
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer
File: ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer (raw, json)
Hash identifier: 0p4heYIxbL4FOGJbJ91/V9bO/FRXhABk1Ao2nGF8vms=
Subject key identifier: 8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02C2A9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 Jul 2026 14:13:21 +0000
Certificate not after: Tue 31 Aug 2027 00:00:00 +0000
Subordinate resources: AS: 17765
IP: 203.4.188.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 Jul 2026 17:10:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180905 (0x2c2a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 14:13:21 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=A91AC4FA, serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:60:70:9a:26:54:72:7f:94:65:6e:97:78:15:
41:db:1a:1b:97:a7:ce:a4:a0:50:90:3b:29:d9:e9:
4a:52:62:57:a9:1f:80:13:80:db:6c:25:f8:86:19:
1a:32:5a:6c:32:7c:7d:c9:14:19:6c:34:a6:82:52:
dc:d8:b5:d1:13:f8:48:cf:01:3a:3a:be:19:dc:51:
53:32:29:80:2a:4a:e8:7f:ce:96:d8:cf:6e:1a:09:
80:7b:fd:5e:3d:9c:97:b3:d2:29:a6:cf:15:1f:e2:
df:cb:c9:2e:3f:36:d6:ef:1c:1e:bb:79:d3:06:7e:
20:48:03:f8:99:60:17:39:bb:db:68:e9:82:41:5c:
69:b6:05:55:4e:67:63:eb:8e:03:30:f9:63:33:a3:
43:45:92:f1:a8:f8:c8:35:aa:3e:36:44:2e:f1:ee:
03:32:8b:cb:e7:24:1a:6c:ce:74:ef:94:f3:85:17:
3d:db:cb:9c:97:3c:d9:59:c1:69:ab:57:22:4c:1f:
f3:b0:f8:e6:8d:df:96:4a:95:e0:67:e6:86:10:14:
25:c7:c0:6f:c7:e5:eb:4b:88:a3:3b:4e:b5:d6:81:
64:a0:a6:f5:5f:bc:37:98:67:e2:2c:2b:5f:8d:e9:
f5:01:0f:bf:79:6e:1e:82:28:a2:77:d2:52:ae:98:
6d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17765
sbgp-ipAddrBlock: critical
IPv4:
203.4.188.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:8a:f0:d9:04:e5:22:97:8d:d6:4a:a3:49:0f:ca:7c:9e:72:
37:7d:a5:43:ee:2d:74:0a:2a:b7:95:b7:4f:42:29:95:70:d2:
90:8a:89:aa:c1:b4:94:1c:80:8f:45:1a:2b:52:90:d9:70:01:
76:e6:40:99:a6:bd:32:e4:10:d5:83:64:46:db:5e:de:76:69:
17:0d:3f:e6:85:17:fc:aa:61:df:23:2b:d0:d3:85:6c:79:ee:
ea:fa:06:b4:9c:f0:0c:c3:7c:cf:31:1d:60:e9:46:f4:3b:a8:
d6:67:d5:60:a4:f9:92:f2:49:93:29:89:3b:92:a3:c5:b9:e5:
49:58:e1:16:07:09:21:46:a8:4b:fb:e2:01:0a:fe:54:3e:be:
7d:9d:67:67:d1:a0:b6:f5:94:89:12:72:6a:ca:fc:6a:47:da:
98:3e:9b:c8:fd:f6:e2:d7:2a:3a:86:b1:5d:0e:ba:e5:0f:86:
62:eb:74:31:2b:c9:af:9d:e8:5d:2c:33:12:dd:93:31:a9:7a:
51:88:99:c6:72:3d:b2:db:24:c2:36:6b:ae:7e:ed:36:8d:16:
54:0e:22:1e:66:f4:8e:e5:1e:be:09:8d:23:a4:99:48:6d:46:
fc:9f:39:66:7d:01:e2:39:54:c0:2b:ed:bb:5d:1e:02:64:96:
da:cf:05:39
-----BEGIN CERTIFICATE-----
MIIGGTCCBQGgAwIBAgIDAsKpMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI2MDcwMzE0MTMyMVoXDTI3MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUM0RkExMTAvBgNVBAUTKDhBRjdEOEI4NjRGRDkwNDUyRkZENkRF
OTNCNTE0NTZDNzlFRkIzQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQD4YHCaJlRyf5Rlbpd4FUHbGhuXp86koFCQOynZ6UpSYlepH4ATgNtsJfiGGRoy
WmwyfH3JFBlsNKaCUtzYtdET+EjPATo6vhncUVMyKYAqSuh/zpbYz24aCYB7/V49
nJez0immzxUf4t/LyS4/NtbvHB67edMGfiBIA/iZYBc5u9to6YJBXGm2BVVOZ2Pr
jgMw+WMzo0NFkvGo+Mg1qj42RC7x7gMyi8vnJBpsznTvlPOFFz3by5yXPNlZwWmr
VyJMH/Ow+OaN35ZKleBn5oYQFCXHwG/H5etLiKM7TrXWgWSgpvVfvDeYZ+IsK1+N
6fUBD795bh6CKKJ30lKumG1nAgMBAAGjggMOMIIDCjAdBgNVHQ4EFgQUivfYuGT9
kEUv/W3pO1FFbHnvs8cwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFDNEZBLzM3Q0I4Nzk4NkM4QjExRUQ4N0FGRjU3MUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBQzRGQS8zN0NCODc5ODZDOEIxMUVEODdBRkY1NzFDNEY5QUUwMi9pdmZZdUdU
OWtFVXZfVzNwTzFGRmJIbnZzOGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICRWUwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALLBLwwDQYJKoZI
hvcNAQELBQADggEBAA+K8NkE5SKXjdZKo0kPynyecjd9pUPuLXQKKreVt09CKZVw
0pCKiarBtJQcgI9FGitSkNlwAXbmQJmmvTLkENWDZEbbXt52aRcNP+aFF/yqYd8j
K9DThWx57ur6BrSc8AzDfM8xHWDpRvQ7qNZn1WCk+ZLySZMpiTuSo8W55UlY4RYH
CSFGqEv74gEK/lQ+vn2dZ2fRoLb1lIkScmrK/GpH2pg+m8j99uLXKjqGsV0OuuUP
hmLrdDErya+d6F0sMxLdkzGpelGImcZyPbLbJMI2a65+7TaNFlQOIh5m9I7lHr4J
jSOkmUhtRvyfOWZ9AeI5VMAr7btdHgJkltrPBTk=
-----END CERTIFICATE-----
Generated at Wed Jul 8 18:30:03 2026 by rpki-client