Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8KAMMdCR4kVxN9Ko7zJndH7dfCI.cer
File: 8KAMMdCR4kVxN9Ko7zJndH7dfCI.cer (raw, json)
Hash identifier: 2nFp+iq36H3n83osR3DXga2K587lQoPp3LTkMYOj99I=
Subject key identifier: F0:A0:0C:31:D0:91:E2:45:71:37:D2:A8:EF:32:67:74:7E:DD:7C:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0294B2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915E402/47CB5BC46DF911F0B358F173C4F9AE02/8KAMMdCR4kVxN9Ko7zJndH7dfCI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915E402/47CB5BC46DF911F0B358F173C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:21:06 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: IP: 203.31.52.0/23
IP: 2406:200::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169138 (0x294b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:21:06 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A915E402, serialNumber=F0A00C31D091E2457137D2A8EF3267747EDD7C22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:15:bd:df:99:ea:c1:9a:97:e7:41:12:57:2b:
ce:a8:cb:4e:28:3e:05:a5:02:45:c7:77:bd:24:0d:
b0:ac:23:7c:b7:39:79:68:90:be:37:93:0c:5c:41:
c8:55:83:e2:0d:4b:cd:17:e1:e1:03:d6:3b:15:da:
f9:12:21:68:13:83:be:67:6d:e8:0a:68:62:30:b7:
f6:5e:74:c4:90:c5:3a:a0:32:7e:49:0e:84:5f:54:
26:c8:e0:05:bb:00:1b:5e:4f:76:61:63:54:ce:3f:
e8:9a:da:3e:12:bf:6c:56:3f:87:b7:19:ec:79:4e:
42:c9:ef:83:22:25:32:66:ca:19:5d:c4:8e:47:af:
92:91:7f:72:60:3b:15:27:43:0d:08:59:ad:20:c0:
5c:92:16:a2:5a:9a:16:5c:64:10:10:64:8a:ef:c4:
cf:fa:0c:87:33:55:f5:2f:08:98:ec:4d:f3:3a:23:
ce:ec:4c:5d:33:fe:47:39:26:6f:84:82:0f:6e:64:
1d:91:04:fb:9c:b4:eb:3f:9c:94:77:e9:61:e3:8e:
5d:95:51:dd:31:1c:0b:77:dd:2d:70:56:8a:13:4a:
dd:dd:4e:3b:1e:35:6d:54:b9:5e:27:fc:8e:37:41:
be:a1:0b:7f:ac:4c:44:9f:26:f5:86:e9:37:49:4a:
16:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A0:0C:31:D0:91:E2:45:71:37:D2:A8:EF:32:67:74:7E:DD:7C:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915E402/47CB5BC46DF911F0B358F173C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915E402/47CB5BC46DF911F0B358F173C4F9AE02/8KAMMdCR4kVxN9Ko7zJndH7dfCI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.31.52.0/23
IPv6:
2406:200::/32
Signature Algorithm: sha256WithRSAEncryption
28:67:8d:32:bd:62:39:86:9d:dc:40:27:d6:b4:49:ff:6a:68:
fa:34:ab:9d:8d:77:e6:63:43:94:69:16:e6:bf:09:8a:ad:20:
2d:d9:e4:8c:c8:3a:3b:b1:7b:6f:73:77:c5:09:2a:36:f1:4b:
0d:19:8f:33:8f:19:39:df:dd:1d:dd:1d:9a:ee:b4:ee:24:70:
6d:cb:a8:fe:ce:76:d8:bd:5d:cb:7a:e5:c5:32:87:81:6f:95:
6a:0b:fe:24:d9:c6:2f:be:14:17:44:6e:57:bf:8f:ca:7f:66:
b7:c7:d8:41:90:12:08:54:34:db:4b:bc:92:04:54:46:23:96:
ed:fb:bf:bb:98:39:e5:dd:c0:d9:a6:5b:11:f0:16:47:43:60:
8d:bb:8c:01:e4:fd:d8:d0:7a:ab:b3:7e:eb:52:da:1e:91:74:
46:61:18:46:3e:72:7f:f9:d2:4e:8b:09:4f:22:2c:e8:fe:67:
21:2e:a9:8c:1d:83:0e:4e:b3:97:1b:f3:1d:41:0b:a5:4e:0b:
3d:49:e4:b9:08:ce:86:82:e0:30:80:f5:5c:ca:13:a8:ba:b6:
87:07:18:75:09:b8:ee:0a:3f:e3:00:61:8e:87:8e:66:26:75:
6a:57:95:c3:6f:58:d9:92:20:b7:6c:ab:5a:ce:c8:4d:43:88:
4c:5f:48:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:22:34 2026 by rpki-client