Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer
File: QVO6SZpE5-wQQcYO9_NprGI1eqg.cer (raw, json)
Hash identifier: PxVoc3tjsgmYJaGgHBLaEAm48irQha8pu83mwkpLjTg=
Subject key identifier: 41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0284A2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 08 Jan 2026 12:55:14 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 152125
IP: 36.50.31.0/24
IP: 2001:df3:3340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 13:09:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165026 (0x284a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 8 12:55:14 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A91423C1, serialNumber=4153BA499A44E7EC1041C60EF7F369AC62357AA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:06:30:97:2e:a2:1b:ae:5e:c6:fa:f6:00:
45:ad:76:68:ce:08:f8:56:6e:1d:6f:b0:4e:03:c3:
0f:0e:40:58:00:fa:df:49:35:2b:1d:fc:98:04:87:
5c:51:99:bb:51:e3:43:80:db:2c:a9:4b:f0:5f:f6:
db:d7:27:86:6e:ae:ab:18:e3:2a:97:42:de:87:90:
b2:02:c1:43:9b:a1:06:29:f1:fc:e5:65:73:d8:a0:
50:03:cf:29:ac:d6:5b:41:80:95:91:7f:5c:f6:c3:
47:68:a5:34:ad:1c:af:7b:b6:e2:bf:f3:c8:fa:9b:
76:92:50:a9:08:51:cf:f2:16:19:e7:30:c8:1f:60:
98:b3:91:d7:c4:e6:51:4e:cd:e3:78:84:60:21:5b:
4c:d6:55:df:e1:20:26:22:83:02:55:5c:c3:bb:c0:
71:11:a2:5b:87:d5:6a:3e:73:61:83:55:02:c4:38:
a3:15:26:88:eb:86:f4:26:d9:fc:7a:27:1b:9d:e4:
3f:00:3c:87:0e:ed:8b:92:11:cb:bb:e4:1a:42:77:
5d:3c:f8:85:01:3a:ab:fa:39:dd:78:e5:69:0d:d3:
4d:39:36:fd:5b:14:eb:3d:e7:e4:4d:d5:e7:87:c6:
21:6f:9e:7f:db:92:be:37:13:c3:53:99:3b:ad:5f:
27:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152125
sbgp-ipAddrBlock: critical
IPv4:
36.50.31.0/24
IPv6:
2001:df3:3340::/48
Signature Algorithm: sha256WithRSAEncryption
3a:12:29:b5:fe:92:93:88:67:4c:52:76:a1:7e:86:e6:b3:d5:
a8:e4:e6:91:0e:a1:47:52:b1:46:77:a1:9e:5c:81:66:57:28:
1a:31:20:74:8c:f9:9a:39:95:1e:af:2a:ee:a6:80:77:87:55:
49:5e:ad:e9:1e:54:82:eb:b0:93:b6:55:f6:f0:ad:89:52:d5:
38:74:9d:25:66:d5:d8:46:cf:aa:51:76:bd:23:fb:69:3b:9c:
a3:1a:c5:fe:06:e0:3a:41:6d:6a:5a:c2:94:df:03:0c:95:73:
a4:03:bf:a6:6f:89:82:7d:af:25:f9:be:4a:87:05:29:16:9e:
97:af:d6:5f:2a:68:9f:43:6b:93:4e:83:59:5a:ec:5f:fa:54:
ed:08:52:d9:4b:ab:0c:be:0e:10:92:cd:e9:dd:c5:45:66:7b:
60:e1:97:7a:46:e5:78:b5:3f:43:f5:58:f5:f0:7d:b9:9f:50:
f6:6f:50:14:6c:4f:ad:8c:c8:ef:96:ff:04:ae:47:e1:0e:cc:
6f:d3:f9:9a:c5:b8:3f:43:ad:88:79:0e:09:61:dc:3c:72:b1:
24:10:eb:af:d2:f5:a4:f9:16:21:82:1a:ad:6f:b7:be:91:6b:
28:7d:f8:fa:60:0e:43:74:2c:48:e5:32:5f:be:f2:81:cd:e0:
62:16:28:23
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Feb 19 15:08:45 2026 by rpki-client