Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/N6Zf20DoxlmxflAA-ommVoCXbVs.cer
File: N6Zf20DoxlmxflAA-ommVoCXbVs.cer (raw, json)
Hash identifier: dJCj1rmQdnAPBQL6HelwgsIhRVgyYh4dnK48UJY+5Q0=
Subject key identifier: 37:A6:5F:DB:40:E8:C6:59:B1:7E:50:00:FA:89:A6:56:80:97:6D:5B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6947
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A6F56/8812FBE46E8811F0AD5D1A12C4F9AE02/N6Zf20DoxlmxflAA-ommVoCXbVs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A6F56/8812FBE46E8811F0AD5D1A12C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Aug 2025 03:35:17 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 161.248.214.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 11 Aug 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26951 (0x6947)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 1 03:35:17 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91A6F56, serialNumber=37A65FDB40E8C659B17E5000FA89A65680976D5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:66:b1:46:e9:c9:d3:56:4e:64:17:3c:ed:ee:
96:20:d4:ab:fc:20:39:a4:09:65:7a:e2:f3:95:0c:
48:15:e5:e3:0d:21:e0:c8:3a:49:a9:4e:4a:a7:10:
93:d1:ac:ad:37:42:85:58:24:41:3e:92:20:aa:3a:
3d:55:78:39:c7:11:4f:a5:1b:e9:40:a3:b5:3a:a9:
37:70:97:a4:71:11:36:a1:26:9f:29:85:a8:35:90:
04:35:e6:c1:5d:f3:1a:6f:12:db:32:8c:ec:7f:45:
53:f5:59:be:87:bc:aa:03:1a:59:19:e1:d7:f8:a0:
f7:5f:69:0b:f9:ff:6a:85:5c:f1:8c:3f:aa:c0:e8:
8b:53:9b:a9:d2:22:64:79:b2:7b:ad:bc:a2:18:2b:
4a:50:21:1d:26:94:91:e2:b9:a1:ff:08:1b:43:ca:
7d:98:6f:1f:53:f9:4b:fb:09:8a:e8:ac:f0:91:8d:
2c:ea:4b:ff:f1:36:02:5f:7c:8a:ee:63:06:3a:a6:
0d:8f:56:a7:b9:21:8b:7f:e4:c2:7c:ba:f1:8b:07:
92:fe:52:2e:55:a9:5c:7d:e1:26:c0:3e:b2:ea:64:
2f:ad:5f:1a:84:b9:e8:0f:00:8a:09:d7:07:2b:be:
53:55:0f:bb:3d:d6:9a:a3:10:de:19:8b:c0:1d:4d:
f0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A6:5F:DB:40:E8:C6:59:B1:7E:50:00:FA:89:A6:56:80:97:6D:5B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A6F56/8812FBE46E8811F0AD5D1A12C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A6F56/8812FBE46E8811F0AD5D1A12C4F9AE02/N6Zf20DoxlmxflAA-ommVoCXbVs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.214.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:7d:be:29:b8:4c:6d:80:80:4f:25:a9:79:e2:26:71:d0:5c:
75:d8:d9:f4:07:62:b1:37:86:14:db:05:38:eb:45:23:43:3f:
17:3a:53:be:87:68:9b:65:52:ee:47:e8:61:fc:3e:fb:11:7a:
bc:de:79:79:b6:4b:e5:b3:b3:57:09:9e:5c:35:31:5e:31:3d:
56:0c:17:71:54:ab:e2:e9:15:a4:26:22:c9:d9:0b:5b:04:fb:
83:c8:cb:76:7c:09:04:4b:fa:3b:fe:a2:14:22:35:e8:f9:45:
62:f0:b4:3c:1c:94:f1:59:47:d3:2e:9c:9b:38:de:bc:0e:d3:
d3:c2:75:c5:12:d7:c4:d5:41:22:ec:8e:8f:b4:d1:bd:ec:6e:
ef:10:f6:2c:34:54:67:e1:74:1e:12:c3:28:bd:cf:4d:7e:ec:
0a:fd:6d:ad:67:4b:d9:52:37:c2:03:15:38:c5:91:a6:40:1d:
97:ee:e4:5e:8e:36:56:fb:b0:97:9d:85:ac:79:61:e3:c0:b3:
5b:57:f4:65:c1:db:7a:0a:76:36:98:09:41:af:d8:58:a7:15:
1c:ae:61:f6:de:69:d4:51:79:b6:77:6d:d8:76:f6:28:a7:35:
13:be:58:50:79:23:aa:d8:7a:41:c6:e7:ca:8d:ec:83:b2:ca:
c3:0d:d9:31
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICaUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjUwODAxMDMzNTE3WhcNMjYwNTAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFBNkY1NjExMC8GA1UEBRMoMzdBNjVGREI0MEU4QzY1OUIxN0U1MDAw
RkE4OUE2NTY4MDk3NkQ1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ANBmsUbpydNWTmQXPO3uliDUq/wgOaQJZXri85UMSBXl4w0h4Mg6SalOSqcQk9Gs
rTdChVgkQT6SIKo6PVV4OccRT6Ub6UCjtTqpN3CXpHERNqEmnymFqDWQBDXmwV3z
Gm8S2zKM7H9FU/VZvoe8qgMaWRnh1/ig919pC/n/aoVc8Yw/qsDoi1ObqdIiZHmy
e628ohgrSlAhHSaUkeK5of8IG0PKfZhvH1P5S/sJiuis8JGNLOpL//E2Al98iu5j
BjqmDY9Wp7khi3/kwny68YsHkv5SLlWpXH3hJsA+supkL61fGoS56A8AignXByu+
U1UPuz3WmqMQ3hmLwB1N8MUCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQ3pl/bQOjG
WbF+UAD6iaZWgJdtWzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTZGNTYvODgxMkZCRTQ2RTg4MTFGMEFENUQxQTEyQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUE2RjU2Lzg4MTJGQkU0NkU4ODExRjBBRDVEMUExMkM0RjlBRTAyL042WmYyMERv
eGxteGZsQUEtb21tVm9DWGJWcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaH41jANBgkqhkiG9w0BAQsFAAOCAQEAPX2+KbhMbYCATyWpeeIm
cdBcddjZ9AdisTeGFNsFOOtFI0M/FzpTvodom2VS7kfoYfw++xF6vN55ebZL5bOz
VwmeXDUxXjE9VgwXcVSr4ukVpCYiydkLWwT7g8jLdnwJBEv6O/6iFCI16PlFYvC0
PByU8VlH0y6cmzjevA7T08J1xRLXxNVBIuyOj7TRvexu7xD2LDRUZ+F0HhLDKL3P
TX7sCv1trWdL2VI3wgMVOMWRpkAdl+7kXo42Vvuwl52FrHlh48CzW1f0ZcHbegp2
NpgJQa/YWKcVHK5h9t5p1FF5tndt2Hb2KKc1E75YUHkjqth6Qcbnyo3sg7LKww3Z
MQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 07:54:05 2025 by rpki-client