Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qG2L-RW00uHRHYfsP2pwVPETKeg.cer
File: qG2L-RW00uHRHYfsP2pwVPETKeg.cer (raw, json)
Hash identifier: KlqFK3a6k8cWnUwvm91AqHkenx3BFP19pSe/xicmw8k=
Subject key identifier: A8:6D:8B:F9:15:B4:D2:E1:D1:1D:87:EC:3F:6A:70:54:F1:13:29:E8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02B408
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918C553/096C854A4D5C11F1A1CE7A888F833773/qG2L-RW00uHRHYfsP2pwVPETKeg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918C553/096C854A4D5C11F1A1CE7A888F833773/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 May 2026 17:08:36 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: IP: 2001:df0:280::/44
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 May 2026 04:46:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177160 (0x2b408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 11 17:08:36 2026 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A918C553, serialNumber=A86D8BF915B4D2E1D11D87EC3F6A7054F11329E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:91:1b:cb:d7:29:20:9d:26:2b:8d:0d:4f:33:
cb:b5:81:2d:81:6f:99:2d:8e:e8:de:0a:22:74:5a:
d2:5f:43:fb:ec:2c:5d:94:b1:2c:f5:ba:70:b6:8b:
5e:ef:1a:e6:9c:85:61:41:a0:db:0f:cf:01:ff:3b:
b2:e4:c8:b6:6a:de:cd:d3:c9:85:23:dc:b6:d5:15:
ab:b9:bf:b2:7c:b7:92:88:aa:cb:6c:00:ae:2c:06:
09:69:c9:03:b3:6b:72:de:38:f6:bc:2b:26:42:24:
19:a6:3e:10:b1:9d:c4:a1:b4:e6:3d:6f:c2:17:05:
47:bb:37:75:b5:6a:81:9c:ce:c4:40:6a:18:ec:23:
67:df:1b:d6:cc:16:dd:af:fb:74:ae:98:94:31:c0:
7d:83:a6:ef:5f:41:34:1d:52:35:6d:f6:02:26:f7:
84:d8:d4:2e:a1:0b:0e:78:fe:b7:3b:61:c2:f3:78:
83:12:14:71:6d:8b:3c:99:0b:10:b3:5b:d3:14:ab:
54:8d:70:23:f1:db:c3:79:c1:a8:bc:96:f7:3c:fd:
49:1f:61:a2:6e:60:78:3f:38:26:0a:77:6a:e0:51:
ad:07:6b:fe:45:ab:9f:40:66:c5:09:5c:f8:80:ba:
94:ac:35:93:1a:44:fa:f6:96:ff:d6:b1:1a:96:ea:
21:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6D:8B:F9:15:B4:D2:E1:D1:1D:87:EC:3F:6A:70:54:F1:13:29:E8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918C553/096C854A4D5C11F1A1CE7A888F833773/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918C553/096C854A4D5C11F1A1CE7A888F833773/qG2L-RW00uHRHYfsP2pwVPETKeg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:280::/44
Signature Algorithm: sha256WithRSAEncryption
6e:0e:6c:62:85:9b:02:9f:84:33:ba:8b:1e:6f:15:34:6e:52:
f6:d1:03:66:9c:24:7e:c4:db:86:6b:36:64:d9:5e:1c:b5:47:
f6:6c:3d:e0:af:dd:d2:2b:ad:d3:70:34:0d:0e:b4:e7:8d:20:
19:ee:c8:ff:b5:f0:d2:1d:60:da:48:55:3a:ac:83:d3:6f:51:
2d:3c:28:b0:77:d8:b0:a1:69:0d:12:c9:01:59:33:70:51:b2:
a5:94:97:33:f4:e0:56:93:50:47:19:36:6f:c9:8a:5e:e0:07:
a2:6c:84:c7:3c:d8:8e:e2:13:32:81:eb:0e:9b:03:04:bb:2a:
28:2b:e4:32:00:a9:80:91:4b:42:61:2f:de:a1:2e:aa:ed:12:
d9:aa:65:17:be:3f:6b:b2:88:45:02:26:57:4c:a6:53:d1:44:
2e:0b:e2:ba:b4:1b:cf:cd:a0:ea:7c:e0:c3:23:e2:f3:2c:c2:
48:30:c1:13:1c:02:75:90:1a:70:fd:9d:3c:93:9a:07:60:c0:
8c:70:05:e7:1a:59:15:99:4d:56:c6:9c:3a:3b:5c:fc:bf:11:
ff:90:da:83:42:7b:47:cc:57:01:33:60:af:3f:8d:c7:33:f8:
98:2e:77:0a:ce:34:01:86:38:55:cf:36:a4:f7:84:a4:fd:fd:
87:c1:48:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 21 08:40:43 2026 by rpki-client