Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer
File: LvRpVEOkwMezTqkbYqPY-OQUUX4.cer (raw, json)
Hash identifier: jq12B4Qbhr2GDL3etcoD2u2blhnwoUV4KQvsb+B1dB8=
Subject key identifier: 2E:F4:69:54:43:A4:C0:C7:B3:4E:A9:1B:62:A3:D8:F8:E4:14:51:7E
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7BE7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 May 2026 04:12:11 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: IP: 168.140.196.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 09 Jun 2026 15:18:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31719 (0x7be7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 25 04:12:11 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A9167A72, serialNumber=2EF4695443A4C0C7B34EA91B62A3D8F8E414517E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c7:06:30:81:b4:fd:9b:40:67:46:3a:3e:7e:
71:09:c2:dd:46:a7:35:3f:ed:88:6f:f0:13:b5:5e:
00:60:66:32:b8:60:33:5a:07:c7:b1:be:12:06:ba:
45:9d:38:fe:81:b1:53:ed:4a:3d:41:b7:f4:eb:b9:
4b:1b:39:36:b8:97:08:e8:a1:0e:2a:d0:4e:40:ab:
83:03:27:ea:46:4c:c1:b9:94:3c:2d:8c:c2:36:65:
32:86:40:fb:db:68:a1:8e:87:86:90:9a:a7:04:02:
99:fd:80:d4:12:d6:e9:d7:8d:4d:20:f1:95:83:9e:
15:1e:f6:f0:dd:5b:f6:51:7d:7b:61:b5:ef:cd:c6:
7b:d7:a5:c5:f1:90:5c:53:07:ea:be:15:60:8a:ed:
1f:b2:a7:17:07:0a:a6:11:a1:6f:d9:7c:eb:c5:1d:
5c:77:96:d3:00:3a:1f:8f:42:6d:24:1a:0e:ff:23:
34:fe:44:f0:1c:b3:d0:a8:0e:70:52:86:b0:bb:e0:
ff:8b:b7:f4:2a:9a:ec:4b:40:f0:34:29:45:86:80:
00:e4:09:71:f3:43:c4:3b:2e:65:87:f0:0d:a4:60:
e0:3b:f5:b7:51:f8:66:b9:84:77:83:9e:10:bd:67:
73:18:e8:dd:81:e0:13:4d:74:13:1b:f0:24:33:29:
10:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F4:69:54:43:A4:C0:C7:B3:4E:A9:1B:62:A3:D8:F8:E4:14:51:7E
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
168.140.196.0/22
Signature Algorithm: sha256WithRSAEncryption
00:df:49:0d:59:08:0d:ac:b4:38:f2:c0:06:d1:7d:19:d3:fd:
e4:1c:62:a4:85:a7:d7:e3:96:5f:b9:4c:34:89:b3:9c:90:9a:
94:5c:b3:5b:0f:a9:d6:d7:df:4e:26:ca:5d:44:7e:2b:62:c2:
c5:93:e0:24:e4:8b:97:89:39:27:85:04:56:7a:7b:fc:bf:a4:
8e:44:e0:fc:5f:65:fc:c2:f4:39:9f:49:bb:a9:ef:8b:db:42:
eb:a7:0b:7b:0d:e5:f0:17:fa:2e:b3:8a:a6:69:cc:93:22:1c:
86:2a:a5:4f:77:db:7e:96:ed:35:4e:88:58:b9:11:98:0a:6f:
b7:8f:a0:55:bb:e8:81:c6:18:43:de:f9:88:fc:e7:2e:00:40:
e4:da:cf:ce:c1:d4:f2:eb:e8:1c:05:2e:c4:7e:b8:f6:0c:4a:
2a:6d:bd:2e:78:b2:bf:d8:a5:42:e5:e1:39:d1:b6:01:0f:61:
0a:60:d2:1b:72:7b:fe:e1:dd:61:80:2e:8a:26:9f:3c:cc:3c:
b8:fa:e9:ac:d7:9d:08:70:23:72:7a:3e:72:14:44:b9:03:25:
99:ac:31:6e:83:6d:11:23:a3:6f:50:28:db:94:f2:43:3f:21:
71:41:f4:ed:a4:ca:d7:5e:3b:de:f7:07:c0:f1:bb:7e:0f:b4:
c1:e9:24:4f
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICe+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjYwNTI1MDQxMjExWhcNMjcwODMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE2N0E3MjExMC8GA1UEBRMoMkVGNDY5NTQ0M0E0QzBDN0IzNEVBOTFC
NjJBM0Q4RjhFNDE0NTE3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AKfHBjCBtP2bQGdGOj5+cQnC3UanNT/tiG/wE7VeAGBmMrhgM1oHx7G+Ega6RZ04
/oGxU+1KPUG39Ou5Sxs5NriXCOihDirQTkCrgwMn6kZMwbmUPC2MwjZlMoZA+9to
oY6HhpCapwQCmf2A1BLW6deNTSDxlYOeFR728N1b9lF9e2G1783Ge9elxfGQXFMH
6r4VYIrtH7KnFwcKphGhb9l868UdXHeW0wA6H49CbSQaDv8jNP5E8Byz0KgOcFKG
sLvg/4u39Cqa7EtA8DQpRYaAAOQJcfNDxDsuZYfwDaRg4Dv1t1H4ZrmEd4OeEL1n
cxjo3YHgE010ExvwJDMpEC0CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQu9GlUQ6TA
x7NOqRtio9j45BRRfjAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NjdBNzIvNDRERTY5Q0UyQjE0MTFGMDg1MjNGMjZCQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTY3QTcyLzQ0REU2OUNFMkIxNDExRjA4NTIzRjI2QkM0RjlBRTAyL0x2UnBWRU9r
d01lelRxa2JZcVBZLU9RVVVYNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAqiMxDANBgkqhkiG9w0BAQsFAAOCAQEAAN9JDVkIDay0OPLABtF9
GdP95BxipIWn1+OWX7lMNImznJCalFyzWw+p1tffTibKXUR+K2LCxZPgJOSLl4k5
J4UEVnp7/L+kjkTg/F9l/ML0OZ9Ju6nvi9tC66cLew3l8Bf6LrOKpmnMkyIchiql
T3fbfpbtNU6IWLkRmApvt4+gVbvogcYYQ975iPznLgBA5NrPzsHU8uvoHAUuxH64
9gxKKm29Lniyv9ilQuXhOdG2AQ9hCmDSG3J7/uHdYYAuiiafPMw8uPrprNedCHAj
cno+chREuQMlmawxboNtESOjb1Ao25TyQz8hcUH07aTK11473vcHwPG7fg+0wekk
Tw==
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:13:06 2026 by rpki-client