Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cAIGO_MCy6RvkkWweaSbEa2W6uQ.cer
File: cAIGO_MCy6RvkkWweaSbEa2W6uQ.cer (raw, json)
Hash identifier: 8IRI/m1Ks7zwMh1zkDd8l32gdHt23qIw1UuEWGJ0NXs=
Subject key identifier: 70:02:06:3B:F3:02:CB:A4:6F:92:45:B0:79:A4:9B:11:AD:96:EA:E4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 029CDE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9184684/BFCAB5CC398611F0ACC55914C4F9AE02/cAIGO_MCy6RvkkWweaSbEa2W6uQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9184684/BFCAB5CC398611F0ACC55914C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:59:12 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 153457
IP: 2001:df4:a0c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171230 (0x29cde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:59:12 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A9184684, serialNumber=7002063BF302CBA46F9245B079A49B11AD96EAE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1a:55:13:57:91:85:97:9e:bd:3f:de:42:a6:
24:aa:13:13:06:e7:b6:0a:aa:26:0d:42:8a:ce:71:
27:c1:f1:74:e8:a9:16:70:d3:cf:da:d5:95:14:d5:
30:be:c2:ed:2d:32:9a:f9:13:a8:32:41:51:e9:53:
32:cf:89:7f:35:26:99:12:18:7b:22:fc:b8:fa:9b:
f0:6e:79:23:0d:70:dd:35:6c:a6:ea:60:11:7f:84:
65:b2:76:88:d5:f9:ec:1e:3b:79:7a:b4:8c:21:6b:
6b:0d:df:26:20:5b:3a:6a:01:50:40:86:5e:53:59:
26:39:2e:1c:8e:e6:fe:1a:07:2c:66:79:94:ad:71:
ed:81:25:89:78:6d:42:17:2b:c8:3b:95:48:b2:6b:
a8:fc:ed:cd:b5:92:3a:f8:84:e4:ef:55:f0:d5:9f:
3e:9c:dd:4c:a9:ef:70:de:04:f5:d9:70:20:c3:e0:
b0:29:e7:db:a1:95:e9:af:5c:5c:86:ee:27:30:fa:
e2:fb:4b:e2:48:39:e6:c2:12:2c:23:e9:5f:b8:3e:
dc:27:29:9b:cd:3b:32:d1:89:d9:58:0e:6a:5a:86:
cb:1a:6c:96:31:88:bf:02:54:ee:ac:7a:b9:79:d7:
77:5a:74:e6:67:4d:60:a6:36:c1:44:3d:b1:7c:be:
71:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:02:06:3B:F3:02:CB:A4:6F:92:45:B0:79:A4:9B:11:AD:96:EA:E4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9184684/BFCAB5CC398611F0ACC55914C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9184684/BFCAB5CC398611F0ACC55914C4F9AE02/cAIGO_MCy6RvkkWweaSbEa2W6uQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153457
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:a0c0::/48
Signature Algorithm: sha256WithRSAEncryption
6a:3b:da:6b:1c:ca:f0:39:88:6f:bc:52:27:9c:a0:83:26:fb:
e0:4d:3d:af:bd:72:ee:7c:80:38:88:c9:9f:20:37:15:71:e2:
14:f5:07:db:f1:34:0b:99:de:01:f7:1c:ad:00:27:23:6b:ac:
7f:5a:69:89:50:65:99:e2:22:3a:88:69:45:0a:3b:e8:83:4e:
c3:e1:f6:1d:0e:77:22:29:17:57:dd:75:42:fa:37:f3:70:b8:
8c:50:14:37:30:c3:9d:35:9d:ce:59:7d:b8:30:1b:15:88:b3:
c6:cc:41:22:45:37:e7:88:29:87:fa:f7:e1:1b:6b:f0:59:54:
3c:ea:39:5b:36:25:d8:9d:59:16:05:5b:14:e8:af:7e:c1:0c:
6f:ae:19:d0:a5:c3:9c:2b:97:bc:c7:39:07:1b:bf:f0:ad:e8:
ee:8d:01:a5:2b:c7:9e:b0:5e:11:fe:49:d7:9d:cf:c8:22:99:
9b:29:f8:4d:f0:7b:de:06:34:e8:46:57:e3:8d:ad:1d:e6:a0:
a4:d1:a4:0a:0a:f4:90:48:50:5a:df:c0:d2:63:fb:25:24:bc:
4e:a7:3d:2e:4e:bb:10:e3:36:2c:bf:8f:a8:af:6c:f6:61:1e:
e4:74:c5:e7:eb:6a:4e:85:83:80:d5:47:a6:88:d1:1d:11:c6:
b7:5e:0e:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:22:49 2026 by rpki-client