Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer
File: 7AffwfGIh38OvP3gtIHMAiw0NrI.cer (raw, json)
Hash identifier: ksmBXy3Sh21643AXkO2c2buB2LVIM6hDTxwwdAEECSc=
Subject key identifier: EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 735B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Feb 2026 14:27:29 +0000
Certificate not after: Tue 02 Jun 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.140.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29531 (0x735b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 2 14:27:29 2026 GMT
Not After : Jun 2 00:00:00 2026 GMT
Subject: CN=A91BEE1D, serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:65:d2:d6:54:fd:55:92:ef:ac:95:5e:2a:24:
ac:37:88:90:c9:4c:f2:8b:94:88:60:28:5a:f2:20:
0d:5b:95:8d:27:93:f1:07:b1:e1:40:bf:be:38:d8:
37:7a:19:be:42:92:c5:91:63:5e:e4:7e:42:ee:fc:
03:37:de:bf:ce:3a:b7:e7:d6:fb:5e:fd:ec:de:b4:
78:1a:d1:ab:cf:3d:43:fc:7a:d7:cb:8e:70:d4:ac:
e0:af:d4:1c:20:9a:b2:d3:ab:2b:f9:56:cd:29:e0:
2b:c5:2d:6c:cc:e9:c0:64:0b:3a:ca:4f:9e:f0:d6:
02:8f:a0:9d:3a:00:95:d9:65:48:2d:0d:af:2d:c5:
b5:78:fe:5e:dc:ac:fe:dc:8b:ae:57:3a:cc:43:5b:
e1:fa:d8:59:9b:cf:de:89:90:9f:6b:0f:79:7c:fe:
c3:28:e5:9a:3c:dc:dc:4c:88:87:b0:41:94:42:8e:
bb:3b:25:50:58:ad:47:48:42:ec:8b:27:e7:db:d5:
b3:5d:c6:3a:bd:73:07:c1:74:0d:61:3c:d6:1c:0b:
a0:a0:ee:68:4b:93:43:c0:b8:e9:10:6e:dc:d6:e6:
d4:d5:54:b4:71:5e:30:2e:44:df:e1:d4:d7:91:4e:
e0:92:23:3a:96:69:b8:21:4f:77:79:ac:84:b9:e2:
5c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.140.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:1e:2a:83:1b:d9:57:66:b8:31:26:8a:73:fe:2d:ac:5c:57:
69:35:ce:d3:25:bf:43:a5:84:c9:39:3f:82:5b:a2:6b:5c:c3:
c3:8f:eb:32:78:8f:11:65:5d:0d:74:c2:c7:7a:56:e3:3a:82:
6b:c7:dd:0c:34:f9:50:7c:93:84:f1:97:b9:6a:17:2f:3d:35:
99:a1:43:29:01:5e:9f:1a:43:61:7d:c2:05:3c:63:08:35:0c:
65:0a:64:79:7a:ab:f7:76:a2:ad:31:0a:11:af:5a:3e:ac:3f:
84:c5:02:07:63:44:1d:82:e7:20:9a:4e:d3:40:20:e4:cb:42:
d9:ac:00:20:f6:d9:04:ae:a9:05:fb:71:99:e3:09:4d:d4:bb:
0b:a5:08:89:20:b7:b6:0e:57:2f:2b:e1:1a:52:90:05:a9:15:
b1:42:33:1a:66:4e:0a:96:42:5b:1c:a4:28:1a:a8:b9:a9:10:
61:42:88:bd:23:67:9f:90:d1:d9:2b:8d:c7:2d:65:cc:65:95:
85:d8:51:01:6b:b7:5d:72:e3:74:2b:0d:df:a7:a1:4d:a6:bc:
c4:4a:20:29:13:f9:f6:41:22:91:2b:a8:07:41:bf:c0:d3:f0:
87:20:b4:a8:e0:07:38:72:a9:2f:7f:55:0b:25:2a:4a:55:3b:
60:23:33:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:34:18 2026 by rpki-client