Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7drOQHH9qFhc8SNEuCUSze8H860.cer
File: 7drOQHH9qFhc8SNEuCUSze8H860.cer (raw, json)
Hash identifier: kmuZvdWi5NFvB10XnDH14Qp8jzOnAzk9EG1O/jWI3vM=
Subject key identifier: ED:DA:CE:40:71:FD:A8:58:5C:F1:23:44:B8:25:12:CD:EF:07:F3:AD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02AF5F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D9335/E626E5D01D8B11E2AEFDDAE608B02CD2/7drOQHH9qFhc8SNEuCUSze8H860.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D9335/E626E5D01D8B11E2AEFDDAE608B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 27 Apr 2026 14:37:07 +0000
Certificate not after: Thu 01 Jul 2027 00:00:00 +0000
Subordinate resources: IP: 27.121.92.0/22
IP: 202.176.8.0/22
IP: 203.81.12.0/22
IP: 2406:fe00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 May 2026 08:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175967 (0x2af5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 27 14:37:07 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=A91D9335, serialNumber=EDDACE4071FDA8585CF12344B82512CDEF07F3AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:91:66:66:a9:87:a2:e0:ba:1f:31:84:16:16:
44:2f:76:3d:00:8f:59:74:08:e0:10:25:3a:01:4f:
81:5d:e9:d0:5b:df:8a:68:bf:66:71:96:a0:84:51:
84:21:55:50:4f:12:a1:54:58:96:7a:b6:f3:83:4e:
0c:fd:19:a5:f0:a3:ff:2c:00:79:79:a5:5f:84:57:
9a:42:18:c1:64:a7:1a:34:64:5a:71:b1:f4:26:49:
fa:94:3d:91:5a:2d:ad:32:d0:2b:58:a6:ce:7d:5a:
0d:5c:33:4f:7e:93:8e:aa:d2:59:02:b0:4e:1c:f1:
c5:9d:60:8d:07:6b:02:fd:dc:62:cc:c5:6a:6f:1c:
97:87:57:77:8e:1e:14:33:e2:94:5c:3c:ea:3c:68:
57:dd:6f:0e:09:78:72:02:6e:5c:43:0e:eb:8f:6d:
94:b7:f8:21:84:ec:d9:8f:ea:e0:0b:41:4f:56:d9:
2d:1f:a4:28:ee:58:35:87:b9:cb:8f:04:6b:dd:53:
1e:41:d4:ee:69:69:f3:bf:a5:62:b2:50:5c:28:ae:
3f:2c:dd:49:30:49:a5:ac:93:45:01:fd:d1:cc:21:
dc:ad:3e:03:ed:6b:13:af:21:bb:37:0b:f7:01:a2:
ab:b1:eb:89:ae:9b:e7:98:82:54:82:be:69:89:f1:
20:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:DA:CE:40:71:FD:A8:58:5C:F1:23:44:B8:25:12:CD:EF:07:F3:AD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D9335/E626E5D01D8B11E2AEFDDAE608B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D9335/E626E5D01D8B11E2AEFDDAE608B02CD2/7drOQHH9qFhc8SNEuCUSze8H860.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.121.92.0/22
202.176.8.0/22
203.81.12.0/22
IPv6:
2406:fe00::/32
Signature Algorithm: sha256WithRSAEncryption
3e:9b:35:84:4d:75:cb:1a:34:16:09:b4:fe:3b:fc:52:9d:75:
ee:1e:c2:21:2a:c9:4f:81:3b:79:b0:58:6c:03:43:90:cc:6f:
df:fe:64:81:86:e2:ba:64:6d:53:f3:ec:ed:18:1b:6d:56:57:
60:df:e8:26:82:a1:51:26:d9:e7:d2:af:b6:5b:6c:cf:ea:6f:
a4:08:84:58:56:dd:5e:c2:8c:ee:0a:9f:6e:c8:b9:9a:01:48:
64:ce:6f:08:6b:10:a4:ca:42:b6:f6:bc:68:fd:a0:55:3c:f4:
31:c1:a2:07:83:53:86:5d:a2:45:3a:48:07:15:e0:e1:b7:d6:
96:ed:2d:e9:8d:db:0e:18:15:70:99:91:b1:74:3b:96:8d:42:
ab:37:c2:9d:df:e7:6b:93:c1:5e:79:51:10:78:23:67:47:67:
bf:7d:5c:b6:d5:2a:fa:c8:74:23:d4:ad:6e:d0:b9:a0:a0:bc:
dd:6c:3a:f9:ef:f9:33:68:61:dd:73:8d:92:de:12:c4:fe:5d:
b8:1c:c9:0e:ef:1d:08:57:ba:8c:24:ff:0b:e1:14:21:d4:94:
30:8a:f2:65:43:8a:36:90:d7:1d:75:1b:dd:96:47:83:5b:2d:
ef:f1:f6:51:5d:2f:65:61:5a:ad:f6:ec:05:4c:d8:95:1a:5e:
6c:2c:74:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 21 09:33:13 2026 by rpki-client