2e:c9:15:4b:fa:d1:31:18:06:3a:42:
65:9d:7b:c0:db:1e:1d:e2:4a:1d:19:ab:50:90:91:a0:82:3b:
8a:5d:67:93:a9:dc:f9:35:9d:5b:c9:58:0f:04:5f:48:f3:28:
e1:01:51:d8:c6:cd:13:11:2e:f0:8d:61:37:f7:56:2b:b9:90:
cb:e1:b2:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:30:45 2026 by rpki-client