Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A_8GV8Ds-HOYMDP3xsZIizN4nEM.cer
File: A_8GV8Ds-HOYMDP3xsZIizN4nEM.cer (raw, json)
Hash identifier: d3hBlLsdqJTpNoDuoWOEtJGUJiPE8KGcl6Ea9j2ekHY=
Subject key identifier: 03:FF:06:57:C0:EC:F8:73:98:30:33:F7:C6:C6:48:8B:33:78:9C:43
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B5E1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918CFAD/561D662EEA0411EE92D10611C4F9AE02/A_8GV8Ds-HOYMDP3xsZIizN4nEM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918CFAD/561D662EEA0411EE92D10611C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 May 2026 13:43:56 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: AS: 152593
IP: 2001:df3:81c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 Jul 2026 05:51:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177633 (0x2b5e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 20 13:43:56 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A918CFAD, serialNumber=03FF0657C0ECF873983033F7C6C6488B33789C43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:24:d7:c8:9b:cd:64:1d:53:76:75:00:ac:05:
dc:ac:2d:b2:6c:a8:bd:d6:84:6d:00:d8:ca:4c:19:
48:33:14:a6:6d:b5:7c:32:f4:9e:ab:6f:30:05:eb:
16:b1:16:11:cc:86:39:1a:4b:a3:c2:54:65:28:e0:
4b:68:92:7d:b9:26:60:0d:a3:43:67:32:b8:24:bb:
78:8e:9b:1a:79:e0:f4:0e:93:fa:95:d1:cc:7f:9b:
c2:4c:49:ab:8d:23:65:b7:4b:24:db:0e:4e:a8:3e:
6b:bc:b2:23:a1:40:24:08:eb:ea:eb:51:0a:3d:fa:
62:05:4e:93:88:67:4b:a3:56:17:9e:36:80:11:14:
5a:91:ff:24:39:f0:b7:bc:a1:86:67:3a:6f:24:ca:
e9:e5:89:b9:f7:70:eb:33:c3:8c:79:0f:25:cb:3f:
84:3e:96:f2:8b:b7:37:bf:3e:df:a8:81:55:98:37:
9b:63:14:e4:f6:ba:2b:1b:48:4d:15:7d:8d:0f:09:
6d:27:4b:f4:49:b8:06:10:31:e4:3a:0c:de:af:76:
18:d0:73:c3:80:5a:eb:4f:4d:38:72:77:62:ba:85:
2e:b0:d8:9a:3f:08:46:50:1d:43:27:79:1b:29:6b:
d4:1c:12:a4:41:68:47:9e:e7:55:37:d9:9f:33:07:
60:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:FF:06:57:C0:EC:F8:73:98:30:33:F7:C6:C6:48:8B:33:78:9C:43
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/561D662EEA0411EE92D10611C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/561D662EEA0411EE92D10611C4F9AE02/A_8GV8Ds-HOYMDP3xsZIizN4nEM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152593
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:81c0::/48
Signature Algorithm: sha256WithRSAEncryption
d4:94:d4:8c:5c:55:51:26:10:5f:97:ce:bf:33:53:ee:de:a0:
9d:9c:4f:69:67:26:06:cc:e1:cf:cf:1b:41:f5:49:19:10:be:
15:ab:34:ad:02:30:f0:53:7d:e4:1d:9c:cd:49:bf:c9:0c:40:
3c:76:f3:a5:c9:6a:63:bb:76:5f:a9:d2:7e:d4:90:14:b8:93:
82:22:0c:67:48:03:75:e5:a7:16:b4:96:81:46:3e:a6:65:ff:
21:85:61:75:38:f7:da:40:68:0b:ac:bd:33:e5:21:24:a3:37:
58:34:85:75:2a:2e:1e:11:4b:a9:e6:e9:32:22:bb:8d:64:38:
b4:e9:ba:c5:2c:7e:7c:c8:32:b9:65:46:54:be:cb:27:22:fd:
03:c5:5c:a2:72:c4:25:7a:ad:c0:b2:0d:ff:c6:0e:87:d4:60:
23:88:82:2f:b2:c0:dc:f7:09:10:1a:63:67:99:4f:d4:7e:99:
fc:7e:26:c0:35:e6:a9:9d:77:6d:84:4a:08:ec:97:b7:6b:8c:
48:5d:9f:a1:c3:4c:7b:d8:e1:ae:81:e9:be:92:bb:b1:94:81:
92:82:54:47:cd:c7:55:ba:f2:b0:04:42:55:72:ae:a4:b9:d5:
1d:e8:70:b3:83:fe:27:0f:72:b5:1a:29:39:c2:74:94:e5:b1:
75:92:e9:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 10:17:44 2026 by rpki-client