Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer
File: ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer (raw, json)
Hash identifier: IznnxVjSZ1HBmLkQT9l3FlnQ+1lGNOWnKdM/ipNoopI=
Subject key identifier: 72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A996
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Apr 2026 13:39:57 +0000
Certificate not after: Fri 28 May 2027 00:00:00 +0000
Subordinate resources: IP: 203.6.241.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174486 (0x2a996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 2 13:39:57 2026 GMT
Not After : May 28 00:00:00 2027 GMT
Subject: CN=A9161477, serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0b:4f:68:f6:6f:0c:c7:9e:4c:32:aa:23:25:
b1:3a:31:3e:65:ae:62:ea:d5:f7:e7:21:09:2e:e2:
56:6c:3e:fa:86:87:8f:fb:c0:5e:83:32:94:5b:74:
0d:e5:d9:28:c8:f5:b0:58:7e:52:05:92:78:08:18:
ef:01:ad:3a:b3:63:82:e8:e6:4f:bd:2e:53:fa:d7:
3b:30:28:4e:43:57:98:df:e0:9c:56:12:47:11:58:
cc:ed:b7:c8:a3:c1:26:af:8a:ce:4d:a2:f9:f2:92:
7b:a6:e2:88:19:d7:7b:82:4c:c6:c4:66:7c:88:bf:
17:ef:fd:b3:c3:6f:fc:ce:68:ee:11:cb:61:6a:b9:
94:29:9a:de:cc:7f:d0:48:43:22:8f:d1:65:2f:73:
60:61:ea:40:7c:a9:70:f7:0d:1d:c7:c6:40:6a:2c:
99:7f:9f:c1:93:df:08:65:7d:d4:3f:72:d2:29:5f:
cd:fd:44:2b:d9:3b:ac:d4:09:19:ed:68:cd:08:8f:
81:4f:42:b0:0a:74:a3:80:42:8f:35:bf:aa:47:61:
6f:85:fd:9f:a0:bd:33:79:51:23:7c:c0:96:2f:a1:
4e:42:ab:3d:12:e4:b7:06:dd:d3:dd:b8:37:4d:d9:
af:23:21:47:ae:e5:75:f9:54:ee:27:fd:f0:68:a9:
72:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.6.241.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:b6:19:72:34:9b:a7:3a:a4:65:00:d4:61:3d:b5:20:2d:00:
61:02:3d:aa:6d:ad:91:d7:bf:9e:5a:98:01:77:90:d1:c0:78:
db:23:9e:c9:3d:f3:cd:c2:98:3d:2b:3d:74:7e:73:64:1d:b9:
1c:1b:21:ce:71:39:88:9a:1f:b3:59:c4:ed:0c:5c:87:70:0d:
45:4d:d8:7d:b0:f4:95:e6:f4:2f:1b:b4:2c:85:12:f8:f1:ce:
0e:1f:59:b9:fe:d2:3c:11:59:93:cb:8a:a6:bf:81:9b:a5:b7:
45:28:39:c4:26:bc:4e:2a:45:4e:72:35:e1:cc:19:67:a1:c8:
09:a5:88:14:ae:7f:6a:25:66:aa:f9:ea:21:5c:3d:3d:83:70:
8d:2e:55:90:42:50:c9:f1:f0:4c:f6:a5:df:04:e5:25:ff:51:
0b:7d:73:01:09:89:a2:9d:28:de:f0:8c:31:41:2c:a2:9d:6e:
74:fd:e7:16:25:80:56:4e:ea:95:74:14:e1:f0:76:db:62:b7:
46:5b:dc:30:59:e5:82:bb:55:d5:09:80:8d:84:9d:cb:5a:e4:
27:cf:13:fb:60:89:05:93:3c:0c:71:ed:93:af:74:3f:34:43:
63:eb:be:61:7c:3a:73:aa:3e:5a:9c:9e:61:20:b3:a9:1f:54:
97:e6:49:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 07:10:41 2026 by rpki-client