Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer
File: kXkVGVyXGrRB_d7eb_PNNy51TLU.cer (raw, json)
Hash identifier: COXUs1GWTztrYXwNP7VfF8Kif6Qxl/VU+GyjcinYFMs=
Subject key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 5367
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 May 2026 13:29:26 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 194.233.64.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Jun 2026 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21351 (0x5367)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: May 22 13:29:26 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:de:56:6f:2b:48:0f:84:d8:d6:18:6e:bd:24:
36:1b:39:7d:08:5c:83:6e:35:b5:e8:aa:bd:b3:da:
ec:89:77:80:7c:86:99:65:6c:8d:2e:3f:0d:d6:35:
86:5a:6b:21:fb:bd:d7:d1:9b:19:c2:a4:4f:e8:20:
5e:10:ad:7d:b6:0b:91:bc:c7:d4:54:22:f7:58:5e:
61:9e:20:f4:78:dc:56:a6:3f:78:a0:32:08:d7:7c:
2b:d0:f4:5b:d8:ba:01:ce:de:b2:2f:a9:6b:a3:92:
8a:8c:7a:c1:af:c9:6e:bb:81:86:cb:13:06:f4:7e:
2f:b1:6d:06:37:0a:b2:8a:24:b4:41:f0:11:ff:d2:
16:da:96:8d:84:63:4e:ec:f8:f1:10:72:0c:81:09:
24:9b:b1:b2:24:6a:b5:64:a0:29:0b:e6:b6:53:23:
5e:01:ff:3a:0b:a7:4e:1c:69:75:3d:45:e5:ab:14:
59:df:1d:33:08:e7:da:97:ea:9c:f2:bb:ba:b2:9f:
b2:e0:7a:15:59:d6:9b:e2:de:7f:bf:43:49:06:3e:
6f:c5:d2:b5:1f:48:fa:10:da:99:90:f8:45:f3:e4:
9a:c7:ce:82:9b:e0:03:97:62:1d:ef:34:56:cf:c7:
09:26:1e:30:46:91:3c:1e:0a:c9:6c:ce:ef:a0:30:
55:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
194.233.64.0/19
Signature Algorithm: sha256WithRSAEncryption
46:a5:71:89:5d:76:c0:de:a6:88:eb:69:8f:30:d1:23:f7:77:
0f:42:51:45:94:30:61:8d:cb:8c:67:f6:08:6a:48:42:9d:4b:
84:ad:03:44:e7:6c:44:89:bf:28:7e:b3:5d:a0:77:20:cc:7d:
93:17:ff:94:9e:8d:f9:62:e0:91:26:30:a8:35:77:ad:98:cc:
3e:3e:e9:ef:b0:02:ab:3b:ac:9b:bd:c2:73:12:ad:26:8c:a7:
8a:49:d1:22:71:67:d7:47:ff:e4:e4:17:33:6b:f6:56:55:97:
df:63:69:bc:d5:75:62:22:63:24:1e:bb:01:98:b0:0b:7c:c9:
04:a5:08:f6:d1:ad:35:38:b0:d9:a7:d8:02:9f:d5:a1:26:cd:
8d:e0:52:c4:56:2c:bc:6b:43:09:7d:b3:a6:dc:da:7a:69:1e:
71:8b:71:1a:d6:73:34:18:55:28:b1:d1:af:c0:48:80:5d:dd:
45:6c:9c:72:b5:5d:71:1c:7e:0a:e4:f0:72:75:1b:66:6e:33:
f7:75:48:bd:56:e1:dc:2b:43:d0:e7:ec:ad:2b:4a:84:b4:c3:
f7:85:f9:a2:98:01:7a:66:09:37:e0:5a:53:c6:6b:bd:6b:59:
3f:2a:e5:c7:54:32:ee:6d:ff:e7:76:79:5d:03:0b:6f:e0:fd:
72:f8:65:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 09:25:43 2026 by rpki-client