
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer
File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer (raw, json)
Hash identifier: vWqm67XA63XSv2HT1wM0Uoyg5eT1OXuESH71C1LHcVs=
Subject key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 5416
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jun 2026 13:44:37 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: IP: 188.95.8.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 07 Jul 2026 15:26:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21526 (0x5416)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jun 30 13:44:37 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:36:ea:ff:55:34:87:ef:17:ef:5c:2f:ac:83:
ce:5b:4b:fc:19:ef:5a:69:bc:79:2e:64:cd:46:58:
b9:36:33:82:7c:21:ae:13:54:e7:9c:90:ef:54:fc:
ac:a3:e0:a3:0d:0d:a0:f3:78:10:ba:e7:e6:a4:d5:
cc:e8:24:57:fa:8b:a2:45:04:eb:b4:9e:0f:81:30:
f0:29:44:ee:8f:ec:61:96:dc:3a:94:40:c6:ad:fc:
f1:61:27:de:a9:6f:5a:44:34:e8:e9:73:a4:ea:00:
00:1e:e2:2e:0f:cc:fb:a1:27:eb:15:71:43:53:b5:
73:a8:0f:f3:ae:bb:d2:12:c1:41:e8:34:ea:f6:54:
3f:b8:7c:e3:12:74:b4:bc:ab:71:fa:ec:2f:42:b9:
f3:7b:ff:45:d2:f6:9c:56:c8:df:c2:f0:0b:de:66:
96:dc:97:9e:9c:25:74:10:ee:47:8a:ae:09:7b:91:
8b:c4:76:c4:de:35:0b:b0:26:4d:83:fd:02:59:8f:
7c:8d:a8:a2:38:3f:57:c5:96:c3:ba:2c:50:56:5b:
fc:6e:93:14:f5:af:5a:75:e8:5a:71:f4:3c:a3:1f:
65:57:e8:98:9e:8d:a0:3d:9d:68:7f:f7:38:97:95:
0d:2c:d4:99:d0:90:c2:75:c2:f5:1c:5e:39:00:b6:
d3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
188.95.8.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:25:fb:d6:e2:5a:a3:be:71:0b:56:17:a8:6f:19:54:4d:90:
48:5b:98:3d:f5:fc:3b:95:1f:40:3d:11:74:82:f6:21:60:20:
5c:fa:e3:04:61:ee:89:9f:59:42:c3:01:b7:07:ab:ff:fa:f3:
51:19:10:21:66:1f:0f:37:82:c6:69:53:63:f4:64:b0:a9:e0:
8d:3e:a5:fa:72:6e:f0:f9:01:ef:c5:78:de:d5:ea:aa:9e:23:
6f:9a:a3:85:38:7e:a1:21:f7:e6:d3:d2:6e:94:8c:af:23:17:
a2:bb:c3:59:e5:ef:f0:59:26:ce:73:68:89:be:94:28:89:de:
1f:4e:ad:62:56:f2:ad:0b:19:83:26:d1:81:85:f5:b2:9c:e4:
6f:00:c1:d3:5b:14:f4:8e:50:65:cf:f6:f1:d0:65:7e:82:95:
f6:93:3a:c6:17:fd:29:d8:f1:39:fb:7e:7c:a1:e9:f2:77:26:
ca:e8:3a:7c:3b:25:0b:ef:a0:ae:8b:75:cf:18:61:c9:eb:73:
0a:d4:9c:82:7d:f7:1f:59:37:25:5d:2f:a7:a7:b4:1a:4d:16:
07:95:00:38:b0:4e:0e:b3:a7:f7:4b:70:aa:e3:04:26:dc:74:
21:7f:7b:89:8a:aa:6e:84:0d:ac:36:bd:8c:94:7b:cf:54:1c:
b3:16:48:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 02:16:24 2026 by rpki-client