Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer
File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer (raw, json)
Hash identifier: WFDSCtcAfBIIqo0e+/xxMHn9oVhnwjVUDEVQyM5I9PU=
Subject key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 53A3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Jun 2026 13:17:08 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 5.28.32.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Jun 2026 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21411 (0x53a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jun 3 13:17:08 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:eb:00:c4:85:13:8a:ec:85:48:0e:22:dd:cd:
d4:6a:61:45:9c:ba:8b:71:be:c3:ec:5b:68:16:24:
57:4e:26:e9:12:9c:a4:4c:81:67:5e:45:53:d3:42:
0f:4b:49:fa:91:c7:b1:78:b4:9f:bc:d2:45:4e:0b:
e5:04:7a:d0:4e:a8:12:ef:da:8d:73:b1:48:01:40:
b5:8e:4f:ae:fc:a9:ba:a4:1e:7e:23:04:f6:b6:34:
f6:86:83:f9:f1:b4:f8:8d:28:43:32:fa:9a:ee:fa:
72:19:0a:24:7b:61:96:12:77:82:27:ac:e2:6d:e4:
ce:55:db:84:fe:fd:9c:10:a9:06:2a:a9:57:9a:d8:
5b:90:e0:d8:9f:3c:7c:ee:f7:6f:76:85:a0:d7:a6:
f3:8e:6a:0f:02:8b:d1:a3:be:95:8f:f0:1d:c6:58:
85:3f:d3:db:c8:57:18:a8:b0:44:5d:42:2d:e8:45:
d0:04:e6:f1:0e:1f:ec:95:0f:c6:4d:a0:a0:87:99:
68:2e:a1:82:46:c2:60:c7:93:90:42:d9:f3:e2:b4:
2e:fc:9a:a2:25:fe:01:8c:5d:63:61:41:d4:7d:6e:
c9:c1:f1:5e:40:06:0a:c0:0f:65:0b:b1:37:6c:e4:
af:c6:55:24:39:ef:ee:9e:e8:72:0b:46:2d:50:02:
c8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
5.28.32.0/21
Signature Algorithm: sha256WithRSAEncryption
c2:d3:bc:8b:98:2d:97:aa:9c:70:0a:21:ce:c7:0a:e2:87:83:
9a:b8:d8:89:2f:75:64:ba:3b:2d:47:4c:04:8e:a3:57:50:5f:
78:f1:f0:5c:fe:6f:da:74:cc:9f:12:67:9e:35:8a:0b:d0:0e:
67:1e:7b:5b:cf:81:7e:e6:85:04:f7:6c:3b:21:89:c3:25:5b:
af:40:c4:44:3d:4b:47:36:6f:21:23:a4:af:07:2c:74:57:12:
17:0b:4c:21:38:26:33:d9:65:de:e7:cc:70:65:ef:c6:ad:b7:
cb:aa:54:a1:e7:b8:27:a3:96:1c:e5:fc:bf:11:81:50:7e:d6:
f6:9c:b8:5f:21:d0:3e:72:e3:e3:fe:0d:20:9c:57:65:46:38:
64:82:69:a5:13:a4:d1:b6:10:ad:08:03:94:52:9c:56:9b:c9:
ac:16:df:72:a1:7f:f1:f4:5b:1e:aa:3a:d8:c5:1e:ef:8a:ec:
96:9a:55:4d:46:0b:e4:1c:dc:88:a3:ff:4a:ec:64:f4:52:b6:
3c:17:d0:ce:ea:2c:5f:f4:67:1b:e1:eb:5c:d7:95:db:e5:fa:
1f:f9:ac:a4:89:a7:f8:d5:1b:66:d3:0b:31:75:be:8f:7c:7f:
d5:fb:f2:3a:f9:22:ec:52:51:aa:bc:29:c1:fc:40:0e:bf:3d:
2f:28:6d:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 09:25:42 2026 by rpki-client