Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HzX0DDZLiLCJrhL97baBXD8RqQY.cer
File: HzX0DDZLiLCJrhL97baBXD8RqQY.cer (raw, json)
Hash identifier: Ymz2WJ914ibNq7kz5hR0VUkpBOB8YTjDWi3Q3OsFCeE=
Subject key identifier: 1F:35:F4:0C:36:4B:88:B0:89:AE:12:FD:ED:B6:81:5C:3F:11:A9:06
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02BC3C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91924F8/71FD1338641111F18113D0D69B47A888/HzX0DDZLiLCJrhL97baBXD8RqQY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91924F8/71FD1338641111F18113D0D69B47A888/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Jun 2026 14:42:37 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: AS: 132023
IP: 2402:5fe0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179260 (0x2bc3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 9 14:42:37 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A91924F8, serialNumber=1F35F40C364B88B089AE12FDEDB6815C3F11A906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:28:a2:ae:34:c2:bf:ec:0c:d8:24:10:62:23:
28:6d:ab:e4:7e:de:10:c2:a0:2e:b1:ed:4a:6b:bc:
b6:a9:c2:77:b5:96:8f:b4:ea:bd:fb:76:c4:5a:ce:
be:c7:2b:5e:09:74:20:c0:14:56:a1:2c:46:2f:6b:
8b:6a:c0:a1:8c:11:6e:b5:a6:59:5a:c3:24:e2:0b:
c1:34:b3:6b:35:93:4c:a3:d7:e9:53:af:c9:2c:90:
a0:b4:ec:06:c6:dc:32:4d:23:7c:88:b0:7e:4f:b0:
f1:09:17:fe:c9:c1:c8:d4:68:d8:b2:f0:fe:25:a4:
64:7c:9a:5d:db:59:f3:29:88:fa:bb:b5:41:b0:27:
a2:27:24:82:f4:51:b9:9c:bc:7a:59:35:45:ca:6e:
e1:25:71:a9:d0:76:2d:c7:52:c5:dc:50:12:77:ee:
88:95:cc:3a:6c:fe:43:35:56:f1:2c:fd:ff:ac:71:
cf:05:81:c3:7a:2f:79:57:51:92:e6:ca:ad:2d:14:
d4:67:6f:31:8e:cf:9a:d2:a8:a6:49:94:3f:ca:31:
3b:a3:00:8a:72:c7:08:73:e0:79:92:90:23:9b:e3:
c7:98:32:51:ef:8a:2b:00:3b:47:62:b7:a0:a6:60:
dd:ad:37:2f:8e:bf:d0:f0:d0:b1:cc:52:a3:2f:93:
dc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:35:F4:0C:36:4B:88:B0:89:AE:12:FD:ED:B6:81:5C:3F:11:A9:06
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91924F8/71FD1338641111F18113D0D69B47A888/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91924F8/71FD1338641111F18113D0D69B47A888/HzX0DDZLiLCJrhL97baBXD8RqQY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132023
sbgp-ipAddrBlock: critical
IPv6:
2402:5fe0::/32
Signature Algorithm: sha256WithRSAEncryption
42:57:c0:5a:a8:47:0b:95:48:53:a5:c5:fa:4f:d5:d0:84:8e:
bb:f0:ff:94:98:17:1a:bf:08:16:02:92:05:86:00:29:1b:d8:
f9:69:3e:e9:a0:c8:f5:f6:41:75:f5:d7:a5:7d:32:92:24:36:
e5:bc:25:be:f5:cf:f0:ab:07:30:c4:35:64:8d:02:83:5b:61:
e2:83:42:f6:0a:d7:d0:f8:ae:1b:b6:a2:49:ff:33:9f:10:f4:
56:50:f1:be:cb:d2:fa:ca:30:ba:54:f1:0b:1f:51:d1:e6:d2:
22:e7:cc:e7:33:a3:de:da:fb:d5:84:f1:cc:06:7e:0a:ec:c1:
e9:33:1f:13:90:27:11:d2:10:f6:4e:5f:33:6e:66:7b:d9:b4:
9e:ec:cd:db:a3:79:e1:80:41:f6:e2:e3:04:38:33:7f:52:40:
1e:66:e6:45:97:3a:99:cd:3c:34:e7:bd:c2:f1:63:38:85:e4:
83:9b:3f:5f:fb:7c:6e:b6:a9:bd:99:60:cc:57:49:68:35:15:
d0:71:c5:45:c0:f5:31:42:b2:b8:54:28:45:e5:b4:11:4d:f0:
11:05:38:7e:f4:d0:d5:20:00:6f:b5:3c:53:77:36:b8:d6:1d:
82:b1:57:26:26:5a:7e:37:f3:99:3d:22:0e:05:98:21:4f:96:
3e:36:1f:2d
-----BEGIN CERTIFICATE-----
MIIGGzCCBQOgAwIBAgIDArw8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDYwOTE0NDIzN1oXDTI3MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOTI0RjgxMTAvBgNVBAUTKDFGMzVGNDBDMzY0Qjg4QjA4OUFFMTJG
REVEQjY4MTVDM0YxMUE5MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCwKKKuNMK/7AzYJBBiIyhtq+R+3hDCoC6x7UprvLapwne1lo+06r37dsRazr7H
K14JdCDAFFahLEYva4tqwKGMEW61pllawyTiC8E0s2s1k0yj1+lTr8kskKC07AbG
3DJNI3yIsH5PsPEJF/7JwcjUaNiy8P4lpGR8ml3bWfMpiPq7tUGwJ6InJIL0Ubmc
vHpZNUXKbuElcanQdi3HUsXcUBJ37oiVzDps/kM1VvEs/f+scc8FgcN6L3lXUZLm
yq0tFNRnbzGOz5rSqKZJlD/KMTujAIpyxwhz4HmSkCOb48eYMlHviisAO0dit6Cm
YN2tNy+Ov9Dw0LHMUqMvk9wdAgMBAAGjggMQMIIDDDAdBgNVHQ4EFgQUHzX0DDZL
iLCJrhL97baBXD8RqQYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTkyNEY4LzcxRkQxMzM4NjQxMTExRjE4MTEzRDBENjlCNDdBODg4LzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5MjRGOC83MUZEMTMzODY0MTExMUYxODExM0QwRDY5QjQ3QTg4OC9IelgwRERa
TGlMQ0pyaEw5N2JhQlhEOFJxUVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgO3MCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAJf4DANBgkq
hkiG9w0BAQsFAAOCAQEAQlfAWqhHC5VIU6XF+k/V0ISOu/D/lJgXGr8IFgKSBYYA
KRvY+Wk+6aDI9fZBdfXXpX0ykiQ25bwlvvXP8KsHMMQ1ZI0Cg1th4oNC9grX0Piu
G7aiSf8znxD0VlDxvsvS+sowulTxCx9R0ebSIufM5zOj3tr71YTxzAZ+CuzB6TMf
E5AnEdIQ9k5fM25me9m0nuzN26N54YBB9uLjBDgzf1JAHmbmRZc6mc08NOe9wvFj
OIXkg5s/X/t8brapvZlgzFdJaDUV0HHFRcD1MUKyuFQoReW0EU3wEQU4fvTQ1SAA
b7U8U3c2uNYdgrFXJiZafjfzmT0iDgWYIU+WPjYfLQ==
-----END CERTIFICATE-----
Generated at Sat Jun 13 07:54:50 2026 by rpki-client