Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/poX1Gn3T8CbPKOIfA6FAaZ24_ow.cer
File: poX1Gn3T8CbPKOIfA6FAaZ24_ow.cer (raw, json)
Hash identifier: 7Y8b1PcOjk+UvkSzqF+uATXVErCNd9NUhDULIwEUf3I=
Subject key identifier: A6:85:F5:1A:7D:D3:F0:26:CF:28:E2:1F:03:A1:40:69:9D:B8:FE:8C
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7807
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 01 Mar 2026 08:03:07 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.220.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30727 (0x7807)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 1 08:03:07 2026 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A918F1EE, serialNumber=A685F51A7DD3F026CF28E21F03A140699DB8FE8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7f:c7:6e:77:cb:26:dc:bb:69:5d:eb:e7:24:
a5:10:58:c4:ed:63:f9:de:0b:29:e4:c2:d3:48:aa:
b0:0a:b9:c4:61:a5:ed:ba:4c:fa:8d:04:0c:76:de:
3f:ca:68:c8:b4:4a:49:10:ec:25:7b:b4:c4:87:2a:
98:ab:7c:ca:12:3e:97:02:d9:57:aa:2a:6a:43:1c:
0e:98:32:7d:ac:6a:a3:82:bc:5a:6a:6e:9d:df:01:
dc:77:63:af:17:ea:8a:5a:95:58:59:09:1b:b0:fe:
95:5f:5b:92:44:d7:bf:c7:dc:1f:33:98:02:bc:4c:
ce:4d:3e:64:a8:d9:bc:b0:48:91:81:fa:f7:d3:84:
99:4d:d1:b9:96:80:fe:d2:58:81:b2:87:51:53:eb:
a1:d9:0f:76:5b:62:20:41:16:71:14:84:70:76:21:
ed:fa:f9:e7:ed:9a:92:d5:0a:e3:8c:81:19:96:53:
4a:89:11:f8:b4:8c:59:56:6e:e0:e6:06:0a:bd:dd:
e9:e0:6b:3b:39:5d:07:c7:5d:a8:c0:7b:2b:d9:a8:
e8:0e:eb:a2:64:5f:9e:c5:8e:67:e7:ed:9b:5f:7f:
3f:89:2f:c7:43:ec:15:9d:ef:b2:3b:60:be:f4:98:
62:c0:36:84:ea:e4:b1:89:98:68:9a:8a:f9:95:0f:
df:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:85:F5:1A:7D:D3:F0:26:CF:28:E2:1F:03:A1:40:69:9D:B8:FE:8C
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918F1EE/EB00A8C8E75111EFBED81B0EC4F9AE02/poX1Gn3T8CbPKOIfA6FAaZ24_ow.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.220.0/23
Signature Algorithm: sha256WithRSAEncryption
02:ef:25:15:77:bb:85:19:f5:f4:72:ce:71:a6:68:6a:4e:bb:
9c:81:74:38:20:9a:2c:9d:e7:65:28:60:af:a8:1e:19:4d:23:
4f:5f:8a:47:2a:77:b2:d8:28:cd:c6:e3:4c:a9:c8:cd:3f:ef:
20:99:b7:6b:67:7c:64:f2:e2:84:54:1b:30:21:f7:8f:b6:74:
da:d9:42:c8:d3:08:37:bd:97:be:c1:62:71:81:32:73:10:99:
43:35:14:1e:ff:57:76:cc:62:ab:7a:51:89:8e:74:ef:7b:c5:
f5:a0:6e:8f:47:ab:f7:7a:d5:a0:84:00:de:0c:e0:d4:db:9c:
6d:34:85:a9:1c:d0:73:cf:6b:0a:a0:e4:fe:17:16:73:e3:9a:
ad:df:77:4d:18:d7:2b:77:1b:9e:48:b2:6c:40:f1:9b:c4:70:
08:1e:7d:1a:07:8a:cd:69:d0:c1:f8:d3:1e:1c:df:39:e8:73:
cc:a9:3a:c3:51:31:6e:c1:a7:c0:ab:b9:12:8e:5b:4f:ec:07:
d7:4a:29:27:55:17:34:e5:5e:e4:cb:a4:a5:1e:9e:c5:00:39:
56:0b:d1:d9:03:1a:18:7e:c0:79:38:28:c0:99:4e:76:0d:41:
8e:82:77:54:b5:bd:e9:0e:e6:21:f0:ca:1f:f3:e6:c5:e9:70:
83:b4:23:39
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICeAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjYwMzAxMDgwMzA3WhcNMjYwNzAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE4RjFFRTExMC8GA1UEBRMoQTY4NUY1MUE3REQzRjAyNkNGMjhFMjFG
MDNBMTQwNjk5REI4RkU4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AM5/x253yybcu2ld6+ckpRBYxO1j+d4LKeTC00iqsAq5xGGl7bpM+o0EDHbeP8po
yLRKSRDsJXu0xIcqmKt8yhI+lwLZV6oqakMcDpgyfaxqo4K8Wmpund8B3Hdjrxfq
ilqVWFkJG7D+lV9bkkTXv8fcHzOYArxMzk0+ZKjZvLBIkYH699OEmU3RuZaA/tJY
gbKHUVProdkPdltiIEEWcRSEcHYh7fr55+2aktUK44yBGZZTSokR+LSMWVZu4OYG
Cr3d6eBrOzldB8ddqMB7K9mo6A7romRfnsWOZ+ftm19/P4kvx0PsFZ3vsjtgvvSY
YsA2hOrksYmYaJqK+ZUP32MCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSmhfUafdPw
Js8o4h8DoUBpnbj+jDAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEYxRUUvRUIwMEE4QzhFNzUxMTFFRkJFRDgxQjBFQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThGMUVFL0VCMDBBOEM4RTc1MTExRUZCRUQ4MUIwRUM0RjlBRTAyL3BvWDFHbjNU
OENiUEtPSWZBNkZBYVoyNF9vdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaD63DANBgkqhkiG9w0BAQsFAAOCAQEAAu8lFXe7hRn19HLOcaZo
ak67nIF0OCCaLJ3nZShgr6geGU0jT1+KRyp3stgozcbjTKnIzT/vIJm3a2d8ZPLi
hFQbMCH3j7Z02tlCyNMIN72XvsFicYEycxCZQzUUHv9Xdsxiq3pRiY5073vF9aBu
j0er93rVoIQA3gzg1NucbTSFqRzQc89rCqDk/hcWc+Oard93TRjXK3cbnkiybEDx
m8RwCB59GgeKzWnQwfjTHhzfOehzzKk6w1ExbsGnwKu5Eo5bT+wH10opJ1UXNOVe
5MukpR6exQA5VgvR2QMaGH7AeTgowJlOdg1BjoJ3VLW96Q7mIfDKH/Pmxelwg7Qj
OQ==
-----END CERTIFICATE-----
Generated at Sun Mar 1 20:24:02 2026 by rpki-client