Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDvPbbKI6WRw000Yr7PkqBJ5GGc.cer
File: qDvPbbKI6WRw000Yr7PkqBJ5GGc.cer (raw, json)
Hash identifier: 6FoJJZGtJyEV/0bUFqYZNWRHbPcQZsWKB30MXGrBc1M=
Subject key identifier: A8:3B:CF:6D:B2:88:E9:64:70:D3:4D:18:AF:B3:E4:A8:12:79:18:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0297D8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/qDvPbbKI6WRw000Yr7PkqBJ5GGc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Feb 2026 03:36:58 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 153755
IP: 163.223.240.0/23
IP: 2001:df5:5140::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Mar 2026 14:59:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169944 (0x297d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 03:36:58 2026 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9167F95, serialNumber=A83BCF6DB288E96470D34D18AFB3E4A812791867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:30:b3:48:cd:31:d7:bd:37:67:32:4f:46:7e:
85:09:28:57:14:ba:c3:10:4e:bb:e5:09:56:31:a9:
7f:6f:95:f2:8f:51:df:c6:05:a3:fb:77:6b:d4:ac:
ab:28:44:18:29:d6:9f:29:cf:3b:cc:2b:fb:44:6e:
b1:bb:45:62:94:c6:52:f7:de:7f:f5:cf:9f:96:04:
65:3f:4f:cc:a4:c5:a5:8a:04:0d:a5:b2:19:29:0a:
6b:94:04:8e:51:50:fd:fc:9d:e5:2e:12:92:6e:f3:
22:81:89:94:e1:ba:c4:81:3c:6e:ac:84:19:12:6a:
78:16:a3:84:de:f0:d1:34:24:d5:8f:84:26:62:bb:
cc:51:7e:33:59:24:33:44:64:97:b8:55:82:3f:11:
d5:0f:ef:c1:96:74:31:b6:22:d9:7a:f7:f3:50:fd:
00:67:cb:c2:12:b2:f3:f2:3f:f6:4e:f0:e4:6a:2a:
6a:d1:a3:b5:29:0e:97:67:5a:b1:8a:b0:db:12:71:
f8:77:2d:be:e9:c7:01:20:61:17:73:cc:a5:ed:36:
a8:09:c2:b7:de:3f:11:63:52:ac:b5:5b:d7:74:85:
60:b9:93:a6:e6:3d:8d:a9:06:da:aa:1f:78:84:0d:
1c:a9:ef:7f:82:9e:40:41:51:44:70:b0:da:08:7c:
a6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3B:CF:6D:B2:88:E9:64:70:D3:4D:18:AF:B3:E4:A8:12:79:18:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/qDvPbbKI6WRw000Yr7PkqBJ5GGc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153755
sbgp-ipAddrBlock: critical
IPv4:
163.223.240.0/23
IPv6:
2001:df5:5140::/47
Signature Algorithm: sha256WithRSAEncryption
14:3e:a6:ce:c2:31:c3:1d:ac:d5:c3:3e:7e:fb:37:41:d2:c4:
53:8b:83:4b:b4:ce:de:67:d8:3b:4e:57:8b:0a:38:4a:bc:5f:
16:ba:d3:cc:62:6f:5b:9f:08:63:af:9f:d0:d5:20:5d:41:4d:
51:51:29:74:94:78:13:0e:16:34:db:25:c1:0a:52:76:b6:3e:
e0:4f:5b:d3:d8:49:01:71:09:0e:1c:cf:88:ab:17:8b:14:fc:
5e:f5:69:9b:c5:ad:da:c1:e2:ce:1d:45:ae:e6:c0:4c:7e:95:
d4:30:24:3c:1f:8b:74:14:4f:82:17:79:6e:9e:64:f2:4c:c1:
8e:c2:ef:5b:c6:da:52:f3:b9:71:c2:6b:98:a0:65:99:6e:80:
8e:9a:5d:17:eb:55:3a:d7:7b:f0:1c:c8:8f:08:48:4f:b1:e4:
3c:d7:15:8e:5e:5c:62:b9:50:11:61:4e:db:59:69:b4:ff:bc:
8e:d4:b3:ab:48:dd:ce:7f:6b:6f:46:c1:8e:57:0e:14:cf:67:
d3:f9:9a:55:14:df:8d:20:be:aa:02:40:88:86:e2:34:9d:79:
d0:e4:5b:86:a6:6e:ba:8c:64:57:db:6d:84:e4:dc:5f:bc:7e:
71:b0:28:93:b4:95:bd:f7:61:63:7d:e1:b8:f1:81:49:52:91:
fe:c5:c7:24
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:21:02 2026 by rpki-client