Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer
File: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer (raw, json)
Hash identifier: vdU9/3H3/tx6OHX5sKyn5wfZeJFp7w2t/wdyG6CADdc=
Subject key identifier: 7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7357
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Feb 2026 13:57:41 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: IP: 137.83.12.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 27 Feb 2026 00:38:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29527 (0x7357)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 2 13:57:41 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91971CB, serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:68:fd:0c:98:12:91:91:ca:fc:97:4d:3d:43:
bc:bb:c2:55:75:a7:7b:8b:bb:c2:6b:aa:e8:9b:40:
08:98:2f:7b:f4:e8:3e:fc:08:a1:75:3e:3a:76:fe:
7b:76:33:5c:db:ed:23:af:cb:65:4c:e1:86:6d:09:
db:b8:46:03:15:94:0e:34:74:2c:dd:48:ea:40:f5:
97:54:df:0c:d2:b0:37:8d:6c:9f:3f:65:a7:76:1e:
5d:be:fb:67:09:94:c8:1d:b9:b8:e5:a9:a0:52:d5:
ca:31:63:14:88:62:02:17:88:33:6f:a7:3b:47:f2:
48:5f:27:4d:ae:c2:69:59:52:f2:ea:aa:43:15:22:
b3:88:86:75:99:be:af:b7:86:4e:a6:69:67:54:53:
36:35:b1:6b:3e:d5:45:a7:35:9c:1b:1e:91:bd:7d:
e8:eb:2d:86:4c:3c:fe:2d:b5:b8:4b:54:19:12:96:
2e:52:3a:eb:b4:9f:9a:5f:8d:78:43:cc:10:8c:20:
63:d0:23:58:21:36:6d:55:69:63:76:0b:5e:3d:e4:
43:a4:80:e4:ea:f0:a6:ec:15:61:18:e9:46:9b:42:
03:c7:ec:41:cd:c6:9e:d2:86:4e:05:57:2e:78:a1:
32:3b:13:b3:f4:51:d1:27:4d:c2:4f:06:3f:bc:3b:
6b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
137.83.12.0/24
Signature Algorithm: sha256WithRSAEncryption
00:48:57:da:45:bd:15:90:b7:0d:45:71:44:a2:06:c0:d4:e6:
d3:78:ee:6a:25:d5:af:7b:7c:5c:4d:c0:b3:76:38:d0:e0:7e:
e1:3e:e8:f9:b8:ac:75:48:b4:c0:5a:c3:b8:9d:ef:71:60:6f:
a7:5b:b8:5c:ce:08:57:72:8b:08:64:32:a7:ba:74:d5:6f:4f:
eb:f6:75:f4:6a:c6:5d:4f:78:a7:37:2c:a2:00:3a:b8:44:81:
8b:73:9c:37:2d:c3:51:8f:41:93:09:7b:91:2d:41:43:0d:a6:
38:d8:02:dc:4c:0c:8a:10:d1:fd:e3:f7:f2:67:72:ff:f3:d4:
42:82:a7:2b:69:f4:31:bc:46:bc:3c:d2:61:60:bd:44:d0:39:
bb:bf:33:07:4f:93:6f:86:29:45:04:db:c8:a2:1a:24:a2:3f:
6b:ba:e5:97:ae:84:24:64:c4:c4:24:89:63:b8:d6:fe:aa:15:
7f:89:ee:df:ed:0d:21:f8:f5:95:cf:0f:dd:7b:02:35:c6:56:
ed:d3:32:cf:fb:24:07:b5:6d:45:6a:fa:04:70:81:ed:b0:28:
f8:a4:e9:ba:a2:77:2b:fa:47:6e:d5:ea:e1:44:ca:36:b8:cd:
25:b0:78:5b:9c:cc:ce:b5:62:cb:f3:60:ad:6b:49:d0:64:ad:
10:41:9c:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 20 03:56:07 2026 by rpki-client