Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer
File: cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer (raw, json)
Hash identifier: DVG7Dp0cxBVWnSgQ4hgVAvLu5j2XO7N0+EIxJXLgpZ4=
Subject key identifier: 70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B836
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 30 May 2026 20:01:49 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 55745
AS: 132404
AS: 133174
IP: 2400:5180::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 20 Jun 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178230 (0x2b836)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 30 20:01:49 2026 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A913CA4B, serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f8:2a:74:b1:a5:fd:9e:97:5e:a9:78:ad:46:
ca:f9:92:b8:5f:08:e6:66:36:63:8d:3e:69:82:2c:
81:62:84:66:43:65:3e:fa:44:ec:23:16:01:1a:51:
b6:8e:78:f1:07:d1:90:fb:1c:f1:8f:fa:49:ac:c5:
00:dc:26:05:2c:63:fc:78:10:47:45:b9:90:b7:62:
5c:92:e5:9b:d9:95:8e:7c:08:69:12:aa:39:d3:22:
31:be:2e:0d:13:d8:a8:76:47:e7:5e:7c:4e:1d:a7:
c4:80:32:9d:56:a6:4a:fa:e9:64:80:aa:ee:0a:83:
88:4c:a2:de:2c:27:57:fc:3a:06:5f:85:64:03:52:
79:27:89:6a:e6:ad:dc:2d:a3:e1:f6:a0:f7:52:c6:
93:19:1f:96:0e:de:f2:6b:43:a1:9f:9f:f0:ea:12:
a9:77:7c:dc:a9:37:1d:e8:f2:e4:71:98:61:1c:ee:
55:23:6b:ec:48:da:f3:68:02:32:a9:8c:c5:15:ea:
cf:92:d6:23:b9:94:51:40:6a:18:3b:ef:d6:ec:d9:
a3:ab:1e:19:c8:a7:0a:89:38:a4:c5:16:1d:e6:6b:
84:f0:0c:e8:a0:f5:be:20:06:1a:74:d6:91:22:fd:
da:7a:ec:96:3d:1f:6c:11:19:2c:1d:93:63:7d:8c:
6c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55745
132404
133174
sbgp-ipAddrBlock: critical
IPv6:
2400:5180::/32
Signature Algorithm: sha256WithRSAEncryption
52:a5:8e:ea:99:e5:d1:19:af:6f:17:ae:d7:09:fc:14:ef:b6:
51:c6:7d:ce:68:61:15:9b:50:e3:1b:b9:75:30:48:06:bc:da:
d8:e3:a7:a2:43:1a:da:40:d5:60:f9:bf:05:c0:77:b4:04:c5:
e3:e6:7b:d2:62:b1:07:d8:4e:13:d4:67:d9:55:20:1c:14:33:
b7:16:3f:ca:c7:32:0e:ea:47:56:6e:3c:ff:eb:00:c6:b8:a5:
58:e2:82:15:1f:1a:72:4a:6a:e1:7b:43:aa:ca:76:0f:9b:3e:
8a:f8:84:95:c3:c7:d6:b7:bb:cd:ef:73:49:ea:6d:cb:f4:23:
aa:c3:c6:0f:cc:19:14:ff:2c:11:12:f0:88:3f:ea:75:e4:ca:
8a:33:e0:de:40:6f:c8:d9:d8:94:03:43:38:ce:1f:fa:b6:a7:
c1:7c:18:55:fc:3c:66:a4:61:bf:e0:c7:69:31:7b:1e:5e:59:
6f:43:be:aa:00:ff:90:ad:00:cc:40:58:34:6c:db:18:0e:13:
58:1d:23:f7:ab:f0:c7:d1:2c:3a:5f:4a:d0:dd:9a:a6:31:bf:
59:ab:03:b2:f7:cf:76:d5:af:f0:ab:0d:6c:92:1c:57:62:a7:
f7:88:41:00:a4:8c:93:95:b0:5a:c3:43:92:20:60:7c:b6:74:
d0:b8:e4:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:34:38 2026 by rpki-client