Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nr2hI9nugwlDBaEYDCoIBX_lQGo.cer
File: nr2hI9nugwlDBaEYDCoIBX_lQGo.cer (raw, json)
Hash identifier: TyLRmZt6LCfiGm7PKWv9mODJQWtNUR29KImmmL0Q+aU=
Subject key identifier: 9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 688F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 21 Jul 2025 07:27:25 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: IP: 165.101.238.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 11 Aug 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26767 (0x688f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 21 07:27:25 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91425C3, serialNumber=9EBDA123D9EE83094305A1180C2A08057FE5406A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:60:06:aa:79:ed:c8:45:dd:2a:9f:e5:bf:f1:
37:8f:7b:bb:82:e9:be:5d:d8:ef:65:51:52:e8:8a:
a1:f9:99:4b:54:a0:94:0a:34:4c:1c:f2:97:c1:27:
65:c4:91:d7:84:06:16:6f:c6:1e:89:d8:10:10:fc:
e0:19:a5:ab:1c:44:17:d7:30:7f:1d:5c:9f:e0:fc:
e9:4b:7a:35:02:13:a8:e5:d1:45:96:e2:26:45:9d:
24:05:d3:bd:a4:bd:a6:02:91:be:31:28:17:11:8d:
ed:a8:49:4e:04:b1:5b:f4:3d:0f:fc:13:95:19:5d:
8d:e5:42:d4:9e:f5:c5:dc:d8:b0:50:81:6f:4a:4e:
84:6b:23:da:4f:27:ec:60:04:ec:b0:10:3b:2a:f7:
d4:fd:b6:99:57:1c:6b:48:66:7e:13:45:90:c2:a1:
46:2f:a6:1a:11:81:42:f6:04:9f:57:82:61:1f:2e:
42:42:22:05:f8:dc:73:70:cc:1d:67:8d:ef:eb:2e:
cf:19:5f:9b:03:17:c1:9a:4c:32:16:d0:72:af:98:
da:1a:6e:36:4f:45:42:00:67:23:ef:18:e2:2f:da:
8a:a4:cb:cf:20:44:db:b1:59:49:b5:a3:c4:21:45:
9b:60:d9:4e:db:77:02:db:74:48:53:ed:7a:46:65:
c4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:BD:A1:23:D9:EE:83:09:43:05:A1:18:0C:2A:08:05:7F:E5:40:6A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2326C63E660411F0A4C5192BC4F9AE02/nr2hI9nugwlDBaEYDCoIBX_lQGo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.101.238.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:a1:4c:c3:88:3d:2c:22:32:a8:ec:f0:fa:c2:06:51:3c:e3:
a8:33:a3:96:7a:d4:00:3c:dd:30:c7:4c:c4:1d:18:32:d7:48:
f7:48:e1:b2:cd:f5:1a:92:1e:09:4b:2c:c8:5a:eb:8d:77:c1:
a4:85:61:45:ae:32:3e:03:3c:a3:c6:53:4f:69:6e:a9:1c:eb:
55:80:18:4b:7d:40:7e:35:20:07:f6:1c:68:84:61:d7:cb:12:
9b:d3:56:d4:f0:82:94:82:8a:ae:82:95:8a:10:b0:a8:db:1f:
70:cb:59:12:74:ee:b3:cc:ab:8d:36:35:d9:a0:b3:22:e3:1c:
4f:3e:7c:9e:b9:6b:eb:f6:23:c5:1c:96:ad:34:c9:bc:7a:5f:
8d:9b:8e:0a:0a:60:63:c5:0e:07:24:69:1c:fc:52:6c:17:1f:
68:0a:ca:86:98:a3:a1:e9:da:5c:1c:1f:41:f8:52:d4:13:be:
56:e8:84:69:73:0c:62:af:66:80:e6:76:88:43:0c:fa:37:4f:
05:62:8e:ca:4a:72:ca:ea:d0:3f:39:70:ad:d2:2f:a9:7b:06:
65:db:ce:ac:77:64:f8:c6:9f:ce:d8:fc:0f:dd:c6:5a:20:8e:
70:10:0a:48:31:80:fc:17:1b:7b:26:66:d9:91:d8:bb:12:b3:
34:26:f0:98
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICaI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjUwNzIxMDcyNzI1WhcNMjYxMDMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE0MjVDMzExMC8GA1UEBRMoOUVCREExMjNEOUVFODMwOTQzMDVBMTE4
MEMyQTA4MDU3RkU1NDA2QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALRgBqp57chF3Sqf5b/xN497u4Lpvl3Y72VRUuiKofmZS1SglAo0TBzyl8EnZcSR
14QGFm/GHonYEBD84BmlqxxEF9cwfx1cn+D86Ut6NQITqOXRRZbiJkWdJAXTvaS9
pgKRvjEoFxGN7ahJTgSxW/Q9D/wTlRldjeVC1J71xdzYsFCBb0pOhGsj2k8n7GAE
7LAQOyr31P22mVcca0hmfhNFkMKhRi+mGhGBQvYEn1eCYR8uQkIiBfjcc3DMHWeN
7+suzxlfmwMXwZpMMhbQcq+Y2hpuNk9FQgBnI+8Y4i/aiqTLzyBE27FZSbWjxCFF
m2DZTtt3Att0SFPtekZlxA0CAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSevaEj2e6D
CUMFoRgMKggFf+VAajAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDI1QzMvMjMyNkM2M0U2NjA0MTFGMEE0QzUxOTJCQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQyNUMzLzIzMjZDNjNFNjYwNDExRjBBNEM1MTkyQkM0RjlBRTAyL25yMmhJOW51
Z3dsREJhRVlEQ29JQlhfbFFHby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaVl7jANBgkqhkiG9w0BAQsFAAOCAQEATaFMw4g9LCIyqOzw+sIG
UTzjqDOjlnrUADzdMMdMxB0YMtdI90jhss31GpIeCUssyFrrjXfBpIVhRa4yPgM8
o8ZTT2luqRzrVYAYS31AfjUgB/YcaIRh18sSm9NW1PCClIKKroKVihCwqNsfcMtZ
EnTus8yrjTY12aCzIuMcTz58nrlr6/YjxRyWrTTJvHpfjZuOCgpgY8UOByRpHPxS
bBcfaArKhpijoenaXBwfQfhS1BO+VuiEaXMMYq9mgOZ2iEMM+jdPBWKOykpyyurQ
PzlwrdIvqXsGZdvOrHdk+Mafztj8D93GWiCOcBAKSDGA/BcbeyZm2ZHYuxKzNCbw
mA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 07:43:50 2025 by rpki-client