
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer
File: Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.cer (raw, json)
Hash identifier: z8uZk44fm3exVcFJDrQFkS7ksz/rAuNBjGpkSwAhv00=
Subject key identifier: 22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7EB1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 13 Jul 2026 14:41:37 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: IP: 160.22.104.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 19:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32433 (0x7eb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 13 14:41:37 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A91F83DC, serialNumber=224E668F405601CADC3391383FCA96DF9468D95A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ac:db:62:70:e4:a3:23:83:9f:cb:d1:4c:cc:
e6:89:03:74:6f:ac:1c:5f:d0:8c:c0:36:67:e4:45:
ad:76:72:3c:ef:ce:c2:c5:f9:61:76:10:8b:13:5c:
36:9b:0f:31:c2:fb:4d:58:12:24:d4:ed:dd:cf:f0:
d5:79:0b:df:5c:97:1c:a6:9b:24:66:c1:9c:90:b3:
b1:84:62:f1:fa:56:a4:c2:48:40:a0:35:99:0c:5c:
f2:01:74:5a:15:b2:04:79:12:93:23:bb:5b:36:95:
f0:cb:89:a9:54:5d:8a:49:26:5e:5b:99:f8:01:46:
69:1c:10:bd:3f:7a:e2:1e:89:54:14:93:78:71:6d:
ea:16:42:31:83:f0:10:a6:8e:68:04:52:b4:65:d1:
3c:5c:85:61:92:98:dd:80:a4:b5:c8:a0:34:96:93:
c4:fd:af:14:9d:cc:7e:ac:7e:94:05:65:c3:c4:fd:
59:ea:9b:a3:89:24:5b:17:23:06:d1:42:af:af:77:
ab:17:80:08:9e:1b:1a:08:17:ed:7f:25:1e:b3:8d:
d8:96:3d:89:6d:bf:fa:7f:be:bb:2d:68:cf:b4:b8:
fe:5a:49:9f:87:95:27:23:14:4c:18:71:91:c8:eb:
01:11:74:f4:e5:6b:de:67:60:b8:3a:b3:52:b3:e0:
47:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:4E:66:8F:40:56:01:CA:DC:33:91:38:3F:CA:96:DF:94:68:D9:5A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F83DC/99C7488826ED11EFB4C9BA28C4F9AE02/Ik5mj0BWAcrcM5E4P8qW35Ro2Vo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.104.0/23
Signature Algorithm: sha256WithRSAEncryption
66:d8:03:fa:af:c1:98:1c:f5:b3:c2:1c:cd:b1:d7:c4:c6:4a:
2d:00:36:64:28:a0:bb:f2:49:8e:d0:13:a7:35:bf:61:3c:b0:
ff:d6:2f:e2:53:d0:34:6f:88:5c:2a:bd:5e:2f:d3:f9:7e:b5:
56:ef:2d:91:88:8b:88:26:d2:11:66:cc:e5:fd:76:c8:c7:c8:
8f:c2:27:af:0b:c1:5c:9e:2e:71:51:ab:bf:6a:2a:10:a0:9e:
e0:15:10:f1:d7:b1:52:8a:d2:f9:36:5b:3f:b0:e8:7a:b7:a7:
8c:44:9a:66:9f:d1:3f:f5:1a:21:2f:ab:b7:d2:62:a1:22:78:
fb:01:a5:e7:70:b7:b2:d8:42:ef:0a:6d:cc:4e:20:3e:f1:bc:
7f:ac:6b:c1:4a:7e:7b:90:7f:aa:a7:ff:b1:13:05:c3:97:84:
bd:04:b8:97:31:c2:e0:7e:89:2b:e0:56:c3:8c:e3:e0:cd:bd:
a4:28:2e:0b:8d:d6:ba:23:79:f3:89:f4:db:53:02:8b:1b:2b:
6e:23:cf:83:32:7e:7b:fe:61:d9:26:0c:55:70:34:4c:c9:ac:
47:09:39:be:4b:c3:09:d0:9a:97:ce:39:c5:c7:1e:2d:66:8c:
13:b1:51:9c:34:16:30:c2:fb:b5:bb:e0:ed:47:bc:ae:8c:96:
20:31:43:e6
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICfrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjYwNzEzMTQ0MTM3WhcNMjcwODMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFGODNEQzExMC8GA1UEBRMoMjI0RTY2OEY0MDU2MDFDQURDMzM5MTM4
M0ZDQTk2REY5NDY4RDk1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AOSs22Jw5KMjg5/L0UzM5okDdG+sHF/QjMA2Z+RFrXZyPO/OwsX5YXYQixNcNpsP
McL7TVgSJNTt3c/w1XkL31yXHKabJGbBnJCzsYRi8fpWpMJIQKA1mQxc8gF0WhWy
BHkSkyO7WzaV8MuJqVRdikkmXluZ+AFGaRwQvT964h6JVBSTeHFt6hZCMYPwEKaO
aARStGXRPFyFYZKY3YCktcigNJaTxP2vFJ3Mfqx+lAVlw8T9Weqbo4kkWxcjBtFC
r693qxeACJ4bGggX7X8lHrON2JY9iW2/+n++uy1oz7S4/lpJn4eVJyMUTBhxkcjr
ARF09OVr3mdguDqzUrPgR2ECAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQiTmaPQFYB
ytwzkTg/ypbflGjZWjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RjgzREMvOTlDNzQ4ODgyNkVEMTFFRkI0QzlCQTI4QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUY4M0RDLzk5Qzc0ODg4MjZFRDExRUZCNEM5QkEyOEM0RjlBRTAyL0lrNW1qMEJX
QWNyY001RTRQOHFXMzVSbzJWby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaAWaDANBgkqhkiG9w0BAQsFAAOCAQEAZtgD+q/BmBz1s8IczbHX
xMZKLQA2ZCigu/JJjtATpzW/YTyw/9Yv4lPQNG+IXCq9Xi/T+X61Vu8tkYiLiCbS
EWbM5f12yMfIj8InrwvBXJ4ucVGrv2oqEKCe4BUQ8dexUorS+TZbP7DoerenjESa
Zp/RP/UaIS+rt9JioSJ4+wGl53C3sthC7wptzE4gPvG8f6xrwUp+e5B/qqf/sRMF
w5eEvQS4lzHC4H6JK+BWw4zj4M29pCguC43WuiN584n021MCixsrbiPPgzJ+e/5h
2SYMVXA0TMmsRwk5vkvDCdCal845xcceLWaME7FRnDQWMML7tbvg7Ue8royWIDFD
5g==
-----END CERTIFICATE-----
Generated at Sat Jul 18 02:18:43 2026 by rpki-client