Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer
File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.cer (raw, json)
Hash identifier: oGAoCE7Kp9ME+fRpPdqTtl9bm/XeSdUf4QOtpeRIZvA=
Subject key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 782B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Mar 2026 12:23:57 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: IP: 64.246.80.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 20 Mar 2026 02:50:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30763 (0x782b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 3 12:23:57 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A9115C2E, serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c3:fc:e6:68:45:1f:47:b3:46:9b:06:ec:75:
e0:5f:d1:9c:b2:fd:04:c5:13:e8:d6:c4:ea:83:30:
1e:f7:78:4e:80:64:04:24:b1:45:f0:8f:34:7a:8f:
07:71:3c:94:87:9d:3c:cc:ca:2e:b7:b7:fb:44:72:
49:4d:66:e4:02:3a:81:f8:b5:70:8c:c5:0a:e6:1c:
c5:07:d1:ec:7a:d5:66:9d:2c:e0:3e:6e:6f:42:53:
f1:35:3e:23:2e:80:f4:8b:eb:56:94:a2:28:93:23:
a8:4d:99:73:c2:4b:d5:96:ff:5d:c4:36:db:4e:f7:
f1:ce:c8:43:79:fc:2b:6e:3a:08:32:bd:b5:78:cc:
ce:a1:eb:9e:11:ad:af:40:90:cd:20:9e:c8:32:6a:
a4:30:fa:a1:f3:58:22:f3:14:4e:ea:2e:ec:72:be:
69:bd:58:67:3b:29:67:ff:d8:a2:51:3b:c8:3c:03:
1a:ae:40:76:0c:75:be:2e:e4:30:a4:30:25:17:09:
3a:62:81:23:42:6d:f3:11:59:78:1f:d1:bf:c5:5d:
61:7f:d5:4e:db:a2:9d:da:46:0e:a4:38:17:84:1c:
e9:b6:95:d8:0f:c5:4f:81:6e:66:e8:22:6d:ea:bb:
51:60:92:f2:8e:48:18:83:3c:91:13:90:db:bc:85:
1b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
64.246.80.0/20
Signature Algorithm: sha256WithRSAEncryption
42:cb:c3:54:87:74:3c:0f:9b:c6:c5:eb:ff:53:8d:dc:10:19:
d0:56:1a:f5:a4:15:fd:48:34:e2:01:d3:ac:cd:d9:4d:ab:7f:
d9:ec:a0:3f:e1:5a:7d:b5:0f:4f:a7:0d:f0:aa:08:b0:8e:44:
2d:c3:17:e7:4a:ad:f9:2e:d7:43:f9:10:cb:fe:ba:d5:fa:cc:
c9:df:f7:fe:d9:2c:06:0c:06:c6:7d:ec:8e:c6:80:49:59:4a:
c6:1e:59:45:80:21:07:35:ae:c9:ce:0c:2d:54:d0:ca:66:18:
0a:0f:f7:81:99:b0:9e:5d:11:ed:93:03:5b:4b:1e:4e:d7:de:
9f:1e:7c:11:32:9d:6e:35:f2:77:62:66:00:aa:e7:8f:50:27:
75:74:d2:92:bf:3d:2c:59:9d:e6:59:7f:69:a0:59:16:c9:30:
4f:9d:7c:d5:e7:d9:42:a3:7c:da:bc:ad:d3:f6:bf:d1:c5:cf:
67:89:3b:03:68:e5:b7:7b:b4:89:44:19:52:b8:1b:08:cd:fd:
a5:77:af:5d:1d:ee:87:98:e9:0f:db:45:c5:d3:2c:43:03:b0:
aa:bd:8e:a7:1c:f0:3f:48:09:8c:47:d1:d6:b4:c9:5c:5b:1a:
17:9c:9b:09:fb:bd:1c:18:2b:65:df:3f:bb:69:1e:24:64:86:
b7:9f:ac:11
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICeCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjYwMzAzMTIyMzU3WhcNMjcwNTAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTExNUMyRTExMC8GA1UEBRMoRDI5OUJDQTM5Qzk5M0RCODBEMTEzN0I5
OTlCMjIxODQ2QUNGNTU2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AL3D/OZoRR9Hs0abBux14F/RnLL9BMUT6NbE6oMwHvd4ToBkBCSxRfCPNHqPB3E8
lIedPMzKLre3+0RySU1m5AI6gfi1cIzFCuYcxQfR7HrVZp0s4D5ub0JT8TU+Iy6A
9IvrVpSiKJMjqE2Zc8JL1Zb/XcQ220738c7IQ3n8K246CDK9tXjMzqHrnhGtr0CQ
zSCeyDJqpDD6ofNYIvMUTuou7HK+ab1YZzspZ//YolE7yDwDGq5Adgx1vi7kMKQw
JRcJOmKBI0Jt8xFZeB/Rv8VdYX/VTtuindpGDqQ4F4Qc6baV2A/FT4FuZugibeq7
UWCS8o5IGIM8kROQ27yFGxcCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBTSmbyjnJk9
uA0RN7mZsiGEas9VazAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MTVDMkUvOTUyN0U2QjQyNjhFMTFFQzhFRDBCQTZFQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTE1QzJFLzk1MjdFNkI0MjY4RTExRUM4RUQwQkE2RUM0RjlBRTAyLzBwbThvNXla
UGJnTkVUZTVtYkloaEdyUFZXcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEBED2UDANBgkqhkiG9w0BAQsFAAOCAQEAQsvDVId0PA+bxsXr/1ON
3BAZ0FYa9aQV/Ug04gHTrM3ZTat/2eygP+FafbUPT6cN8KoIsI5ELcMX50qt+S7X
Q/kQy/661frMyd/3/tksBgwGxn3sjsaASVlKxh5ZRYAhBzWuyc4MLVTQymYYCg/3
gZmwnl0R7ZMDW0seTtfenx58ETKdbjXyd2JmAKrnj1AndXTSkr89LFmd5ll/aaBZ
FskwT5181efZQqN82ryt0/a/0cXPZ4k7A2jlt3u0iUQZUrgbCM39pXevXR3uh5jp
D9tFxdMsQwOwqr2OpxzwP0gJjEfR1rTJXFsaF5ybCfu9HBgrZd8/u2keJGSGt5+s
EQ==
-----END CERTIFICATE-----
Generated at Fri Mar 13 12:12:01 2026 by rpki-client