
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.cer
File: EhjedbJYi2Yzpr-IzTiPMcQ6ycA.cer (raw, json)
Hash identifier: 683Kr1Z7b+gtWnhFkYt37azFGoDq27D9o350Thcq+uE=
Subject key identifier: 12:18:DE:75:B2:58:8B:66:33:A6:BF:88:CD:38:8F:31:C4:3A:C9:C0
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7E06
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Jul 2026 12:59:45 +0000
Certificate not after: Sun 01 Nov 2026 00:00:00 +0000
Subordinate resources: IP: 157.15.52.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 19:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32262 (0x7e06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 2 12:59:45 2026 GMT
Not After : Nov 1 00:00:00 2026 GMT
Subject: CN=A913C07A, serialNumber=1218DE75B2588B6633A6BF88CD388F31C43AC9C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ce:5a:44:69:0a:0e:35:dc:bc:56:50:ed:1d:
5a:23:46:06:d0:37:7e:7f:d9:12:e9:d8:0d:72:cb:
4f:4e:04:ee:ae:2c:2b:f7:56:ce:5b:4b:a4:51:28:
c2:00:74:9a:58:36:d0:ad:df:94:52:48:77:1d:c1:
b6:38:1d:bc:db:90:b0:c8:c9:1a:7d:c3:09:c8:2e:
73:42:ec:a7:08:58:c1:c1:71:31:03:9d:b8:89:ab:
4c:be:25:aa:03:2e:65:e0:a3:5f:07:77:03:a0:2d:
31:16:33:2c:cb:85:13:68:a3:f8:a3:87:95:cf:8c:
0f:d2:14:40:fa:a3:3b:16:95:a8:f8:7c:ce:84:f4:
53:20:6e:6f:f1:a7:5a:cc:2b:df:30:70:9d:2e:9c:
94:01:bf:10:b3:e0:21:d0:da:fe:ce:26:be:45:48:
59:21:1e:a3:11:ab:c9:e5:ca:4a:90:55:9c:8f:de:
49:e7:b9:35:2d:fc:ee:e4:dc:da:7b:06:95:c9:29:
b5:ae:eb:a3:4c:ca:82:d0:8a:49:bd:0a:ec:b4:e5:
96:a8:b9:40:b7:47:b7:8b:d7:cc:c3:3b:93:57:08:
a5:ca:83:1a:bc:11:05:ba:bf:1f:23:ad:ca:c8:58:
fe:d5:f7:4a:b1:a5:09:42:dd:2b:cf:8b:dd:3b:60:
10:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:18:DE:75:B2:58:8B:66:33:A6:BF:88:CD:38:8F:31:C4:3A:C9:C0
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913C07A/F142614ABE6711EEB33C6D6EC4F9AE02/EhjedbJYi2Yzpr-IzTiPMcQ6ycA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.52.0/23
Signature Algorithm: sha256WithRSAEncryption
18:fd:29:7a:02:2d:3e:1c:6c:5b:bd:38:c9:9f:98:a3:a3:06:
8d:27:ad:b8:40:ea:8c:c0:7c:e8:7c:87:05:dd:f4:59:84:14:
7a:44:9a:35:7d:d1:9e:d3:86:e5:c1:a6:3d:ea:b0:ea:03:d3:
19:d6:19:8a:6b:7c:e3:07:fc:6a:4e:14:aa:6e:5c:f7:0a:20:
df:b4:27:f0:94:9a:b7:b6:35:3c:8f:61:f8:dc:1c:ac:51:04:
f4:d9:7f:ad:58:b1:e8:3c:88:6a:59:49:d4:e5:60:b5:84:82:
39:d4:26:7a:f1:72:f0:2b:1a:39:be:50:b3:41:78:9c:0f:7e:
be:f7:57:f3:f5:89:f6:90:96:52:8d:e2:50:0b:63:91:3c:63:
5c:49:ea:88:d5:8f:eb:a0:68:75:fd:01:5e:b5:b2:80:d2:8c:
e7:a6:e9:9c:e1:0f:ec:5b:a1:42:91:5a:c4:b5:e7:42:58:6e:
c3:92:51:02:09:9e:09:e3:c8:52:cd:d5:1d:8c:b3:cd:4a:6d:
54:5d:c4:56:9f:c9:51:b4:1c:0d:dc:56:0a:45:c9:f6:6b:34:
3c:b0:f4:13:b5:e6:fa:32:53:46:c8:dd:d2:7d:91:c4:f4:20:
1d:df:17:b4:db:40:ed:a5:b4:e7:e0:06:56:9e:79:00:05:17:
0e:f1:45:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:18:03 2026 by rpki-client