Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer
File: MGSQ23RcleyGYUmf_IJkZnumf4o.cer (raw, json)
Hash identifier: 6z81wx0NMn7GtjwW95LjV0KrRl+S3czpXzjwaox2hgg=
Subject key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 79D4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 15 Apr 2026 14:17:51 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: IP: 161.248.100.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Apr 2026 14:50:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31188 (0x79d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 15 14:17:51 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d8:a9:87:fa:ed:53:97:f2:4f:58:67:a1:17:
7e:7b:80:2d:24:39:04:ff:99:6b:3e:d2:fe:28:b3:
ee:99:1c:ae:72:5f:b3:96:9e:8f:df:58:81:5b:e0:
f5:56:98:f6:55:de:bf:24:3e:8e:60:05:cc:23:33:
bd:c8:28:97:23:6c:68:7d:e3:56:6b:6c:a7:44:25:
8d:16:c5:b4:89:68:ff:21:0a:ea:ff:8b:6d:dc:a7:
dc:a3:2f:83:f4:20:d8:82:f7:13:64:11:f3:21:f4:
0c:8b:90:50:02:5d:53:90:29:e8:3f:53:ff:17:c3:
51:58:dc:b5:9d:12:de:b2:63:72:e0:81:f1:51:8b:
a2:fa:a5:2b:0c:ee:52:8c:56:4b:d7:3e:54:bd:66:
67:6a:45:45:76:ea:4c:c8:47:a9:5b:49:14:f5:ae:
5a:4f:d2:3f:8a:42:e5:a5:ec:fa:65:91:68:38:33:
61:21:01:de:c7:61:30:f8:4c:f0:31:28:0f:fa:90:
37:36:f4:ed:d7:d0:36:ba:a6:26:6b:6b:04:1c:f0:
a8:90:9b:44:ac:36:9f:76:a1:23:e9:27:16:c5:84:
72:c8:e3:33:4d:6e:51:bf:a4:f1:af:8e:f1:a0:d4:
ea:f0:be:be:fe:a9:48:89:e5:45:1d:ee:47:0f:17:
d3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.100.0/23
Signature Algorithm: sha256WithRSAEncryption
25:f6:99:82:a8:24:2b:3f:48:2a:56:90:ba:01:fe:48:82:6e:
d1:fa:7f:de:ac:43:cf:7e:68:0e:5b:f6:02:f9:c3:fc:58:e5:
27:fd:75:c1:5a:af:c3:39:f1:b5:7c:a0:eb:15:e0:f8:7b:6a:
5d:77:00:bf:84:bd:28:4a:31:db:fb:08:cb:8a:81:5b:2e:e0:
d9:92:7f:00:45:48:b2:3f:ec:2b:59:af:4e:fb:0c:4a:96:5f:
78:ba:37:b4:10:e3:75:ea:ce:4d:06:26:ba:bb:75:6f:db:8f:
9c:e7:03:4a:ff:ed:8c:b9:1a:3f:05:5b:ed:49:e6:c0:11:72:
70:04:31:89:3c:f8:5b:df:dc:b3:21:ae:b5:58:c1:bb:27:30:
46:92:e3:47:cd:7a:2b:58:91:34:4b:b4:12:70:4a:14:de:ae:
09:06:19:45:67:7e:3f:82:a2:5c:c4:4b:4d:ca:58:14:ae:82:
cc:99:30:c1:b1:9b:d4:6c:6a:04:d1:2d:fd:fe:95:dd:27:a1:
1b:aa:ce:07:85:bd:62:8e:99:e1:e0:46:aa:9d:fe:46:0c:60:
f0:b0:04:73:a4:19:80:94:23:c6:61:a1:33:db:f9:2a:ae:68:
1b:ab:cb:56:06:9c:dd:94:1b:12:36:5d:df:c8:16:33:ad:bb:
ff:10:bd:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 01:22:26 2026 by rpki-client