Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2wiH4lzA0M92iNtd3fQZZTLNR6Y.cer
File: 2wiH4lzA0M92iNtd3fQZZTLNR6Y.cer (raw, json)
Hash identifier: k9DtWdrpgvRJON37OoPwMuqMzd0W6alo6NjPOFkKbo8=
Subject key identifier: DB:08:87:E2:5C:C0:D0:CF:76:88:DB:5D:DD:F4:19:65:32:CD:47:A6
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 76A7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/2wiH4lzA0M92iNtd3fQZZTLNR6Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 02:57:35 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: IP: 138.252.220.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30375 (0x76a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 27 02:57:35 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A914BE8E, serialNumber=DB0887E25CC0D0CF7688DB5DDDF4196532CD47A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e3:68:27:54:4b:7c:53:56:c9:95:16:47:e8:
7d:af:1a:2c:2a:3e:8a:a1:3e:6f:19:08:f2:d1:5f:
7c:80:0d:d1:84:90:df:4a:a8:bb:09:e0:a6:3c:ca:
a6:b8:69:69:3e:f2:f0:de:7e:bd:ce:fa:ee:96:1f:
14:44:b4:ea:58:6e:80:5e:b5:3e:24:4c:65:e0:34:
92:10:7f:74:7a:6e:ae:ce:78:28:ce:a2:85:5a:0a:
0d:01:cc:9c:e3:a1:06:c1:b0:4c:c4:f0:f4:2f:f8:
ee:f2:37:a3:ec:55:d5:5c:67:a3:b6:dd:98:e2:5e:
01:e1:08:62:7a:96:f9:92:c3:f1:0e:c5:0c:73:77:
a5:5c:de:91:52:13:f6:eb:f8:dd:8d:32:ae:29:49:
ac:4a:3f:f1:4f:f9:f1:ba:d8:ce:15:d0:96:f0:4c:
1a:fa:2d:83:e5:53:9e:98:33:7a:27:09:93:c5:cc:
14:4c:d6:f1:db:e3:eb:e6:68:de:a9:c9:40:28:21:
1b:f9:29:d0:e1:fd:d8:bb:18:0f:8f:25:70:19:cb:
93:02:7a:a7:fa:fb:9e:41:86:f4:07:40:5a:cd:f0:
76:8d:e3:0b:6e:9f:43:f1:f0:da:4f:fa:36:55:5f:
02:26:6b:4d:de:d6:05:ef:cb:c7:aa:f0:66:d2:7d:
66:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:08:87:E2:5C:C0:D0:CF:76:88:DB:5D:DD:F4:19:65:32:CD:47:A6
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914BE8E/49C77488E14611F09164E0A8716F56BC/2wiH4lzA0M92iNtd3fQZZTLNR6Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
138.252.220.0/23
Signature Algorithm: sha256WithRSAEncryption
98:1b:1c:e9:b5:e3:bf:b6:db:7b:22:41:fa:20:60:c3:9b:9a:
46:7f:dd:04:8a:4c:d2:f3:ef:b6:63:57:c3:14:cd:bc:cd:19:
81:83:f9:40:a8:a6:84:38:ea:98:03:25:10:89:13:74:33:70:
d3:ac:1c:13:b6:46:65:f7:10:3c:70:ca:36:a9:21:e4:f5:9e:
fb:8b:dc:33:7f:dd:5a:d4:85:fd:11:16:48:09:09:be:d2:3f:
f9:9d:f4:79:2d:ce:bf:80:20:8a:3a:11:bb:77:64:d7:47:aa:
a5:fc:73:76:3d:b9:3d:c0:b0:4d:36:a4:2a:77:17:9d:c3:91:
34:ff:8f:f1:14:68:2d:93:a8:b8:60:6c:6b:28:5a:b7:87:eb:
91:56:0e:c2:b9:ee:bb:10:a0:ba:63:c9:63:3d:d5:44:17:f5:
ae:68:55:d4:cc:bc:f0:ed:78:35:f2:89:8b:d3:d1:1d:bc:e6:
63:61:5e:75:a8:5e:a4:09:ba:ea:89:7f:b2:88:52:b6:74:c0:
56:c6:b8:10:43:70:42:ae:9e:5a:26:eb:68:be:c2:c9:a9:c7:
e4:8a:94:10:df:ed:df:33:a6:67:d0:9b:3b:72:27:b5:7f:11:
40:c5:28:c7:b0:09:31:12:1e:b8:c4:c1:1e:b4:9d:81:56:65:
1f:4c:3f:b2
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICdqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjYwMjI3MDI1NzM1WhcNMjcwMzAyMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE0QkU4RTExMC8GA1UEBRMoREIwODg3RTI1Q0MwRDBDRjc2ODhEQjVE
RERGNDE5NjUzMkNENDdBNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AKHjaCdUS3xTVsmVFkfofa8aLCo+iqE+bxkI8tFffIAN0YSQ30qouwngpjzKprhp
aT7y8N5+vc767pYfFES06lhugF61PiRMZeA0khB/dHpurs54KM6ihVoKDQHMnOOh
BsGwTMTw9C/47vI3o+xV1Vxno7bdmOJeAeEIYnqW+ZLD8Q7FDHN3pVzekVIT9uv4
3Y0yrilJrEo/8U/58brYzhXQlvBMGvotg+VTnpgzeicJk8XMFEzW8dvj6+Zo3qnJ
QCghG/kp0OH92LsYD48lcBnLkwJ6p/r7nkGG9AdAWs3wdo3jC26fQ/Hw2k/6NlVf
AiZrTd7WBe/Lx6rwZtJ9ZscCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBTbCIfiXMDQ
z3aI213d9BllMs1HpjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NEJFOEUvNDlDNzc0ODhFMTQ2MTFGMDkxNjRFMEE4NzE2RjU2QkMvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRCRThFLzQ5Qzc3NDg4RTE0NjExRjA5MTY0RTBBODcxNkY1NkJDLzJ3aUg0bHpB
ME05MmlOdGQzZlFaWlRMTlI2WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAYr83DANBgkqhkiG9w0BAQsFAAOCAQEAmBsc6bXjv7bbeyJB+iBg
w5uaRn/dBIpM0vPvtmNXwxTNvM0ZgYP5QKimhDjqmAMlEIkTdDNw06wcE7ZGZfcQ
PHDKNqkh5PWe+4vcM3/dWtSF/REWSAkJvtI/+Z30eS3Ov4AgijoRu3dk10eqpfxz
dj25PcCwTTakKncXncORNP+P8RRoLZOouGBsayhat4frkVYOwrnuuxCgumPJYz3V
RBf1rmhV1My88O14NfKJi9PRHbzmY2FedahepAm66ol/sohStnTAVsa4EENwQq6e
WibraL7CyanH5IqUEN/t3zOmZ9CbO3IntX8RQMUox7AJMRIeuMTBHrSdgVZlH0w/
sg==
-----END CERTIFICATE-----
Generated at Sun Mar 1 20:35:17 2026 by rpki-client