Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer
File: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer (raw, json)
Hash identifier: 60xXghvQhtenDIspr/Vbr2l10trAJUhTte3UT2PhOCw=
Subject key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6410
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 17 Apr 2025 04:20:53 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: IP: 157.15.138.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 03 May 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25616 (0x6410)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 17 04:20:53 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91F89A2, serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b3:ee:46:8c:3f:68:0d:1f:83:c3:e0:4e:42:
eb:f4:4f:19:47:e0:00:ff:20:81:ba:8b:75:0f:72:
cb:c1:58:60:35:ff:ef:8d:c1:dc:08:a9:cd:e8:8c:
98:11:bb:a2:07:ca:ae:83:8e:e0:82:18:a1:3d:6a:
29:e6:be:75:57:ca:8f:13:8c:08:33:dc:11:04:4f:
32:bc:3a:85:83:c1:27:83:b9:3d:5a:38:38:8d:0f:
79:85:aa:65:63:0c:8c:11:ac:55:ad:7e:21:5c:89:
b9:31:fd:f4:d5:fb:5f:1d:ac:58:95:e5:66:e4:4e:
9e:0a:53:b3:3b:a7:b3:48:ea:8d:a0:c4:70:ef:59:
ce:8d:a7:2f:36:de:48:bb:11:1b:6d:d3:62:f7:5c:
b5:41:c0:01:19:9a:da:00:81:ef:5e:fd:dc:0f:06:
36:00:49:32:b8:e2:10:2d:7a:24:68:d6:15:eb:33:
a8:77:44:49:a6:3a:4e:16:e4:70:7e:95:b7:f5:1f:
5e:56:83:00:f6:b4:59:a9:0c:0c:92:61:e2:21:4e:
cc:67:ed:ec:94:c0:48:21:97:25:30:21:61:4a:53:
c5:c2:a1:12:3c:3d:83:16:6e:74:b9:bd:64:de:59:
e5:40:8d:e8:a9:33:53:27:e5:8f:ae:44:c0:75:e9:
9b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.138.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:07:2e:1b:dd:7d:e3:2c:ad:c7:72:aa:8d:c7:52:c8:35:5a:
ce:94:03:0f:a7:2f:71:1b:0d:da:b9:79:85:de:7e:55:5b:25:
a7:e3:bd:7a:25:04:d9:e1:c6:52:a9:f5:a6:2e:1b:5d:24:dc:
33:60:76:f2:89:33:62:e6:3b:b2:fd:c4:b5:76:6d:b0:27:85:
2d:2e:89:53:43:26:e5:07:05:b8:48:70:a2:51:76:66:ab:4a:
d3:9c:f1:08:ad:2c:13:4a:21:f4:bf:6f:2e:9d:7a:79:b4:79:
db:57:5c:de:53:68:6e:de:28:db:e7:f7:da:72:8b:c5:0c:f8:
30:5d:96:fa:08:b4:bc:f2:48:7e:fb:20:82:76:aa:2b:61:35:
0e:b7:29:aa:53:67:f0:1a:81:df:e2:c4:a9:5c:44:ae:32:f1:
81:2a:01:08:c4:5d:3b:71:d4:eb:80:e9:4c:4a:90:4a:03:ca:
e2:7c:df:3d:c0:21:5a:c1:35:4e:8d:c0:c2:f9:d7:7b:ca:92:
41:cd:49:8f:af:f4:a7:ac:7b:25:3b:6c:92:32:80:c3:f2:21:
ab:a4:6c:1d:6d:f2:88:0e:64:66:d5:03:db:4e:5b:a4:8f:b0:
d2:8c:1a:16:09:56:0e:9b:08:98:9d:f7:cf:c3:b1:f6:7b:ab:
34:1e:6e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:51:28 2025 by rpki-client