Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/voMTRZEKyCwYqIMcLYUK5bOOUA8.cer
File: voMTRZEKyCwYqIMcLYUK5bOOUA8.cer (raw, json)
Hash identifier: ykPOmPHsH+jpgGICXvFAO5E2qKMbQ2/jejYrgNXFdvE=
Subject key identifier: BE:83:13:45:91:0A:C8:2C:18:A8:83:1C:2D:85:0A:E5:B3:8E:50:0F
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 5375
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B8C13/F89C4F680D6811EB849BDF3EC4F9AE02/voMTRZEKyCwYqIMcLYUK5bOOUA8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B8C13/F89C4F680D6811EB849BDF3EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 May 2026 14:15:02 +0000
Certificate not after: Fri 30 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 78.138.10.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Jun 2026 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21365 (0x5375)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: May 26 14:15:02 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=A91B8C13, serialNumber=BE831345910AC82C18A8831C2D850AE5B38E500F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:95:8f:04:ae:7a:bb:b1:4f:83:d2:bd:3c:f7:
95:03:00:ac:7d:43:78:8f:72:32:f1:d4:1c:fb:4b:
2c:49:4a:94:e1:d3:16:54:52:3a:14:00:b6:47:4d:
95:52:55:ed:4a:52:46:94:52:6f:80:20:6e:95:3c:
ea:f3:c6:ae:55:f7:fe:b5:72:0c:bc:68:79:a2:fe:
76:77:34:9f:9e:32:2f:37:31:74:48:77:c5:1e:86:
22:d3:c3:3f:db:2d:14:41:01:34:f3:55:dc:5b:5b:
5d:56:43:ca:f6:ee:22:02:64:5f:b4:49:5c:dd:20:
36:6b:2c:7b:b8:c1:50:b5:0a:0f:61:76:87:d6:f4:
8e:bd:30:57:a7:fc:c3:1e:2f:49:10:4c:69:0f:fa:
83:ad:3a:84:b8:16:55:c6:81:69:42:b5:cd:94:3b:
75:13:dd:79:61:8b:8e:97:08:dd:db:63:f1:bb:f9:
72:46:90:11:9b:6d:c7:7a:ac:f8:76:e9:98:37:d2:
2e:92:d4:cc:41:dc:39:9b:1f:02:2f:fa:27:b8:17:
67:72:69:6f:48:75:5e:f0:fa:be:22:27:cf:6e:61:
c4:9c:72:e7:e8:e7:98:dd:65:9c:67:d7:71:4b:01:
dc:d7:9f:37:c6:2c:3d:6a:31:95:78:0f:cc:07:0f:
0a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:83:13:45:91:0A:C8:2C:18:A8:83:1C:2D:85:0A:E5:B3:8E:50:0F
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/F89C4F680D6811EB849BDF3EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/F89C4F680D6811EB849BDF3EC4F9AE02/voMTRZEKyCwYqIMcLYUK5bOOUA8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
78.138.10.0/23
Signature Algorithm: sha256WithRSAEncryption
15:0b:7c:1b:26:52:c1:30:9d:ba:69:25:b8:8a:f8:0d:88:9c:
1a:81:68:d4:c1:71:ce:87:6f:85:13:cd:c6:26:b4:32:24:f6:
91:dc:4c:18:c7:45:e5:9d:88:c5:57:c1:2e:18:c8:4a:32:78:
e9:c4:2f:fe:1a:8e:33:bf:88:32:c1:91:95:5b:c7:f6:96:57:
98:dd:fb:86:73:27:a5:0c:f1:e5:a9:13:ee:e7:10:33:47:e9:
0d:5c:59:e3:ec:d7:f0:51:52:3e:20:3d:22:ef:bf:c7:63:77:
96:33:d4:c7:ae:2d:90:1a:41:3e:6f:51:92:37:22:93:6c:fd:
52:ab:b8:2f:cb:c8:6c:0f:30:c8:ab:2d:ba:09:38:c9:65:54:
89:5e:5a:6c:a4:93:50:e3:f0:2c:23:32:32:39:6a:de:07:e1:
6a:dc:68:bc:a9:f5:ac:7b:8b:b9:9d:72:50:39:9f:04:3c:7a:
94:41:41:7d:ed:00:e0:bf:17:df:a4:c2:7b:1a:0f:be:b3:91:
4e:42:aa:42:ff:84:7f:0d:5c:51:53:a9:7a:58:3d:a4:9f:ab:
0b:14:f3:d9:3b:db:e2:bb:ca:14:03:82:43:43:8b:03:15:f1:
f6:15:25:04:8a:00:0a:2c:a5:35:d8:4c:86:e4:22:eb:97:4c:
91:42:05:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 09:27:15 2026 by rpki-client