Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqdp3XRsgx9MTbKdamXeCNatle0.cer
File: gqdp3XRsgx9MTbKdamXeCNatle0.cer (raw, json)
Hash identifier: dfZiotmZNR6SBXZOqk6VOhsN3WpRLGFvkx84huc60jE=
Subject key identifier: 82:A7:69:DD:74:6C:83:1F:4C:4D:B2:9D:6A:65:DE:08:D6:AD:95:ED
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 029E7B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 04:06:47 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 136396
IP: 2001:df4:adc0::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 18:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171643 (0x29e7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 04:06:47 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A91921AE, serialNumber=82A769DD746C831F4C4DB29D6A65DE08D6AD95ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9d:9d:bc:5d:13:cd:b6:b5:3f:70:92:82:46:
62:a3:60:f3:62:64:0a:7c:de:e9:2f:43:7f:8e:31:
75:d3:15:36:4b:5d:77:44:19:d9:86:4d:e9:e1:3e:
11:6b:a5:bc:cd:47:16:91:57:56:60:49:16:03:22:
76:59:80:44:9e:bd:28:0b:55:9b:82:86:61:28:eb:
6d:77:0f:39:c6:56:39:4f:5d:84:88:92:b2:1a:40:
3f:64:bd:d8:b8:38:ee:68:f6:b0:4c:e8:ac:6a:f9:
17:b2:88:ae:00:85:33:c1:78:e9:c8:1a:2d:7b:17:
ab:65:5c:e7:dd:ae:fb:b1:e5:d2:f7:45:9b:dc:82:
12:4c:05:2d:52:7a:66:1b:21:78:6c:46:26:12:22:
e7:91:fc:a9:99:85:b3:c8:65:29:d4:29:63:da:de:
4d:b1:c4:8e:0f:a3:39:00:14:fb:ec:53:3a:36:35:
55:ca:5c:d2:5a:07:05:1b:d4:b2:d4:76:ca:9d:32:
9e:a8:2a:2f:e4:83:55:e0:5c:2e:65:b8:0f:01:5f:
f9:c4:bd:e2:51:f3:23:f3:ae:f8:4e:b7:da:7f:1e:
13:d6:81:9b:c6:e2:5c:62:d5:45:d6:bc:b7:e2:50:
78:ef:23:46:39:a4:0e:a4:11:d0:63:e7:96:a6:6a:
cb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A7:69:DD:74:6C:83:1F:4C:4D:B2:9D:6A:65:DE:08:D6:AD:95:ED
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136396
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:adc0::/47
Signature Algorithm: sha256WithRSAEncryption
2e:f8:ff:94:ad:1f:b0:f1:df:5e:b2:4a:11:4a:7d:96:06:e9:
fe:3d:02:ce:ac:70:c4:4b:ee:a3:a6:ae:ac:ae:a8:5e:55:70:
3d:c4:83:8d:6a:be:19:d3:98:99:8d:a8:46:0a:22:d2:2d:d3:
3c:62:d3:1e:df:6b:42:2b:4a:98:3d:a5:dc:11:9d:4b:81:a9:
e2:a6:57:6d:99:99:fd:84:7b:48:0a:05:54:0d:23:75:3a:21:
56:e4:53:ed:1c:04:2b:e0:9d:7d:4d:5c:35:97:21:d0:99:e3:
29:4c:79:ae:04:d7:52:b6:c5:9f:11:6a:13:21:48:c3:80:e0:
d9:b6:02:84:13:40:a4:51:4a:4b:06:1e:b6:0c:bd:e8:8a:9c:
72:7f:dd:c0:85:e0:29:63:7d:ae:b0:61:8d:9d:4c:f2:69:33:
6f:1c:35:07:e5:7e:4e:4d:4a:e8:36:f8:30:90:4c:44:a4:2f:
09:5b:28:b0:82:fa:65:71:78:98:eb:e7:15:17:1f:75:39:4a:
8a:d1:f8:1b:ac:2b:d6:09:42:07:83:c1:99:30:76:b9:05:54:
98:ed:81:7a:fc:0d:1b:db:06:1b:e3:a3:84:1e:96:4c:97:cb:
3d:d9:42:d9:36:ae:13:be:c4:47:a8:a1:cd:1d:c8:78:f7:e5:
02:33:25:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:32:31 2026 by rpki-client