Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer
File: QRfXbD7AS2IRM0hQpc1uowVTUFw.cer (raw, json)
Hash identifier: nG0TvJFXjEqP6GkRtP4Cru0G00LeVKryaKrEqqBSqIE=
Subject key identifier: 41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 028978
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Jan 2026 23:07:47 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: IP: 203.24.73.0/24
IP: 203.32.71.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 12:25:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166264 (0x28978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 28 23:07:47 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A91ED6B5, serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:86:99:11:bf:58:0d:b4:6a:2e:cd:be:9d:25:
8d:9b:b0:c3:66:42:ed:0c:71:c5:9d:8a:54:ec:8e:
de:32:0b:ea:c6:4d:13:a8:c6:26:a2:27:3c:61:ff:
0f:13:83:ce:7d:2f:59:95:a7:27:e7:62:b8:6b:33:
c7:7d:87:7c:79:d0:c7:11:1c:19:f2:85:51:32:9e:
c5:09:c2:07:c9:aa:bc:c3:30:84:51:06:f5:da:e4:
1e:29:24:e3:aa:d8:54:23:99:2d:1b:9c:29:c1:ca:
31:cf:70:cb:c7:c5:c6:b8:4f:25:9e:bf:a0:a1:07:
6d:de:a3:0a:8e:69:60:99:d0:40:6d:44:7b:67:89:
e3:14:01:70:94:2d:42:68:6d:01:26:8f:9e:ea:68:
85:85:19:c5:4d:77:de:38:11:64:2d:10:9d:30:94:
66:e8:c6:a9:95:7b:3c:dd:9d:49:2c:8f:68:8d:8c:
63:fc:b4:9a:6f:2c:e2:a3:c5:30:a1:0c:8b:1f:54:
c2:2a:23:ad:90:98:25:c3:7a:a7:05:3a:53:9e:7a:
00:b1:a2:94:92:b1:9a:3b:42:57:f6:50:24:d5:a4:
59:05:3b:72:e8:94:39:88:c5:14:0e:07:2f:70:29:
d6:66:ad:85:5d:0b:12:3f:4c:d1:2e:94:bd:2a:65:
db:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.24.73.0/24
203.32.71.0/24
Signature Algorithm: sha256WithRSAEncryption
26:da:9b:3b:65:7a:cc:58:93:b9:bf:86:f0:3f:fc:b5:3b:1b:
d2:ab:55:b7:9b:8d:ca:78:a4:f8:f6:38:b0:49:ed:76:58:ce:
09:2e:5a:b8:6e:f3:ad:fe:83:e6:e1:54:3e:71:08:b2:8d:64:
65:5e:ce:80:70:18:be:6b:89:52:61:b6:96:14:8c:39:0d:b1:
3f:f6:aa:0b:60:da:d5:f1:74:1b:44:e0:a4:c0:f8:65:29:38:
42:f7:2e:91:c7:df:e5:10:cd:99:18:68:a3:a0:e2:41:f3:a0:
31:98:ae:d5:4c:09:30:b5:5b:36:5b:b7:7d:ae:c7:36:03:11:
53:82:33:86:92:40:d9:de:47:46:03:2b:16:0b:42:84:ed:23:
e9:1c:94:69:fe:8b:d9:14:7c:1d:f3:a0:22:53:32:d9:7d:ad:
13:bc:ed:27:c6:28:25:25:b1:f8:11:db:b1:3a:da:82:ef:e7:
95:68:cc:e3:00:59:5c:85:8f:db:6a:e0:01:cb:69:c6:ea:5a:
0a:b4:49:2c:60:e3:4c:30:6e:f6:8f:5f:87:fe:02:b0:67:77:
e6:3d:b1:64:27:61:99:3c:d0:3a:e4:80:84:92:82:b1:55:09:
bd:b9:66:4b:4a:ec:9d:aa:13:7d:3f:4f:5c:99:3d:c6:df:07:
02:d4:11:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 15:06:09 2026 by rpki-client