Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer
File: ex-xujsOyMpeXBOuvPxuuo0g6qc.cer (raw, json)
Hash identifier: psE1zKEznkWrYyvs+n/Jt3XTh4RfAvVx3fIBAw5v/Po=
Subject key identifier: 7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7964
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Apr 2026 13:01:22 +0000
Certificate not after: Sat 01 Aug 2026 00:00:00 +0000
Subordinate resources: IP: 157.20.42.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31076 (0x7964)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 2 13:01:22 2026 GMT
Not After : Aug 1 00:00:00 2026 GMT
Subject: CN=A913B4BE, serialNumber=7B1FB1BA3B0EC8CA5E5C13AEBCFC6EBA8D20EAA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5a:6c:e5:f1:4d:39:50:c0:11:6b:1b:3e:bb:
a0:43:4b:3f:cc:2b:a7:f5:dc:04:8e:fa:ee:14:55:
9f:44:d8:6a:45:e9:dd:bd:05:6d:84:83:72:c0:83:
95:02:12:20:32:45:85:3f:7b:47:ce:28:ad:88:ec:
83:0f:3d:c0:8e:70:5b:cf:62:56:4f:24:bf:46:dd:
8a:51:2d:8e:52:68:fe:28:70:65:39:b4:97:ba:7f:
2e:91:b1:c3:ca:24:d5:33:89:5f:fc:2b:7a:a0:36:
97:9d:05:9a:89:f1:44:80:2b:b5:13:ca:11:57:48:
9b:e7:30:5b:40:26:9d:e8:e7:f9:2f:b8:54:83:07:
a3:79:b3:51:59:8f:6c:e8:f8:da:77:c1:14:33:4b:
c9:ad:c8:02:8b:26:d6:d7:e4:8f:b0:09:d5:80:c3:
9e:43:bc:bc:78:e8:fd:bb:7b:2a:3d:14:78:bc:b0:
56:65:33:b2:5d:7f:c3:e2:90:d2:7f:e4:51:3c:df:
f3:00:f6:a0:d5:f5:a4:2e:8a:1a:c3:52:01:eb:ea:
0d:77:2b:4f:91:6a:5a:11:53:c7:44:c7:8f:9d:55:
b6:f2:72:d9:92:c8:cd:c3:75:16:be:08:a6:a5:f9:
01:c5:5d:e3:5d:f8:2c:d2:6f:83:c1:5d:fc:ea:47:
52:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.42.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:7c:0d:7f:c0:a4:e7:57:42:4c:91:5d:69:b2:f1:40:da:f2:
b4:01:ae:95:38:20:10:d9:c4:6f:07:e0:d7:14:7d:a6:d4:d3:
8f:4f:60:d2:d6:0f:15:de:6a:33:76:d4:74:12:22:6d:07:ab:
ef:6e:d3:13:82:38:83:71:b5:b2:55:7a:07:9a:25:6d:31:e1:
f9:69:9e:b8:1f:7d:e4:e5:66:53:6d:bd:9d:ec:26:21:be:5e:
50:1f:6c:f5:18:17:4c:b1:b6:f3:f7:80:a0:be:1c:6f:dc:ae:
4e:cd:4c:92:40:da:10:11:bb:d0:bc:f4:d6:b6:58:eb:b1:f2:
f2:29:21:a4:e9:3a:02:2f:cc:f7:2d:a7:e3:45:a4:0f:6a:57:
b2:07:3d:f5:d5:64:05:24:df:94:46:ae:ec:cb:87:4a:6b:f5:
23:06:ec:87:19:65:e1:cc:35:60:82:41:25:56:89:f9:f8:27:
3b:e1:9a:a0:44:86:92:e1:c7:f6:af:63:36:e5:09:e1:4b:19:
c0:bd:d6:fd:38:f0:b5:dd:fd:b4:c1:1e:f8:7b:98:f6:eb:13:
be:1c:65:ea:b1:39:2b:36:f0:5b:b7:74:4b:d0:44:91:49:14:
5d:25:a6:b8:69:f0:9e:b7:7b:28:c1:9d:c5:5f:69:2a:ae:91:
4f:4f:98:df
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICeWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjYwNDAyMTMwMTIyWhcNMjYwODAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTEzQjRCRTExMC8GA1UEBRMoN0IxRkIxQkEzQjBFQzhDQTVFNUMxM0FF
QkNGQzZFQkE4RDIwRUFBNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AL9abOXxTTlQwBFrGz67oENLP8wrp/XcBI767hRVn0TYakXp3b0FbYSDcsCDlQIS
IDJFhT97R84orYjsgw89wI5wW89iVk8kv0bdilEtjlJo/ihwZTm0l7p/LpGxw8ok
1TOJX/wreqA2l50FmonxRIArtRPKEVdIm+cwW0Amnejn+S+4VIMHo3mzUVmPbOj4
2nfBFDNLya3IAosm1tfkj7AJ1YDDnkO8vHjo/bt7Kj0UeLywVmUzsl1/w+KQ0n/k
UTzf8wD2oNX1pC6KGsNSAevqDXcrT5FqWhFTx0THj51VtvJy2ZLIzcN1Fr4IpqX5
AcVd4134LNJvg8Fd/OpHUvkCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBR7H7G6Ow7I
yl5cE668/G66jSDqpzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0I0QkUvNkYyRkQzMzhDQ0Y3MTFFRTlFODlENjdBQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTNCNEJFLzZGMkZEMzM4Q0NGNzExRUU5RTg5RDY3QUM0RjlBRTAyL2V4LXh1anNP
eU1wZVhCT3V2UHh1dW8wZzZxYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAZ0UKjANBgkqhkiG9w0BAQsFAAOCAQEAinwNf8Ck51dCTJFdabLx
QNrytAGulTggENnEbwfg1xR9ptTTj09g0tYPFd5qM3bUdBIibQer727TE4I4g3G1
slV6B5olbTHh+WmeuB995OVmU229newmIb5eUB9s9RgXTLG28/eAoL4cb9yuTs1M
kkDaEBG70Lz01rZY67Hy8ikhpOk6Ai/M9y2n40WkD2pXsgc99dVkBSTflEau7MuH
Smv1Iwbshxll4cw1YIJBJVaJ+fgnO+GaoESGkuHH9q9jNuUJ4UsZwL3W/Tjwtd39
tMEe+HuY9usTvhxl6rE5KzbwW7d0S9BEkUkUXSWmuGnwnrd7KMGdxV9pKq6RT0+Y
3w==
-----END CERTIFICATE-----
Generated at Mon Apr 6 13:36:36 2026 by rpki-client