Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer
File: uKIid-zGsQo9ICqjkMyn-7kqRuA.cer (raw, json)
Hash identifier: MYzOUGSH3ghJqlgXGCCmyzhzRuM6E3YFMCgEySWu1Lw=
Subject key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4FDB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Jan 2026 13:49:01 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: IP: 87.121.72.0/22
IP: 87.121.92.0/22
IP: 87.121.248.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 27 Feb 2026 02:50:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20443 (0x4fdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jan 28 13:49:01 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e9:9e:6b:ab:a8:58:78:f1:a8:19:16:8b:7a:
6e:ec:1b:a4:39:13:cf:c0:b7:96:55:19:e0:1a:45:
80:9d:db:4f:04:25:41:18:f0:92:ea:79:06:de:c3:
59:21:c0:39:b7:c1:f9:75:97:16:d7:ef:9a:08:4c:
9b:8c:ed:0b:9d:fe:6f:ff:a6:9b:b2:66:12:07:be:
58:a3:79:1c:29:92:a3:66:2a:c8:2d:2e:b9:61:4e:
ec:59:68:58:2a:3f:9a:2f:8c:a7:ec:2a:6f:4c:1f:
b4:b1:62:94:a6:73:8c:cf:00:e6:9c:ab:d3:26:8d:
86:54:43:37:ec:36:1c:18:fc:5a:be:b6:0c:03:dd:
56:2b:4b:87:11:cf:3d:e5:0a:6a:0d:0d:00:c9:90:
da:3d:f6:6e:3f:7d:01:b5:59:20:d9:6d:27:5d:42:
69:2b:86:0c:f4:9e:c6:e2:25:cf:d6:8e:43:c7:7d:
ac:c1:13:74:cc:1a:25:77:f3:19:62:b8:d7:b1:19:
23:3b:77:5c:25:ff:77:58:b1:18:ed:f4:97:75:a7:
15:76:74:75:6c:24:ed:15:f1:ce:9d:f7:f6:09:b7:
96:1a:8e:8b:a0:d6:57:49:e8:1c:9a:a4:4b:e9:e2:
1c:62:09:40:06:85:f7:04:b7:d6:07:92:37:ab:11:
b9:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
87.121.72.0/22
87.121.92.0/22
87.121.248.0/22
Signature Algorithm: sha256WithRSAEncryption
04:c0:f7:43:b7:d6:4f:05:4b:01:fe:81:d8:c7:bf:7f:4e:b9:
48:fd:0a:63:0c:b1:9d:31:76:97:40:9c:1b:f0:81:28:8e:58:
84:3d:3c:a7:7b:69:9b:18:1c:40:b3:b3:7e:dd:03:0c:9a:81:
fd:3c:19:84:ca:19:59:72:27:da:0e:fa:2a:f6:1c:b4:e3:5a:
37:97:97:be:98:15:13:b5:45:2e:b6:9f:47:10:6d:18:36:27:
46:7f:b3:87:a2:e9:9f:7b:d0:25:1e:99:61:2d:75:b0:56:da:
c1:f8:fa:78:c6:ab:25:f1:01:6b:be:53:3d:6c:c6:17:62:52:
be:ac:0e:62:97:d6:64:54:81:36:56:43:68:c5:95:9e:c9:94:
64:51:92:bb:94:8a:ef:e7:4a:02:79:11:15:fe:76:8a:3c:b6:
36:67:67:86:7c:8a:1b:4d:1b:87:37:e4:ca:64:a1:29:69:10:
60:00:f4:66:d5:95:25:9e:23:93:a3:01:21:c3:d5:7d:4a:7d:
63:0c:33:d5:41:7a:b9:01:16:10:44:f4:04:09:44:f7:d2:41:
94:ec:3a:36:e8:79:8d:a5:9a:c6:28:06:82:3b:3b:eb:9b:25:
42:16:65:b6:de:f3:84:50:bb:f3:37:95:83:31:ad:f7:80:af:
d1:11:a1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 20 05:00:42 2026 by rpki-client