Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer
File: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer (raw, json)
Hash identifier: 40WnnX0+wA9MrTHwkJkOCvTEQnRK0aiVl7IQhwFZli4=
Subject key identifier: DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02BAFF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Jun 2026 13:25:28 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: IP: 45.117.192.0/22
IP: 103.57.228.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178943 (0x2baff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 4 13:25:28 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A915FA96, serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:82:2a:34:01:5e:c1:e3:18:4c:5b:72:ca:bf:
4b:88:8c:13:1c:6d:76:8d:22:1c:8a:41:0f:54:cd:
19:ec:f6:47:c1:75:d8:18:1d:b2:5d:da:cf:d7:f9:
78:c7:93:c8:16:14:91:8a:dc:25:7e:64:5c:e3:6c:
96:6d:bd:11:1d:33:60:d0:4e:d6:b2:92:fc:ed:eb:
e5:5d:a0:49:e5:7e:1b:b1:98:0d:97:35:70:b8:d6:
f4:89:b0:47:38:38:ea:90:a5:13:0b:ed:a5:19:3e:
6f:44:cb:c6:bd:a4:b7:24:50:7d:f9:78:a9:30:69:
6d:1e:b8:5d:ad:da:ea:77:7c:03:bd:ee:36:a6:98:
76:cf:65:45:d8:f8:11:b8:92:01:41:6f:75:2b:c0:
45:86:5b:44:4a:50:55:73:a2:41:1e:c0:7e:d6:95:
66:1a:c3:ea:80:9f:59:10:98:c0:2e:96:15:c2:74:
ea:3d:14:ac:d4:4b:66:19:c5:62:93:f7:3a:00:25:
bf:9a:39:69:ff:18:9d:e7:8d:32:a8:9d:09:28:ca:
b0:2b:07:5e:a8:c5:65:28:0e:a5:af:91:7c:f3:21:
05:48:20:fa:ea:eb:88:51:59:c5:de:db:56:98:73:
3a:1a:4c:46:0c:24:cb:6d:27:36:08:60:45:f8:2c:
f5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.117.192.0/22
103.57.228.0/22
Signature Algorithm: sha256WithRSAEncryption
08:00:38:34:2f:d7:99:7f:38:69:63:5a:75:25:0d:8d:a5:0a:
1a:4e:66:03:5d:8e:35:a3:e5:fd:d8:41:de:d9:d2:e1:f9:db:
22:94:f2:ee:b6:bf:95:8c:4c:89:aa:95:eb:c9:0b:f4:f9:cd:
6b:7c:ba:ba:40:6d:99:95:ae:d4:fd:fc:a6:dd:77:42:27:d8:
62:1d:d0:c9:57:6c:54:ce:0c:a8:12:4d:4c:14:b0:5c:a6:9d:
58:50:6d:57:0c:54:85:1b:21:aa:54:b1:8c:46:4e:e8:79:74:
03:12:8a:b9:1b:1d:46:db:c0:1d:03:f9:fe:7b:76:84:65:c4:
09:5f:b5:d9:ea:cb:eb:94:0f:fd:ff:1b:48:ec:fa:66:a5:7a:
94:8d:aa:84:52:a3:bd:67:f8:80:35:d6:e7:28:0c:31:41:65:
83:05:cb:0a:ef:5b:b4:9e:19:d9:ec:ba:78:10:27:0e:b4:d6:
a2:84:59:78:14:31:94:61:03:0c:25:04:ab:b7:34:ff:3c:a0:
a1:6b:70:68:a8:aa:5a:c7:37:4a:38:36:0e:ad:5f:4f:80:d7:
8d:5b:61:a3:0f:64:1c:d5:dd:4a:fa:25:a9:b9:cc:28:ab:36:
3b:de:c9:8e:be:34:7a:54:c2:3c:54:49:79:a6:a7:44:34:c5:
5f:e8:8e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:57:51 2026 by rpki-client