Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer
File: TSeJUeK9itKFuUCo6p5X43lxHms.cer (raw, json)
Hash identifier: ncgmKdlXPjn3+k+7CxJRgrafNEBGBlmsx6CJISi3E9Y=
Subject key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 52CB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 17 Apr 2026 12:45:09 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 85.113.86.0/23
IP: 193.149.158.0/23
IP: 193.149.166.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 28 Apr 2026 14:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21195 (0x52cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Apr 17 12:45:09 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:91:21:81:f1:af:15:0b:ef:34:07:89:e6:02:
70:a2:78:cf:a0:7b:d2:3d:f1:b6:01:ab:bb:bc:20:
71:a6:da:f5:a1:a2:1b:29:4d:8f:b8:dc:7e:24:9d:
0b:00:b1:31:15:69:22:35:a5:13:1d:db:fd:87:74:
4d:8b:95:db:66:eb:59:6d:03:32:e1:0f:63:e8:e4:
32:71:ff:3c:9e:1f:83:36:74:10:46:45:02:e6:aa:
b5:40:bf:3d:59:83:31:c7:98:24:ad:f6:98:e1:8b:
cd:75:9d:3c:95:ee:57:12:0d:b8:6d:31:55:21:62:
a8:56:dc:c6:7a:59:75:a0:db:9c:bb:6c:8f:ed:55:
39:04:01:f1:5a:97:82:c1:fd:ea:c4:79:a0:d5:27:
e3:3e:e7:93:1d:2a:a5:b9:5c:ec:d4:db:82:aa:32:
86:bf:3b:8c:23:6d:57:8e:83:ec:bf:fa:e5:b0:8d:
eb:71:af:30:9c:6b:76:cd:2e:f8:37:c0:2e:5c:f8:
53:b5:21:d5:a4:66:d9:88:0a:79:47:ee:97:6e:27:
f9:34:41:93:85:39:b3:f5:6b:3e:10:ad:e3:76:9d:
6f:39:f0:2f:6a:70:39:49:30:30:77:07:a1:4b:13:
ab:8e:48:d0:54:48:05:27:44:1d:a5:7a:46:4f:b5:
ad:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
85.113.86.0/23
193.149.158.0/23
193.149.166.0/23
Signature Algorithm: sha256WithRSAEncryption
22:c2:ec:ca:ee:16:07:4d:ad:c7:56:8c:9c:ca:c8:da:2d:d4:
2f:0a:78:7e:f0:fa:80:49:fd:a5:31:93:69:21:fb:ab:15:cb:
54:ae:ef:20:55:28:a1:70:ca:38:2d:29:44:8a:f9:99:fa:90:
45:e8:89:c2:b8:18:a2:b2:a4:bb:08:c3:92:a0:fc:c4:5a:ff:
d5:59:d9:2a:9d:50:13:74:ab:bb:e5:1b:38:e8:fd:3a:46:a5:
8c:aa:84:00:9f:67:d0:99:ed:e4:36:5a:86:06:f3:22:c0:ba:
a4:49:49:1c:cd:82:2d:cc:7b:89:cc:99:84:21:65:fa:2c:3c:
81:b3:25:f2:7f:3e:9c:72:58:db:8b:5d:b3:89:c9:aa:39:94:
8f:e4:df:bb:c4:74:41:38:4d:49:0e:8f:d2:01:ed:ff:71:bc:
f0:cb:8d:a2:a0:5d:60:6a:e7:91:58:ec:96:0e:dd:44:b9:d2:
4d:f7:a9:e1:9a:f7:58:01:6e:12:40:f2:ff:ff:74:c0:03:e3:
77:1b:db:b9:c7:a7:c0:cd:41:cd:59:5b:3f:64:a4:df:b5:1b:
42:bd:9c:46:69:ba:e1:a6:64:38:99:40:fd:e4:a3:59:d2:ec:
7f:21:af:b8:08:fd:15:1e:53:b9:da:ec:ed:1c:25:f7:16:ec:
11:3e:43:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 21 20:14:59 2026 by rpki-client