
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer
File: OZp7H8QgfroHB6hRUZXMaOg2q_g.cer (raw, json)
Hash identifier: v5ABOZyGEU8IJPQYUWW9T4+zY6fSPFpNQYEj32mQxJ4=
Subject key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7DD9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jun 2026 14:31:12 +0000
Certificate not after: Fri 30 Oct 2026 00:00:00 +0000
Subordinate resources: IP: 160.25.210.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 19:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32217 (0x7dd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jun 30 14:31:12 2026 GMT
Not After : Oct 30 00:00:00 2026 GMT
Subject: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ad:68:9d:7d:ec:e3:98:39:83:21:94:5b:79:
95:85:62:27:b5:09:c5:77:f4:b5:56:2a:bf:84:b1:
3e:35:c1:6b:aa:4a:79:9e:63:25:dc:e4:1d:ee:85:
bd:4f:6f:5b:56:76:7f:03:63:57:c8:e4:68:4c:4a:
ec:49:61:14:ac:a7:c9:6b:f4:41:74:fc:44:5c:8d:
52:96:34:cf:59:72:ca:66:7b:08:86:44:23:f7:76:
c8:9a:c0:83:9b:4a:42:19:71:0e:83:c6:93:db:a3:
e8:2e:45:bd:74:07:8a:df:8c:4c:e7:ed:7b:fb:13:
04:53:ad:91:b3:48:ea:8a:17:96:b4:87:a2:88:9c:
0f:8c:b1:51:cd:12:5a:3a:a6:46:04:b9:4d:b2:e2:
69:45:cd:b2:95:e7:57:09:55:65:90:fc:80:e3:83:
b8:15:5d:24:f4:b9:7a:f3:39:ef:07:b6:9c:26:42:
d9:fc:64:48:f4:25:74:80:39:8c:5d:3a:63:f3:32:
1b:ee:f4:34:a0:55:58:2a:ff:74:66:86:dc:67:a3:
87:ea:5c:ad:49:7b:3f:f2:e0:11:df:27:91:96:88:
25:b5:f8:ea:61:81:63:b0:b0:e9:9b:61:05:48:4e:
cb:ee:79:cb:9c:c1:09:0c:e6:a2:4e:ec:59:16:72:
43:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.210.0/23
Signature Algorithm: sha256WithRSAEncryption
46:6f:bb:eb:4d:f4:da:15:ed:d9:ff:54:b1:29:8f:41:27:a8:
50:67:09:90:cf:f1:89:39:a1:26:f5:b1:4a:21:60:c3:54:4b:
f9:9d:c2:78:5b:51:de:56:1f:45:d1:ff:86:93:df:ea:80:87:
97:ea:fa:f3:45:38:10:c4:53:84:e9:c9:c1:6b:e3:5b:b5:d3:
ca:5c:af:38:82:52:3e:c8:14:76:5b:81:d6:8e:a5:85:99:d4:
fb:2e:78:a9:90:1f:e2:e0:57:0c:14:61:da:47:33:6b:df:b3:
da:b6:c4:f0:82:07:fd:c7:d7:64:cc:af:1a:f1:2e:6d:67:d8:
ac:20:15:de:1d:7d:0a:af:c8:c0:9b:52:8b:e7:aa:b8:29:a4:
8a:61:e7:09:d8:48:d5:64:46:16:a5:b1:0a:f3:05:7b:e3:6b:
9d:d7:4c:b3:82:2e:fd:2e:d6:5a:54:de:8d:87:3e:0c:0b:ee:
40:f1:ae:ab:fc:10:40:cb:2c:81:de:58:04:4e:a6:f4:de:2d:
b1:c5:aa:16:5d:2e:20:00:64:22:cc:15:71:59:ea:67:dc:16:
ba:5e:8b:55:1f:02:8b:1f:19:61:d0:db:6c:e5:1b:44:a7:5e:
b8:ed:7c:42:16:36:64:5a:dc:df:75:f4:4e:de:87:2b:8f:ce:
3a:09:dd:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:20:52 2026 by rpki-client