Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer
File: U2uRsXtuG7FjjINYoPpepdDr77c.cer (raw, json)
Hash identifier: winsTjBOpAxeIfmvgpskhdvvliMw+niF5kydszLiXjs=
Subject key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7BF9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 May 2026 05:40:59 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 167.179.2.0/24
IP: 167.179.208.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 09 Jun 2026 15:18:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31737 (0x7bf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 26 05:40:59 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2d:12:bf:e9:0c:b4:97:15:f8:7b:01:97:88:
af:45:fa:eb:97:8e:f5:28:94:14:08:60:69:f8:36:
08:48:f3:37:d2:45:13:c0:4c:4c:19:77:e1:6e:7a:
1f:14:ca:7f:a7:c6:bf:5d:59:01:ce:3c:dd:af:e1:
4b:28:80:02:b2:3c:22:a9:ae:5a:c3:69:c1:83:8e:
38:90:dc:ce:a1:2c:ce:64:85:84:5b:ff:ca:43:c7:
5b:fc:90:5f:57:b1:bf:f1:65:28:95:c7:85:e9:ba:
b4:5e:8f:90:94:80:5b:50:f2:d6:d4:fc:9e:6c:87:
ff:23:e3:d3:bc:78:a5:ca:9f:14:30:d9:28:f0:e2:
32:55:c7:d0:bf:e1:40:a0:56:4c:62:66:4f:1e:de:
09:b3:da:8c:05:21:64:6f:97:6c:44:c7:19:8f:bc:
98:e9:e8:b1:ef:a6:7b:fc:02:1f:2c:58:9f:66:28:
79:30:e6:13:9f:55:ef:fb:73:14:f3:ce:2d:d2:38:
af:fc:dc:fb:b9:00:28:ae:40:91:f7:ee:41:c1:45:
c6:d0:7d:9a:d6:00:c3:6b:91:2d:c7:25:bf:d0:a3:
df:13:a6:ed:37:71:7c:33:12:c4:34:9b:2d:04:44:
4b:3f:42:bb:51:66:d3:ff:94:f9:f1:fa:af:34:90:
15:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
167.179.2.0/24
167.179.208.0/23
Signature Algorithm: sha256WithRSAEncryption
83:d0:8f:29:7c:a7:12:ec:04:34:d1:b0:8e:51:5a:b8:3e:9c:
72:9a:c9:5d:a4:66:e8:37:48:56:39:15:26:1a:83:b0:82:fb:
9b:0b:1e:c9:61:7d:b7:2d:b2:22:0f:89:3f:cf:dd:92:fa:39:
3d:c8:53:86:d2:fc:eb:f5:15:31:91:a1:0f:c5:31:bd:04:31:
f7:d4:c8:c5:75:48:63:b4:12:86:43:e6:7c:1c:30:0c:2a:07:
1c:9a:31:49:b1:18:48:8e:a9:ab:4d:5b:0d:b3:b0:f3:2c:b9:
eb:2b:7d:da:6d:2a:23:bb:6a:6c:ba:88:a1:88:f5:82:59:18:
6c:a9:e4:54:e1:cb:8c:ef:96:21:fe:8c:18:cb:19:e6:b0:a1:
d0:da:48:a4:19:67:8f:7b:98:31:81:ec:bd:2e:79:59:38:0c:
c8:e7:60:4b:fb:42:45:e8:7a:b8:6f:bf:23:8f:e3:2a:73:c8:
5d:83:06:19:24:f9:14:1d:08:55:8c:ea:49:5e:cc:db:4c:cf:
fd:3b:06:2b:63:c7:a2:4e:2c:8b:c1:bc:4d:1f:a6:b4:9b:37:
6a:53:72:e8:b9:a8:8c:6d:c0:41:8a:1b:07:dd:32:73:fa:0b:
b8:8b:4d:c1:cf:dd:6b:70:c5:31:dc:09:fb:a8:bc:53:15:b2:
54:61:14:77
-----BEGIN CERTIFICATE-----
MIIGAzCCBOugAwIBAgICe/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjYwNTI2MDU0MDU5WhcNMjcwNzAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTEyNUMzRDExMC8GA1UEBRMoNTM2QjkxQjE3QjZFMUJCMTYzOEM4MzU4
QTBGQTVFQTVEMEVCRUZCNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALwtEr/pDLSXFfh7AZeIr0X665eO9SiUFAhgafg2CEjzN9JFE8BMTBl34W56HxTK
f6fGv11ZAc483a/hSyiAArI8IqmuWsNpwYOOOJDczqEszmSFhFv/ykPHW/yQX1ex
v/FlKJXHhem6tF6PkJSAW1Dy1tT8nmyH/yPj07x4pcqfFDDZKPDiMlXH0L/hQKBW
TGJmTx7eCbPajAUhZG+XbETHGY+8mOnose+me/wCHyxYn2YoeTDmE59V7/tzFPPO
LdI4r/zc+7kAKK5AkffuQcFFxtB9mtYAw2uRLcclv9Cj3xOm7TdxfDMSxDSbLQRE
Sz9Cu1Fm0/+U+fH6rzSQFYUCAwEAAaOCAvkwggL1MB0GA1UdDgQWBBRTa5Gxe24b
sWOMg1ig+l6l0OvvtzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MjVDM0QvMjMyM0ZEODAwMEQ3MTFFRTkzQ0IwRjdFQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI1QzNELzIzMjNGRDgwMDBENzExRUU5M0NCMEY3RUM0RjlBRTAyL1UydVJzWHR1
RzdGampJTllvUHBlcGREcjc3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQWMBQw
EgQCAAEwDAMEAKezAgMEAaez0DANBgkqhkiG9w0BAQsFAAOCAQEAg9CPKXynEuwE
NNGwjlFauD6ccprJXaRm6DdIVjkVJhqDsIL7mwseyWF9ty2yIg+JP8/dkvo5PchT
htL86/UVMZGhD8UxvQQx99TIxXVIY7QShkPmfBwwDCoHHJoxSbEYSI6pq01bDbOw
8yy56yt92m0qI7tqbLqIoYj1glkYbKnkVOHLjO+WIf6MGMsZ5rCh0NpIpBlnj3uY
MYHsvS55WTgMyOdgS/tCReh6uG+/I4/jKnPIXYMGGST5FB0IVYzqSV7M20zP/TsG
K2PHok4si8G8TR+mtJs3alNy6LmojG3AQYobB90yc/oLuItNwc/da3DFMdwJ+6i8
UxWyVGEUdw==
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:11:58 2026 by rpki-client