Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MfrsXjAsGCKfmftHpyPypHmHF6w.cer
File: MfrsXjAsGCKfmftHpyPypHmHF6w.cer (raw, json)
Hash identifier: jwiufsfd2Su9Tz8K3vM8J9OnJ5UM/hIVM7wSeUENn4M=
Subject key identifier: 31:FA:EC:5E:30:2C:18:22:9F:99:FB:47:A7:23:F2:A4:79:87:17:AC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02AA31
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91417B0/EB082472D88311EF954A3D70C4F9AE02/MfrsXjAsGCKfmftHpyPypHmHF6w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91417B0/EB082472D88311EF954A3D70C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 04 Apr 2026 12:51:47 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: AS: 153550
IP: 2001:df4:f7c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Apr 2026 14:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174641 (0x2aa31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 4 12:51:47 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A91417B0, serialNumber=31FAEC5E302C18229F99FB47A723F2A4798717AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ca:1b:46:6e:bc:24:83:a2:e3:16:73:86:60:
8e:17:7a:4b:3f:93:11:8c:63:2f:d4:4e:18:fc:c5:
a8:02:11:1d:39:ac:d3:f1:1d:cd:e0:65:2b:06:de:
3e:9d:75:81:7f:34:ba:0b:af:0b:e8:7d:8c:70:47:
6d:90:6c:96:83:ad:35:e2:17:74:0d:18:a4:e2:2f:
d6:af:a5:15:55:ab:5c:39:7f:c3:ed:d5:3d:f5:64:
bb:fa:91:08:be:0e:3f:b9:72:41:6f:5f:07:06:46:
d2:11:ca:f4:ff:d7:21:df:09:25:ad:bb:ff:c8:1c:
8a:be:78:5b:fb:8a:85:5e:1c:ce:f3:15:3c:aa:88:
dc:fe:e6:86:61:d8:84:b6:44:53:6f:05:94:f2:12:
5e:dd:f8:6d:2d:52:56:83:88:75:74:8e:67:4f:cf:
f8:84:d2:e6:f4:59:aa:e6:2e:41:25:c2:7e:b4:94:
de:e7:77:5d:70:bb:46:af:86:66:46:72:bd:69:07:
a0:4b:53:2a:b3:00:2a:ac:48:8f:c4:75:2b:e8:35:
30:40:78:65:e9:ae:d9:2b:38:8c:bc:38:fe:8a:f8:
fd:a8:ad:b2:df:5f:8f:12:30:46:a9:8c:0f:61:44:
a1:00:50:b8:20:c3:89:4c:2e:7c:30:9e:5b:0d:b7:
e6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:FA:EC:5E:30:2C:18:22:9F:99:FB:47:A7:23:F2:A4:79:87:17:AC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91417B0/EB082472D88311EF954A3D70C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91417B0/EB082472D88311EF954A3D70C4F9AE02/MfrsXjAsGCKfmftHpyPypHmHF6w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153550
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:f7c0::/48
Signature Algorithm: sha256WithRSAEncryption
31:6d:5a:40:79:48:68:0e:67:8d:f4:03:1e:35:81:0f:19:19:
c0:63:70:6e:d2:de:1c:3b:10:a0:3e:6d:18:16:23:b4:f6:3e:
02:0f:bf:de:5a:ac:4a:42:d4:a5:f3:2e:b4:ef:78:f1:79:6d:
c8:f4:99:f9:01:31:fd:ec:a2:9c:c3:ca:59:4a:5b:88:7d:88:
f0:74:64:ec:4b:80:4e:a9:70:42:cb:8f:a5:a7:ca:e9:c7:c0:
d9:dd:d0:ec:b4:87:4f:c7:93:ad:eb:e6:09:77:50:3a:e6:0f:
29:bc:b3:62:68:ca:d0:ee:1e:6b:9d:a0:b5:99:3d:7f:4d:35:
15:d4:16:a1:fa:16:79:0c:32:09:5a:06:ff:dc:3c:18:b3:dc:
d7:24:12:d9:71:fd:93:69:cb:89:33:1a:7e:e7:ce:64:b9:e1:
02:5f:c0:74:a9:1c:85:7b:16:0d:17:31:f0:54:c3:c1:23:4a:
30:50:dc:6c:3d:35:0f:07:3c:e0:60:ca:69:c2:76:db:59:25:
ac:c6:b3:a7:3f:16:b7:f0:76:23:2b:68:99:bf:53:68:48:af:
4b:a8:79:88:03:ea:10:14:13:90:45:c7:71:ab:d8:9a:a1:36:
2e:38:7f:ff:87:95:09:ba:15:95:51:61:d8:5d:38:7a:bf:9a:
bb:b2:02:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 5 19:39:22 2026 by rpki-client