Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpwRxtKUXVL5XyTDndH0GHo0F-U.cer
File: LpwRxtKUXVL5XyTDndH0GHo0F-U.cer (raw, json)
Hash identifier: OkFFh+wuoWMoSigQmNHwlv2K8XZ/fUtXtd1YJbf8Br0=
Subject key identifier: 2E:9C:11:C6:D2:94:5D:52:F9:5F:24:C3:9D:D1:F4:18:7A:34:17:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0270F6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/LpwRxtKUXVL5XyTDndH0GHo0F-U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 31 Oct 2025 14:13:39 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 103.21.4.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159990 (0x270f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 31 14:13:39 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A913B31D, serialNumber=2E9C11C6D2945D52F95F24C39DD1F4187A3417E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:63:ba:79:71:bd:60:58:5d:0f:1f:0f:37:55:
f5:f8:89:35:39:b5:4a:99:31:44:69:f7:bc:ac:30:
2d:67:04:6b:ac:08:81:98:3a:6e:ca:61:93:dc:de:
81:48:2d:4a:0c:67:4a:0b:7e:4e:57:c4:ff:dc:c2:
0a:21:d3:2f:dd:b7:f4:af:fa:b2:d5:af:22:0f:77:
e1:6e:27:79:0b:65:9c:e1:44:6c:9a:60:71:73:d3:
f4:d0:a5:46:eb:04:20:63:d0:43:03:4c:2f:d3:00:
f6:9f:8f:68:29:08:29:77:99:f0:8b:1a:d3:88:da:
a4:0e:04:e0:ca:c4:e6:d9:b3:ae:45:6c:a5:ff:c7:
e1:87:bd:cc:63:c0:85:58:75:3f:ab:31:48:49:84:
9d:ee:8a:0c:71:af:97:7b:66:aa:8e:3d:56:cf:8f:
04:06:8a:6d:7f:35:cc:c8:f5:f5:15:e0:9d:4c:ea:
98:f6:82:b8:96:3c:9d:8f:1d:7d:86:b5:15:ec:59:
c8:e3:e4:a8:db:7b:b4:6c:81:d9:e8:38:f2:f3:1f:
8b:7e:19:df:f6:7d:c8:9f:72:5c:f4:63:77:b3:c4:
05:be:1e:3f:9f:2f:5b:74:79:49:5c:cb:0d:19:8e:
fa:b1:42:69:cd:0c:d3:d6:d5:57:b0:7e:7d:0f:d6:
54:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:9C:11:C6:D2:94:5D:52:F9:5F:24:C3:9D:D1:F4:18:7A:34:17:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/LpwRxtKUXVL5XyTDndH0GHo0F-U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.21.4.0/23
Signature Algorithm: sha256WithRSAEncryption
70:0d:d4:30:eb:26:fd:98:86:46:fb:98:ee:ef:62:ff:8a:d6:
92:24:09:6c:e1:b5:20:9a:2a:16:77:81:20:ec:3b:1e:34:a4:
6f:d9:aa:55:0c:02:2c:67:27:85:31:b9:11:7a:88:f5:50:d5:
65:21:a9:7e:69:97:7b:c5:f8:69:2f:da:b4:57:be:ad:9e:47:
66:33:1a:15:d7:26:27:72:7c:e4:68:ec:03:17:01:0f:a4:02:
f2:9e:84:75:2e:d4:17:bc:41:f1:0d:2a:70:10:4f:ed:e3:f2:
2a:21:61:55:9a:31:1e:91:da:34:7c:8b:cd:bf:87:be:91:df:
d8:d5:6a:88:08:8c:5b:51:72:a1:9c:e6:1f:36:d8:83:52:9f:
28:14:09:4c:de:2d:f5:06:99:ca:e3:7a:3a:a7:b5:17:dd:61:
42:67:1e:83:23:38:73:9f:23:b9:53:1d:4e:9a:02:3d:17:a3:
10:66:85:28:4f:8f:b2:d4:f0:20:ae:9d:d2:d2:13:e0:69:c2:
7a:fa:e3:a2:76:b1:db:35:3d:51:55:9c:e0:cc:5c:ea:85:5f:
83:e6:69:79:2c:bb:f7:00:ff:d2:74:63:b1:4c:7f:59:2d:31:
cb:5b:fa:93:13:15:50:a6:68:11:01:3d:fd:40:02:9a:e6:4f:
c8:67:52:6e
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAnD2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MTAzMTE0MTMzOVoXDTI2MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxM0IzMUQxMTAvBgNVBAUTKDJFOUMxMUM2RDI5NDVENTJGOTVGMjRD
MzlERDFGNDE4N0EzNDE3RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDFY7p5cb1gWF0PHw83VfX4iTU5tUqZMURp97ysMC1nBGusCIGYOm7KYZPc3oFI
LUoMZ0oLfk5XxP/cwgoh0y/dt/Sv+rLVryIPd+FuJ3kLZZzhRGyaYHFz0/TQpUbr
BCBj0EMDTC/TAPafj2gpCCl3mfCLGtOI2qQOBODKxObZs65FbKX/x+GHvcxjwIVY
dT+rMUhJhJ3uigxxr5d7ZqqOPVbPjwQGim1/NczI9fUV4J1M6pj2griWPJ2PHX2G
tRXsWcjj5Kjbe7RsgdnoOPLzH4t+Gd/2fcifclz0Y3ezxAW+Hj+fL1t0eUlcyw0Z
jvqxQmnNDNPW1Vewfn0P1lTHAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQULpwRxtKU
XVL5XyTDndH0GHo0F+UwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTNCMzFEL0U3RTdFQzUwQkQ2OTExRUQ5QjU1MjI2RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzQjMxRC9FN0U3RUM1MEJENjkxMUVEOUI1NTIyNkVDNEY5QUUwMi9McHdSeHRL
VVhWTDVYeVREbmRIMEdIbzBGLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAFnFQQwDQYJKoZIhvcNAQELBQADggEBAHAN1DDrJv2Yhkb7mO7v
Yv+K1pIkCWzhtSCaKhZ3gSDsOx40pG/ZqlUMAixnJ4UxuRF6iPVQ1WUhqX5pl3vF
+Gkv2rRXvq2eR2YzGhXXJidyfORo7AMXAQ+kAvKehHUu1Be8QfENKnAQT+3j8ioh
YVWaMR6R2jR8i82/h76R39jVaogIjFtRcqGc5h822INSnygUCUzeLfUGmcrjejqn
tRfdYUJnHoMjOHOfI7lTHU6aAj0XoxBmhShPj7LU8CCundLSE+Bpwnr646J2sds1
PVFVnODMXOqFX4PmaXksu/cA/9J0Y7FMf1ktMctb+pMTFVCmaBEBPf1AAprmT8hn
Um4=
-----END CERTIFICATE-----
Generated at Mon Nov 3 11:18:22 2025 by rpki-client