Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer
File: OYN8tL7K9qYmyRaulgJBtgnmsgo.cer (raw, json)
Hash identifier: vr3uxXniuFz/DBXVPjZzSEJLLD5i5O2aNFSeLeptpVg=
Subject key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7C16
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 May 2026 03:24:44 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 137.157.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 09 Jun 2026 15:18:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31766 (0x7c16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 29 03:24:44 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:46:a6:71:51:c4:eb:c9:0f:da:25:58:82:f3:
7f:dd:e7:63:05:35:c5:32:a1:7d:9a:86:ce:7e:f3:
1a:9a:40:3e:d5:8d:47:a0:02:23:3b:26:de:6e:9d:
8e:19:a5:e5:56:d7:62:79:41:a6:70:1b:2e:0d:58:
30:37:07:19:a1:1d:98:8b:76:24:b5:6b:9a:f5:ec:
62:eb:e3:55:06:23:c4:87:68:e0:32:30:6b:fb:5a:
e9:2a:7e:d5:ae:e0:a2:de:42:08:a0:84:3b:ac:8e:
04:32:81:d1:5e:dd:b3:36:e0:60:e3:44:5b:81:96:
e3:c8:24:9e:28:28:65:e8:ad:a5:01:c3:2e:b1:20:
3a:f2:2a:f0:e4:fc:69:b6:58:20:64:d2:bc:9a:ae:
c5:ce:57:fb:dc:79:8f:d5:a4:b8:c3:7a:c4:05:7b:
32:f2:ca:eb:e0:43:39:15:88:57:ed:c4:a6:05:29:
32:f3:f1:d4:4a:e6:60:19:91:62:7f:8c:59:98:0c:
ea:9a:d2:31:a4:29:f8:7f:3f:a4:16:93:2c:ec:0a:
2e:f6:d5:e0:ee:af:62:da:0b:97:cc:d9:40:b0:1c:
74:a2:83:3d:6f:df:42:b8:e7:be:16:f6:77:a8:16:
ed:97:b0:8f:8b:9a:f7:69:2d:d0:39:bf:d0:66:b1:
36:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
137.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a8:57:31:bc:b4:4a:2a:63:01:bb:ec:f8:2b:cc:54:3d:43:95:
11:be:7c:09:6a:01:16:37:87:0b:f3:ca:38:0c:37:67:41:0a:
b2:37:76:45:e4:73:e9:27:4a:5a:6c:96:1e:ef:c8:b0:26:75:
e3:75:4a:39:7d:5b:0a:0d:b3:d3:0f:de:8c:f5:59:2e:c8:68:
1b:3b:17:d2:0b:24:25:0c:8d:93:60:d6:0a:d2:d6:2f:d4:4f:
3a:8a:c4:1e:54:db:3c:20:5e:c1:a4:e3:25:f5:fe:19:49:55:
22:cd:71:61:73:a5:d2:ba:e4:51:af:73:bc:82:e7:d3:4f:86:
36:be:85:46:99:ba:ee:8e:d2:ad:cc:a7:22:8d:f4:3a:f3:05:
61:e5:ef:02:11:d9:6f:8f:72:ce:e9:25:87:28:da:81:d4:65:
8e:af:20:31:97:7b:ed:12:5b:59:4f:f2:4c:81:bf:23:70:7f:
88:d2:8a:41:b4:2f:b8:e2:bb:38:e3:50:ae:34:94:d0:a5:e1:
bb:7c:5f:6f:3e:23:aa:ba:83:38:e9:29:80:30:63:88:01:d2:
3b:ed:56:04:fb:8a:8a:a5:c4:ce:c5:2b:7b:bf:a1:bd:8b:6f:
6d:d1:4e:27:6e:a2:d1:58:a9:8d:b6:f6:52:2c:2c:89:58:05:
3b:ef:8f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:12:08 2026 by rpki-client