Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer
File: kBUoySF5F9lWch0caFZlNFvrVv0.cer (raw, json)
Hash identifier: M65RmWeQqw6LwuteI5uF7pQy0nlkl/ykdAL1NVcx6z0=
Subject key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 797D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Apr 2026 15:15:28 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: IP: 192.94.236.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31101 (0x797d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 2 15:15:28 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:05:b5:e5:6e:87:9f:c0:3b:26:dd:36:12:4b:
86:87:e0:16:a4:13:ac:aa:8f:72:f7:7e:b5:cb:94:
42:cb:c0:81:c9:cf:59:eb:37:48:9a:d9:1b:e1:2c:
57:f9:73:e3:a1:93:d6:05:1f:33:33:86:16:cf:ca:
24:20:d9:1b:58:e7:50:dc:ee:94:48:eb:e4:97:b7:
6f:ee:1f:ba:b4:3b:ba:5c:57:2f:a2:28:22:cd:da:
b4:14:ae:9f:99:d5:ee:ae:27:56:2c:95:ce:98:d2:
51:4b:9b:66:e8:d9:b9:aa:8f:79:17:9c:6f:f6:6d:
3e:21:ae:ae:f8:bd:0d:d3:fc:90:b0:a5:1b:8a:86:
d0:43:e0:aa:67:92:79:2e:07:d1:7b:96:6e:53:98:
a5:a1:e0:f0:2e:f9:d0:b3:00:80:4b:6d:81:44:c8:
5a:fd:8d:f2:3b:ff:ba:61:88:03:38:49:41:cc:b7:
70:94:53:83:47:d3:32:f8:0f:f6:66:be:42:36:b4:
20:60:09:aa:7a:6d:67:4e:b3:10:b4:c2:3e:df:4b:
e1:bd:38:15:77:d5:84:07:a0:96:e4:9c:6e:c9:b8:
07:00:56:f3:cf:b5:04:a5:05:80:ae:95:bb:be:b9:
e2:f4:7d:68:2c:77:d6:9f:74:73:a3:72:53:3a:bf:
09:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.94.236.0/24
Signature Algorithm: sha256WithRSAEncryption
86:40:15:9f:fd:7d:f2:fb:d5:1d:2e:44:9f:0b:74:5c:87:4b:
6a:ec:58:53:64:58:35:cf:9f:d2:e3:c8:bb:c5:43:9e:63:0b:
98:3a:d1:03:30:c8:32:a5:e5:2c:2a:e2:f0:46:09:43:5a:c0:
36:7b:a9:b2:6a:03:03:d0:f5:27:44:0c:5a:60:57:a2:59:ab:
e3:9e:09:32:73:b6:50:54:e9:3c:25:e0:d4:f8:bd:2b:19:55:
a0:07:38:cb:66:61:e7:21:21:a3:d2:67:fc:45:5c:a0:38:ad:
1e:4e:02:53:9e:b9:f1:f7:1b:43:1f:68:31:77:23:ac:ec:fa:
3a:fc:5f:dc:13:ef:a6:83:96:20:33:0c:8a:22:ee:fd:57:54:
b1:64:27:45:50:f4:73:56:ef:87:f7:e4:e4:ae:79:af:67:f9:
30:42:91:07:ea:b0:10:91:21:34:1b:f1:82:f9:07:52:09:7e:
d4:05:70:b8:3f:25:10:ff:60:cb:17:1d:de:cc:ed:bd:ea:18:
85:53:b3:28:7a:f5:e1:e6:ae:39:d0:3f:d6:9e:2a:72:0c:6c:
6c:b6:1b:13:dd:21:43:f0:36:54:da:45:3a:00:55:43:30:8d:
f5:97:4f:df:84:6a:a7:ed:17:6b:80:2b:0e:7c:39:b1:fa:60:
cb:eb:d6:5d
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICeX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjYwNDAyMTUxNTI4WhcNMjcwNTI4MDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFDRkFCOTExMC8GA1UEBRMoOTAxNTI4QzkyMTc5MTdEOTU2NzIxRDFD
Njg1NjY1MzQ1QkVCNTZGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AM4FteVuh5/AOybdNhJLhofgFqQTrKqPcvd+tcuUQsvAgcnPWes3SJrZG+EsV/lz
46GT1gUfMzOGFs/KJCDZG1jnUNzulEjr5Je3b+4furQ7ulxXL6IoIs3atBSun5nV
7q4nViyVzpjSUUubZujZuaqPeRecb/ZtPiGurvi9DdP8kLClG4qG0EPgqmeSeS4H
0XuWblOYpaHg8C750LMAgEttgUTIWv2N8jv/umGIAzhJQcy3cJRTg0fTMvgP9ma+
Qja0IGAJqnptZ06zELTCPt9L4b04FXfVhAegluScbsm4BwBW88+1BKUFgK6Vu765
4vR9aCx31p90c6NyUzq/CU8CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSQFSjJIXkX
2VZyHRxoVmU0W+tW/TAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0ZBQjkvMUNENDRGOUVDNzdBMTFFQ0I5NDM0QzJDQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNGQUI5LzFDRDQ0RjlFQzc3QTExRUNCOTQzNEMyQ0M0RjlBRTAyL2tCVW95U0Y1
RjlsV2NoMGNhRlpsTkZ2clZ2MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAMBe7DANBgkqhkiG9w0BAQsFAAOCAQEAhkAVn/198vvVHS5Enwt0
XIdLauxYU2RYNc+f0uPIu8VDnmMLmDrRAzDIMqXlLCri8EYJQ1rANnupsmoDA9D1
J0QMWmBXolmr454JMnO2UFTpPCXg1Pi9KxlVoAc4y2Zh5yEho9Jn/EVcoDitHk4C
U5658fcbQx9oMXcjrOz6Ovxf3BPvpoOWIDMMiiLu/VdUsWQnRVD0c1bvh/fk5K55
r2f5MEKRB+qwEJEhNBvxgvkHUgl+1AVwuD8lEP9gyxcd3sztveoYhVOzKHr14eau
OdA/1p4qcgxsbLYbE90hQ/A2VNpFOgBVQzCN9ZdP34Rqp+0Xa4ArDnw5sfpgy+vW
XQ==
-----END CERTIFICATE-----
Generated at Mon Apr 6 13:54:22 2026 by rpki-client