Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/b70F9jC-RBCpUSzbaahco3zoxzk.cer
File: b70F9jC-RBCpUSzbaahco3zoxzk.cer (raw, json)
Hash identifier: 2Zi3JSSc/i4yLWjNMdAVTHx4rk8o7yNQ4VQVHKDgBrM=
Subject key identifier: 6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 518D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:05:17 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: IP: 151.158.90.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 13:59:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20877 (0x518d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Feb 27 03:05:17 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A91DC897, serialNumber=6FBD05F630BE4410A9512CDB69A85CA37CE8C739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:82:0d:c9:39:d9:bc:83:d6:da:a0:6c:0f:2e:
8e:e1:2e:06:78:4b:46:8f:57:76:ea:a0:f4:9c:e7:
a1:78:df:e6:a2:07:31:2f:20:aa:61:bc:48:71:8a:
f9:17:dc:23:f5:fb:c4:6e:12:70:be:eb:b6:36:77:
5c:74:45:5e:68:2c:1c:92:34:37:d8:47:47:ae:a3:
b0:8b:c1:23:69:4e:80:45:ac:38:8c:76:a7:7a:73:
e6:cb:6f:6a:a0:5f:95:c5:80:8c:60:30:48:d3:af:
ac:91:47:bf:b1:88:7d:14:63:29:44:27:97:b6:00:
95:65:b1:59:4f:eb:73:70:b6:b6:4e:41:70:7a:d3:
77:07:c7:6c:59:83:3a:0d:cc:e8:b7:48:e6:f0:d2:
32:5e:34:fe:f6:bf:03:91:db:3e:8f:69:19:7c:15:
eb:4b:40:74:9d:15:61:7c:30:4f:02:56:6d:fd:ed:
ff:be:e9:5f:07:72:84:b9:f7:b3:72:98:7c:a1:eb:
10:f5:8a:86:8c:12:33:17:36:f3:e2:14:04:53:88:
6a:ce:bb:8d:7b:06:cd:6c:89:8b:99:db:cc:c9:36:
33:42:a5:d1:ba:a0:c3:31:77:f1:87:d5:03:23:b5:
e1:d2:26:98:04:51:8b:9b:0b:9b:f9:3d:6f:d9:09:
d3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BD:05:F6:30:BE:44:10:A9:51:2C:DB:69:A8:5C:A3:7C:E8:C7:39
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DC897/7F4E63EC003011F194A257AB476F56BC/b70F9jC-RBCpUSzbaahco3zoxzk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
151.158.90.0/23
Signature Algorithm: sha256WithRSAEncryption
db:1c:d6:e3:26:84:95:ff:b1:c7:1b:10:a4:64:f5:2f:d8:99:
55:3d:2f:60:fc:eb:65:ac:01:14:8c:36:e1:ee:74:2f:81:78:
59:9c:2b:8d:fa:c3:92:f9:a0:f2:c3:b8:1c:d6:6d:d6:67:a6:
0f:b1:b8:9e:3d:44:da:c2:98:b9:1a:85:6e:8a:c8:b0:1f:9f:
af:62:15:03:07:04:f2:db:b6:4f:7e:bf:d2:3d:06:5b:37:a6:
25:71:1a:e9:07:31:dd:d4:f0:02:5b:c6:bb:be:14:4e:e2:be:
a3:56:99:53:63:78:b5:2c:49:0e:f4:ae:8c:37:30:b0:aa:4a:
74:20:a9:e1:84:76:3b:5d:26:cc:b0:95:55:d0:a5:c3:ec:c9:
f7:93:f3:85:3c:db:0c:8f:d4:26:b6:09:00:10:a4:2c:da:7f:
3a:3e:20:ef:25:06:7d:c8:08:51:b4:9e:4c:e2:94:ca:1b:24:
a4:9c:08:37:e6:0e:f4:4a:4a:43:e7:7d:da:61:b2:e4:75:06:
ab:cf:29:26:d7:d2:41:a6:bd:ae:b8:fc:88:74:ec:e4:6f:f4:
74:2c:00:08:76:79:06:00:af:fb:eb:22:6c:89:ed:4c:25:51:
24:6f:f0:93:71:7e:d1:9e:37:58:74:e3:a5:66:99:56:4a:03:
56:d6:25:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 16:21:34 2026 by rpki-client