Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer
File: PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer (raw, json)
Hash identifier: 2D9vIn49Nx1UKRFgiVr3Qh4t9vde2SVRyTVej5sv4bA=
Subject key identifier: 3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02BC21
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Jun 2026 13:02:05 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 141459
IP: 2406:e1c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179233 (0x2bc21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 9 13:02:05 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A914E6AA, serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fc:3d:a0:10:fe:d5:f0:76:b8:e3:7d:6b:63:
cd:b9:d7:be:6e:66:15:b9:28:cf:8e:37:b2:e4:eb:
f9:a2:a9:8a:f3:e7:f9:e7:26:f3:3a:19:08:7e:1e:
74:89:e1:40:ed:57:e4:f9:ac:60:dd:88:c0:fb:e7:
08:c0:0c:35:52:27:7b:9e:b4:dd:d2:01:5d:18:e4:
82:fe:0f:22:46:6a:33:5a:3b:88:4f:c6:c7:12:40:
5c:4b:5d:e9:75:ff:a6:f2:4f:39:88:6f:75:43:9e:
35:8b:ce:8b:5c:f0:87:54:3d:e1:b6:3f:cd:12:ca:
aa:da:57:28:7d:da:4f:1c:3f:3c:9d:9b:c6:61:fd:
13:45:de:a6:55:b7:bf:37:13:a3:46:a0:47:49:41:
8c:9f:c5:5c:b0:29:27:64:bd:0e:7c:90:bc:aa:92:
c6:92:4f:e4:fc:8c:1a:08:75:9a:b3:03:66:0d:55:
c2:84:84:1c:48:86:47:54:f6:a5:17:8f:12:44:f1:
e5:45:90:ae:5c:68:eb:d3:1c:c2:3d:a5:4f:16:14:
4f:d2:ff:4f:c6:ae:56:e7:a2:fc:6f:77:c0:86:e8:
77:03:0b:ff:a9:8d:0f:af:21:24:88:f5:d5:98:f0:
c4:28:a0:c8:58:e7:76:f7:63:44:09:63:1f:10:d5:
76:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141459
sbgp-ipAddrBlock: critical
IPv6:
2406:e1c0::/32
Signature Algorithm: sha256WithRSAEncryption
c8:03:25:49:47:0f:a7:54:ce:1e:68:2a:19:eb:74:03:e3:f9:
d8:51:a8:e7:61:81:29:03:fd:85:aa:e2:f7:e2:08:6e:57:52:
b4:41:c9:b7:c8:a2:89:a2:00:d8:0a:47:55:ca:55:04:60:b6:
b4:d2:33:60:de:a8:08:fe:5f:42:24:f6:ba:a6:31:cc:96:8c:
d3:a5:07:f4:7f:18:12:7c:63:d5:ed:08:cd:1b:4b:a1:24:e2:
63:2a:0d:14:92:a3:39:eb:f7:d4:7e:71:99:97:6b:35:d8:d6:
1e:19:49:23:04:79:02:3a:89:b3:a4:3c:c2:b2:42:6b:dd:58:
c3:82:f7:e1:d7:2c:7e:79:3f:66:46:ae:1e:57:26:0f:6a:c2:
3d:21:4b:12:d5:35:4f:0c:e2:af:7d:35:2c:9c:fd:1d:d6:89:
03:ba:b7:a3:15:f0:40:51:42:b9:3e:fe:a4:9e:d8:c3:c6:ea:
65:f7:e6:0f:46:82:47:9d:65:98:ed:32:f1:bd:46:d8:cd:3b:
24:34:bb:8a:f3:c2:78:92:0b:4b:df:c7:98:b4:62:54:4c:30:
57:6c:36:49:93:42:77:0e:e2:0e:87:e4:4a:dc:f1:8d:0f:0b:
3c:d3:04:38:8f:cd:f9:3f:a8:ae:94:2c:27:c9:a5:32:62:3a:
f5:b2:31:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:29:08 2026 by rpki-client