Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer
File: iruZJsMSoUFJxSMLpV-oz1uJquE.cer (raw, json)
Hash identifier: Ep0Hrv4h0inB3HHSaW8eQVTOmVgmOXs+4cjEJEGAhEk=
Subject key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7994
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 06 Apr 2026 21:56:40 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 192.245.185.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Apr 2026 14:50:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31124 (0x7994)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 6 21:56:40 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:55:bb:74:14:18:b5:9d:05:16:43:d8:49:1a:
42:78:34:94:ef:db:0e:8b:ac:e7:b0:dd:77:a7:6a:
b6:b0:cb:e2:8e:ca:73:f1:dd:b3:34:71:f5:58:ab:
19:03:6b:b7:19:88:0f:07:6e:e4:e3:1f:46:7b:d1:
2d:1e:50:8d:f4:ec:e2:03:5d:b7:06:97:75:70:05:
a0:2c:24:5b:aa:de:c0:81:8f:37:0f:c1:ac:b8:98:
9f:40:2a:c7:6f:5a:2d:26:66:41:03:74:06:c7:fe:
14:b5:92:6e:43:4c:87:ae:43:cc:f4:cb:cf:49:0e:
31:ab:dd:e9:eb:85:9b:9b:05:ed:2d:98:a3:39:5c:
38:65:f2:67:2d:b7:96:5b:cb:6d:d5:03:67:39:7e:
86:a3:1d:f2:46:53:79:28:23:78:a1:18:3c:83:da:
22:65:49:07:71:ec:68:1c:a7:00:e9:85:90:81:1f:
6b:c1:dc:93:4f:e5:20:f0:5d:17:2c:0c:04:33:a2:
39:ee:83:77:3e:ad:9f:37:11:28:60:1e:63:d2:1b:
05:44:b7:c4:65:3a:60:85:c2:5f:af:36:7a:3d:9e:
8e:55:b9:e7:e3:33:26:08:23:19:57:e1:99:f8:66:
81:74:25:b2:d8:9f:d1:97:63:7e:db:88:65:19:16:
4a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.245.185.0/24
Signature Algorithm: sha256WithRSAEncryption
74:8a:7e:b6:91:a7:a5:c7:a1:d9:f9:73:0a:b2:26:e5:4a:1d:
c1:e1:6c:1a:d1:a4:99:ca:0f:e3:5b:7a:82:6f:b4:04:8d:cf:
02:b7:b1:9d:26:e6:5e:c3:fb:9a:0b:bc:f6:5d:a9:ad:69:00:
99:4a:fb:ee:29:ee:0d:d6:df:1d:74:2d:93:f4:62:d7:95:d0:
33:07:1e:d1:ab:74:b9:dc:86:af:45:2f:15:2b:07:03:ce:71:
f2:18:8a:15:b6:7a:07:3e:cb:e8:23:33:63:05:a1:05:9c:c2:
a7:bf:cc:d6:57:28:4f:5d:cc:d4:66:a4:04:ba:d2:64:b4:85:
0f:69:21:63:7e:09:b8:97:c3:43:2b:8b:00:3d:03:7c:aa:2d:
ad:34:2f:69:88:c3:fd:8a:fa:a8:4e:6a:61:fc:cd:0f:24:30:
74:ec:15:32:25:16:92:0a:db:9e:f2:35:87:ff:bf:fe:5c:13:
cc:8a:07:bd:d2:65:1e:d3:ad:03:6e:db:3e:9d:26:d9:c3:a7:
6a:8f:e5:d3:a2:56:1b:9b:f5:2b:86:f0:0a:0a:e0:2b:32:76:
34:ef:f2:87:b2:a7:8c:b5:4a:7e:d5:3d:e1:0a:e7:66:db:4f:
86:2f:ef:51:73:c5:05:82:82:99:a4:ab:c2:52:f0:57:05:52:
1a:ba:3d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:17:31 2026 by rpki-client