
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer
File: g8kBUb4XghT8FnWDNNO21Sd6PL8.cer (raw, json)
Hash identifier: jq3FcCAlPXQwI7sXhgv0YVc0HRe07x6joc+ai/kaXxo=
Subject key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7D8C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 Jun 2026 14:45:37 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: IP: 160.20.132.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 19:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32140 (0x7d8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jun 24 14:45:37 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c3:6b:c1:c7:15:67:73:0a:62:ab:15:35:bb:
d7:46:45:6c:42:34:4d:18:0f:e7:8d:ca:89:c2:fd:
d7:2d:aa:56:af:14:b7:fa:d6:ea:93:b8:fd:5f:6a:
d9:dd:c0:57:b1:47:1b:55:69:d1:79:db:30:12:ad:
f9:04:d7:5d:fa:c4:44:25:fd:12:2d:75:7e:7a:ff:
c8:0f:8b:65:ca:ac:38:be:20:48:f9:a2:76:fb:82:
a9:60:0c:2a:99:cd:5e:4d:bd:af:90:7a:e9:1b:6c:
49:79:a8:fc:c5:11:e1:67:a2:bd:5c:02:29:db:49:
9e:dd:20:9b:c1:24:5f:fc:77:92:15:47:9c:39:e3:
e6:c8:a0:dc:11:d9:a1:c8:4e:cc:62:37:85:3a:51:
ca:2d:01:23:83:dc:f7:b2:51:d6:88:8f:33:bc:6a:
47:d5:67:20:c9:e4:c5:a9:bb:da:3e:70:e9:e6:f5:
05:66:25:49:79:06:70:df:94:0e:14:fd:e5:40:4c:
b0:6d:e9:d0:31:1d:62:f6:ba:01:03:34:0e:22:9b:
08:44:bc:6a:f6:75:3a:e4:f0:48:86:20:96:65:0c:
02:aa:98:8a:22:6d:fb:ad:37:7b:0c:e8:a1:7f:a3:
6f:b4:d5:7a:4f:68:24:f8:65:66:5e:06:1b:97:54:
67:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.20.132.0/23
Signature Algorithm: sha256WithRSAEncryption
12:28:51:e1:c5:7f:23:31:f4:73:cc:31:e6:26:cb:ab:74:22:
26:25:15:cf:0d:3c:3c:32:b1:a7:c0:39:f7:ae:4a:d2:36:c3:
9a:fb:e6:d4:00:8c:3c:d2:d2:07:72:6e:dd:c9:16:c8:9b:c9:
d3:db:74:03:f0:93:54:40:da:9f:cd:63:a3:dd:e8:e6:b3:cf:
af:95:4b:d4:82:b0:0c:46:15:ba:b9:c1:7e:2a:86:0d:b6:3d:
99:6e:f7:17:b3:b2:55:2c:74:ef:f0:55:21:f7:0d:88:08:3a:
ef:a9:10:9c:7a:6d:e0:13:ef:2d:49:a1:dd:d3:11:90:05:63:
9d:1e:fc:fa:eb:0d:5e:d7:ec:22:6b:6e:9f:f1:59:fb:a3:ca:
d4:3e:ab:16:14:d6:70:2f:dd:e6:d1:25:77:e6:e4:02:75:2a:
ff:9a:a1:88:69:5c:e0:bc:b5:10:0b:70:98:34:8c:92:02:12:
47:91:55:dd:cf:a2:fa:92:27:ea:6c:9a:b5:a6:5c:c6:63:76:
e2:e7:c8:d7:98:2a:75:3f:ac:ed:2c:fa:8b:22:16:cd:cc:83:
6e:64:52:3c:37:fb:2b:6a:28:e8:0f:7e:91:f3:f6:23:21:a4:
51:fc:9f:7e:09:db:2f:aa:c0:2f:c1:8b:a8:6a:45:92:49:89:
1c:f4:a2:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:17:19 2026 by rpki-client