Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer
File: RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer (raw, json)
Hash identifier: CWXC/FrNDdaLYJUewhkDvoXQ6ku64V2DAqhEcrZybgU=
Subject key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7C18
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 May 2026 05:17:12 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: IP: 160.22.210.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 09 Jun 2026 15:18:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31768 (0x7c18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 29 05:17:12 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:60:d0:01:2f:da:b3:ca:d5:cc:75:3b:a3:cb:
a6:6d:8b:37:4a:94:ae:f1:5a:c7:86:83:93:36:78:
84:54:2b:9d:4e:09:7a:29:86:da:fc:15:2c:03:f0:
10:d6:4b:b5:49:76:7c:71:66:8a:07:ad:49:83:70:
ab:e4:c6:c8:76:50:90:ef:d2:38:d5:46:8b:da:66:
fb:b8:c3:05:55:43:94:40:c7:dd:c2:09:b1:1d:71:
e5:eb:6b:84:6a:a6:cb:61:b0:c0:81:8d:d7:dd:3d:
3f:b5:fc:b6:33:4b:f0:a4:93:42:08:1a:05:5a:52:
00:48:b5:c7:40:d6:fd:1d:da:6c:ab:f5:36:64:6d:
01:12:79:e2:d9:27:b8:56:7d:b4:d0:98:20:0c:23:
5b:a8:8a:19:a4:1d:a3:94:ec:b9:f9:bf:13:e3:32:
27:95:57:f8:a8:55:33:19:88:e3:37:06:eb:80:d8:
8d:72:6e:c2:be:e5:4e:eb:6e:a6:ac:bd:09:29:e4:
57:6f:54:1f:ed:64:1a:46:32:09:a9:f5:cb:9c:54:
0b:ae:34:a7:ee:96:ea:93:77:82:f8:72:97:be:74:
df:28:cd:a4:20:f0:51:13:5a:73:fa:15:90:a5:c4:
9a:9f:1c:7f:20:0c:89:39:5b:43:0d:81:70:e6:bf:
c9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.210.0/23
Signature Algorithm: sha256WithRSAEncryption
42:24:d2:85:a3:36:f5:53:ac:47:89:8d:ac:3b:4f:73:fc:98:
fa:14:ed:75:23:c6:59:73:9e:62:04:62:f8:c7:74:2c:48:f6:
5d:05:1c:d5:5c:bd:5b:ca:27:45:73:a3:53:01:be:39:44:74:
bf:5a:eb:cd:8d:75:e1:5d:41:f9:97:55:a8:b5:48:97:2d:70:
d1:a8:0f:b9:d8:ba:9b:e4:06:51:97:b0:6c:41:07:fe:b4:50:
61:aa:44:10:38:1a:c9:9f:b8:77:6d:94:67:d6:46:0e:98:73:
a3:3e:bd:dd:9b:16:2e:39:47:4c:b8:a3:86:3f:df:ab:5d:03:
83:3e:c9:d3:2c:de:ca:05:c9:32:00:55:11:26:27:f8:d2:47:
92:13:a2:28:54:ae:08:06:ff:fa:5a:09:d6:98:b4:0a:98:94:
aa:1d:73:f7:c6:b6:cd:76:58:0f:01:3a:c0:f2:d9:3f:3e:15:
84:f8:12:0a:3f:3e:8d:d6:bd:fa:23:1f:11:90:26:2b:f7:92:
bb:09:54:2e:6c:3e:28:1c:d0:55:b5:c3:be:01:f4:46:e0:38:
03:c9:44:0a:01:80:66:5c:80:59:6e:83:11:d1:44:61:8a:d5:
b5:1e:e5:19:74:bf:5c:bd:5b:63:a4:1e:d2:e1:7e:1d:c4:cf:
14:4c:94:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:12:13 2026 by rpki-client