Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer
File: jSAgfR7bX1wtZjsKahC81AutOt4.cer (raw, json)
Hash identifier: EkaDgbkGF4Vy8xjM0RaeuQH0yMBmE1TnMPUTPRg5ljE=
Subject key identifier: 8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 535A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 May 2026 21:35:49 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: IP: 31.69.0.0/17
IP: 31.69.224.0/19
IP: 31.99.144.0/21
IP: 141.163.128.0/17
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Jun 2026 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21338 (0x535a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: May 19 21:35:49 2026 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A9185D6E, serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:38:72:ae:9f:a0:65:d9:7a:95:c9:09:2a:0a:
77:59:bd:7b:e7:3a:ef:b5:38:9e:93:40:b5:8b:c7:
b5:10:62:22:b6:10:91:1f:bf:2d:d1:af:4e:ee:fb:
b9:f4:7c:09:2d:bc:c9:8d:2b:63:fd:14:b4:ea:97:
6f:c0:37:8f:fd:2f:56:a5:1f:a4:d3:6b:21:7d:46:
c7:db:81:be:29:bc:65:98:d6:f1:6e:51:aa:63:ab:
ae:78:53:9a:f1:25:a5:28:6d:9e:b1:c1:44:43:b2:
53:c9:00:e2:6e:51:61:03:e4:c1:ea:91:fa:5f:ba:
de:b5:d8:27:d1:00:37:1b:7c:c9:78:f6:a2:31:fe:
46:62:46:06:46:dd:c6:e2:50:bc:30:a5:69:7e:90:
6d:fc:56:08:fc:2e:49:45:2e:39:28:54:eb:35:7f:
e7:05:3c:79:27:91:73:17:c3:60:b9:fa:38:b5:c7:
1e:3d:91:9a:e7:7e:04:68:2c:ca:71:b0:9c:a9:ff:
09:d6:e5:bd:24:90:c6:a1:2c:5e:b2:ee:9f:d2:51:
36:66:56:5d:eb:0e:61:e8:5a:bb:76:1c:59:40:2b:
03:9b:ea:0e:fc:fc:46:9b:9d:cc:21:ee:26:fd:60:
0b:bc:6a:fd:74:4e:6c:b9:42:73:82:79:41:21:d7:
a7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
31.69.0.0/17
31.69.224.0/19
31.99.144.0/21
141.163.128.0/17
Signature Algorithm: sha256WithRSAEncryption
cd:29:5d:c3:55:f0:6c:3b:87:7f:aa:0b:78:df:d7:66:1a:9d:
bf:e8:32:be:e7:15:8c:5e:a5:31:58:32:a5:e8:61:6d:92:c3:
37:49:48:82:58:09:4e:a8:ef:47:08:db:8e:90:b2:36:25:68:
d9:0d:11:f9:4d:aa:ab:57:54:be:88:4c:38:5e:3b:3a:5d:27:
44:81:03:40:94:27:38:e5:25:e6:0a:53:47:ef:af:b9:e8:7c:
01:58:66:02:f7:d4:96:79:f3:cf:94:1d:0c:d4:77:05:9c:75:
3e:68:dc:b7:7c:56:c1:a2:46:5e:20:0a:92:05:d9:59:3a:99:
bd:64:2b:fe:58:ab:1f:a2:29:bd:e3:6e:a6:47:72:3a:e7:64:
47:7a:82:27:d4:ab:3c:d3:29:60:23:e2:1c:7f:49:0d:02:23:
d0:15:6d:a4:83:67:86:63:da:08:57:0f:e8:1f:6d:e8:a6:3f:
3d:c1:9a:64:d7:fa:86:3c:f5:b2:7d:16:c8:6d:d6:36:16:0f:
ee:c6:f1:62:ad:1e:5d:19:f5:e4:bb:ba:cc:91:b8:20:3a:4b:
43:c4:12:0f:7c:8d:57:c0:a8:eb:f8:c2:31:f8:a7:33:72:ea:
bc:a5:e1:fb:d2:5b:07:e7:8b:a2:a8:ac:21:91:8e:3d:59:ae:
27:59:5d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 09:24:40 2026 by rpki-client