Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer
File: kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer (raw, json)
Hash identifier: sJBXomfTdsau+lW4MmjUNt8wi2E5/3VQPHQ5iuRQRdE=
Subject key identifier: 92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 737B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Feb 2026 14:12:08 +0000
Certificate not after: Sat 01 May 2027 00:00:00 +0000
Subordinate resources: IP: 161.248.190.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 27 Feb 2026 00:38:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29563 (0x737b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 3 14:12:08 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=A91C6A35, serialNumber=924866B40C30442D696F2477015475C5F0702AC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6d:f0:36:b4:31:62:04:8e:de:ad:0d:94:29:
f5:ca:44:26:77:af:24:e9:9a:3c:d6:9a:2b:d9:af:
c9:5d:1b:90:af:98:cb:7a:0e:36:ee:62:48:d1:78:
06:f4:3c:1b:0c:02:d7:19:e6:7a:b0:ff:a4:fa:58:
26:53:8e:6b:6e:71:9d:49:e9:90:bc:c3:4d:1b:46:
05:30:63:3b:bf:40:17:79:f9:bb:9d:f8:83:c6:a0:
a2:ce:f7:74:7f:d0:cf:07:27:9c:32:9d:ee:96:65:
c9:f5:7c:46:f4:0d:2a:6a:c9:dc:0a:e0:18:40:bb:
3e:d8:ed:8b:fd:d9:62:51:8d:e7:27:12:4e:8c:12:
db:ab:7d:35:d6:95:64:fc:52:e5:d3:a4:5d:85:a7:
25:e0:ba:f5:bc:a7:52:c5:77:6c:4a:86:13:53:7d:
e8:64:cc:76:48:8b:2f:b8:d2:44:69:26:80:4a:bc:
d8:78:2c:98:8d:44:d6:c1:70:a8:ce:7e:97:7f:26:
a9:d8:14:1d:96:1f:ee:ea:62:00:20:38:4a:b4:2a:
ee:ac:bb:66:b1:57:af:d9:04:f8:f4:e4:22:fe:f5:
19:92:6f:e5:d9:5a:08:09:24:b8:6f:39:5f:62:fc:
b7:8c:b4:e0:a5:c4:dd:d8:4b:a5:55:b3:44:81:ff:
a0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.190.0/23
Signature Algorithm: sha256WithRSAEncryption
02:6a:49:a6:14:fc:78:06:4b:e9:74:91:a2:22:7e:0d:6e:22:
83:53:a9:c4:9a:bb:99:54:15:47:5e:2d:5d:55:61:ec:1f:f2:
50:c7:7e:fa:43:af:72:1a:04:61:a4:28:48:41:ad:0d:46:2a:
1e:bf:f4:e3:ec:4f:fa:f6:25:a5:2c:e4:50:0f:0a:3b:6a:c5:
05:f9:09:6d:7d:3a:7e:eb:6c:e0:77:a5:05:3f:ca:21:01:3e:
b6:ef:c4:09:a2:73:4c:35:ee:c1:7f:7c:c4:09:04:9b:44:c3:
9e:03:fc:6b:26:10:67:2b:08:88:97:29:0c:fc:4b:ee:b5:d4:
05:2a:cb:e3:75:a0:ee:a3:36:54:73:d0:dd:69:77:69:0f:c2:
98:31:d0:2b:a0:81:71:ea:04:6c:f1:8c:f3:4c:c3:a0:f7:45:
a5:f7:20:9f:2f:3c:d3:7a:29:c9:98:76:6c:aa:ab:67:6f:ac:
c6:6a:2d:a8:a2:00:66:73:4c:8c:69:e2:d5:71:00:91:33:9b:
92:cd:a1:29:67:24:0c:4a:4e:03:f5:0f:59:21:37:5a:4f:97:
17:df:10:ec:95:64:0d:81:9f:0e:91:18:12:40:37:6a:82:f4:
cb:c9:13:b8:83:d7:dc:fe:d4:dc:8c:33:90:94:d1:5f:22:a5:
7a:fb:50:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 20 03:31:57 2026 by rpki-client