
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer
File: z8CATaxP_3oipAThDphkpxHeGck.cer (raw, json)
Hash identifier: 2fpIiWIVhjUqEyGit3i7qIX5Qn1XJbfZIamA5MbQe5M=
Subject key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 7E7A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Jul 2026 14:09:19 +0000
Certificate not after: Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources: IP: 160.25.66.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 19:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32378 (0x7e7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 8 14:09:19 2026 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2f:b7:f9:76:eb:d0:cd:ae:4a:7f:ea:6c:cd:
80:98:61:ce:ec:8a:92:68:4d:5f:b6:8d:39:34:44:
c0:17:fc:5f:41:8e:72:61:fa:d7:fc:d8:b5:90:8e:
b2:77:6f:53:b1:ea:a9:26:d0:73:98:b3:9a:1e:03:
96:e6:78:9d:04:13:2b:53:06:f0:13:53:34:57:9c:
89:74:4a:f6:cc:bb:50:bf:04:07:23:b8:a8:9b:a2:
2a:f3:43:16:ad:a8:32:b8:53:34:29:ed:e0:35:60:
ed:1c:49:33:8f:0d:b5:35:66:ec:80:f9:31:cf:ab:
55:2c:60:80:4e:4f:c1:89:bf:95:3a:84:3c:08:69:
10:1f:53:28:47:6e:29:75:0e:28:98:ba:66:cb:9f:
37:15:7d:d1:b0:af:03:29:ac:42:ce:c2:c9:24:0e:
67:c5:50:02:f5:31:ce:4a:4d:b0:3e:89:1e:44:0c:
df:b2:0b:de:26:25:3d:c2:6a:63:37:ac:e8:81:67:
51:68:3a:34:91:d1:2b:d1:a4:8e:59:9b:2e:c9:e0:
48:d0:62:0a:15:f6:79:f1:78:5f:8f:97:15:69:fb:
3e:c8:e0:bd:df:b6:75:4e:f6:19:e0:a0:e5:c0:09:
68:05:9e:37:1c:76:4c:9a:69:0d:dd:33:30:a6:18:
01:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.66.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:3a:62:88:9a:d3:77:d1:d5:4e:28:a6:3f:c7:ef:f3:d7:ff:
07:f7:86:ba:38:13:1d:06:d1:bf:3c:38:b5:ce:42:2d:23:5f:
72:11:1c:e0:fa:88:bf:6a:0c:98:8d:ec:30:a3:10:7b:36:9e:
48:e0:3d:c2:57:09:f9:4a:cf:8a:be:13:3e:92:60:cd:ac:0a:
42:57:0b:8a:f6:20:2d:51:f6:50:c0:4c:1c:83:26:0a:10:76:
66:78:64:e1:44:f8:91:09:77:80:5a:c1:71:ab:69:27:49:00:
1e:b5:d2:a1:ae:30:f1:c1:35:9c:30:97:f4:05:79:6c:81:bb:
7c:16:f6:9a:b4:a1:33:26:82:ce:17:ee:ee:bf:9b:10:e2:87:
e0:33:be:ff:93:b1:79:4d:5d:ff:86:ad:ab:f7:70:34:12:59:
b6:1e:69:0d:fa:05:25:42:e3:5d:58:71:e5:99:03:ee:01:fd:
fe:99:c2:94:e1:2b:53:02:c1:e2:3a:69:ac:99:03:05:05:57:
66:34:99:1c:3a:94:99:e7:82:2c:ee:11:08:28:7f:fb:e8:2a:
fd:de:bf:68:3a:c0:49:47:0a:3d:10:2a:68:c2:ad:d9:f7:88:
44:d3:19:f2:68:5a:30:f4:40:20:52:2d:ce:87:46:9d:9e:da:
a8:c3:68:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 02:17:37 2026 by rpki-client