Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer
File: F4AJbMkKtq6vCNeasYxUx7d6U6A.cer (raw, json)
Hash identifier: Dd/lvpf24FUg0K3Appy+3utUbnO3IyClGXGH/rrro3Y=
Subject key identifier: 17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7BAF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 May 2026 13:59:31 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: IP: 165.99.141.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 10 Jun 2026 15:37:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31663 (0x7baf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 20 13:59:31 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A91A4543, serialNumber=1780096CC90AB6AEAF08D79AB18C54C7B77A53A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:03:b4:12:d7:1c:4c:e1:6c:8a:c3:b1:89:56:
39:33:0f:09:35:cc:a0:07:74:97:1d:2b:1e:b9:5d:
c6:87:65:7c:bc:70:f8:88:59:a8:cc:4c:35:2e:7c:
2b:df:87:f5:98:18:4c:94:06:92:56:40:f7:63:f6:
ce:d2:fe:ec:c4:b6:57:e2:5f:d3:82:a2:cc:fb:b4:
72:eb:72:20:50:78:60:59:2c:d2:48:15:f6:3f:4d:
ef:c9:3e:1f:4a:5f:f5:00:b7:06:c0:fe:52:51:58:
03:66:3e:0b:84:ea:d8:3a:c4:f8:25:b6:ac:91:2e:
54:6e:55:26:44:73:a4:8f:7b:1f:f6:a0:3d:0c:d8:
a8:64:52:6d:c1:82:f6:91:6a:8c:d9:6a:c0:7d:32:
b7:94:ee:fe:bd:44:b6:b4:4e:6f:38:2b:f9:6b:d4:
38:11:7f:85:1e:f3:a7:63:af:9f:94:2a:21:30:66:
9e:d7:7b:03:5e:34:e3:ec:7a:c0:d0:c9:9c:3e:51:
e4:99:16:fa:73:96:a3:45:f7:89:ee:df:bd:31:17:
43:a0:96:7b:96:2c:49:0b:80:fe:27:64:ba:f8:89:
95:b6:04:37:6f:9e:64:15:eb:49:e4:cc:57:3f:fb:
d4:af:7f:e8:e5:48:b7:20:a1:51:7e:fa:eb:48:05:
28:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.99.141.0/24
Signature Algorithm: sha256WithRSAEncryption
75:f6:11:53:98:6e:12:8a:89:6c:32:5a:04:4f:e7:c3:cc:58:
bb:63:d1:c9:ab:d0:0e:7b:87:be:07:7c:4f:50:fb:1c:3a:a2:
5d:42:41:1e:3a:fa:a1:1a:15:20:2f:4d:1a:36:a0:1d:24:fb:
8f:8f:26:d6:ec:43:2e:51:d5:01:98:c1:1f:5a:c4:fd:e6:fb:
03:94:f2:e3:cb:82:a8:41:fc:79:e9:ab:e7:a5:9c:13:c5:23:
c6:d2:3e:91:a1:1a:bf:e5:e3:62:47:b8:de:16:79:a9:7c:64:
57:41:43:0a:3a:43:34:a7:04:7f:78:63:40:df:ef:5d:16:a5:
05:84:22:54:0f:9e:05:88:f1:bf:7d:b7:a9:31:30:43:ac:0e:
1b:09:99:d8:05:94:5b:64:e3:cc:13:32:7d:22:1a:14:bf:e7:
cf:7a:b2:6c:8c:ce:03:47:ad:17:b8:0b:f6:05:59:63:13:bc:
67:cd:35:43:96:b1:b7:ab:79:21:d3:06:96:74:be:cd:55:42:
7d:c4:74:c8:5a:70:a1:3b:de:d8:be:13:e6:67:4b:93:35:fa:
dd:03:63:d3:3a:43:1a:d7:ee:0f:6a:57:b5:5b:fb:b6:6d:1c:
e5:df:f9:fc:46:ce:d8:f5:f6:b0:40:fd:17:8e:50:ee:8f:4e:
38:2f:53:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 19:56:30 2026 by rpki-client