Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XGzjhzN4hpifs8PU5hhqNwtyjVA.cer
File: XGzjhzN4hpifs8PU5hhqNwtyjVA.cer (raw, json)
Hash identifier: Gl/eNgbB553P+jeVLrvfoDt2PlLGSu/M2/Mqe/wkXOg=
Subject key identifier: 5C:6C:E3:87:33:78:86:98:9F:B3:C3:D4:E6:18:6A:37:0B:72:8D:50
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02AB8C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.roa.net/rrdp/xTom/63/5C6CE387337886989FB3C3D4E6186A370B728D50.mft
caRepository: rsync://rpki.roa.net/rrdp/xTom/63/
Notify URL: https://rpki.roa.net/rrdp/notification.xml
Certificate not before: Thu 09 Apr 2026 20:38:29 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: IP: 103.169.92.0/23
IP: 2407:9e40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Apr 2026 16:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174988 (0x2ab8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 9 20:38:29 2026 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A91C44A00000, serialNumber=5C6CE387337886989FB3C3D4E6186A370B728D50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:db:4d:ab:06:20:53:a9:73:8c:21:6a:1b:cd:
18:e8:f7:0f:4c:2a:49:03:6e:fe:91:9b:8f:58:55:
33:5a:34:4c:b0:f0:87:8a:86:46:d0:7d:e1:7c:71:
5a:2f:b6:27:b6:7c:db:3b:19:d7:3b:42:85:6e:8b:
bb:64:1b:63:c4:51:f9:db:db:dc:07:fd:7e:d4:e5:
de:f3:2b:52:44:68:08:ae:1e:7d:53:84:d7:65:20:
23:be:de:8c:c0:b7:dd:1e:ba:c1:17:98:92:7d:4f:
97:fb:0b:b9:10:a7:1d:f9:41:99:33:58:4c:98:6b:
a1:b8:a3:04:3b:47:59:fc:48:5a:83:0e:93:0a:fe:
5d:7b:28:d6:1a:0f:fa:c5:9e:1d:84:e7:24:2b:78:
86:68:c0:54:bd:20:a9:57:b6:9a:7a:19:c6:90:9e:
0b:01:c5:60:92:3b:2e:cd:8f:f3:9b:1d:f0:58:eb:
a6:f1:95:b5:e6:ac:6d:be:58:04:f5:60:bc:93:cf:
b9:c1:1e:15:43:15:47:cc:df:e9:2a:32:94:e3:52:
0a:84:2c:c1:ea:11:36:fc:4e:c4:d9:e7:f2:be:31:
7b:8d:48:21:45:c3:91:17:e7:e2:59:a0:cc:23:47:
79:93:dd:40:51:8d:90:67:68:b8:31:c9:bc:ea:2f:
16:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:6C:E3:87:33:78:86:98:9F:B3:C3:D4:E6:18:6A:37:0B:72:8D:50
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.roa.net/rrdp/xTom/63/
RPKI Manifest - URI:rsync://rpki.roa.net/rrdp/xTom/63/5C6CE387337886989FB3C3D4E6186A370B728D50.mft
RPKI Notify - URI:https://rpki.roa.net/rrdp/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.169.92.0/23
IPv6:
2407:9e40::/32
Signature Algorithm: sha256WithRSAEncryption
d2:75:d9:b8:bf:a1:9f:0e:92:57:b3:cc:81:82:24:b4:61:4b:
4a:f3:4b:cc:d0:31:86:b6:89:63:cb:5a:66:30:04:6a:a0:1b:
ec:34:1c:48:9c:14:14:36:89:04:38:23:4a:70:b8:37:87:d2:
ee:a3:c3:f0:44:6b:ec:4f:56:5d:2c:0c:9e:b3:53:3d:c8:13:
18:54:d3:55:1a:5f:52:c0:c2:53:fc:3b:72:a5:a0:34:8d:de:
66:aa:ae:a7:2b:2b:31:0d:08:4a:68:1c:f7:17:87:23:6a:82:
e4:89:29:0f:78:2c:8f:ef:38:7d:66:b8:2e:52:2b:f1:6f:23:
8e:7b:7f:0c:58:5e:18:9c:49:10:e5:69:1a:11:70:35:ce:dc:
40:4e:4f:07:53:bf:63:05:8b:ab:af:87:bb:28:c9:5d:7a:98:
98:6e:f1:32:99:07:df:40:7e:26:72:87:bb:13:50:67:1e:18:
3a:36:12:62:04:64:97:56:1c:94:52:48:64:c4:82:3c:17:d2:
ed:9d:66:6e:1d:3c:dc:e4:10:77:60:62:6a:06:8f:46:ec:16:
ab:37:ab:46:54:22:f1:95:f2:7a:fa:ec:e6:55:c9:d6:f1:ef:
aa:7e:8e:b3:4f:e0:2a:d3:34:d9:d1:82:82:07:11:0f:27:a3:
57:94:77:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:29:20 2026 by rpki-client