Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2m6UHNv-AaruCRs_lVldbUAYMW0.cer
File: 2m6UHNv-AaruCRs_lVldbUAYMW0.cer (raw, json)
Hash identifier: moRaCG2zgNxsNL5VjvepY37idYuCzUqDEr4ADUR0XMY=
Subject key identifier: DA:6E:94:1C:DB:FE:01:AA:EE:09:1B:3F:95:59:5D:6D:40:18:31:6D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0252AC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/2m6UHNv-AaruCRs_lVldbUAYMW0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Jul 2025 12:48:50 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: IP: 203.23.76.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 Aug 2025 05:57:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152236 (0x252ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 2 12:48:50 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A9122EBD, serialNumber=DA6E941CDBFE01AAEE091B3F95595D6D4018316D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3a:40:2b:d0:a5:cd:a8:50:7f:af:b5:d5:72:
97:ac:3a:15:e3:3c:6e:6a:7c:76:d7:8f:d8:aa:02:
57:f0:f5:e8:fa:db:2c:17:6b:99:e4:dd:7f:9d:17:
79:48:55:d0:7a:00:5f:9f:91:95:24:7c:af:35:78:
0d:69:31:a6:db:1d:92:37:de:02:fa:3a:c4:59:c2:
01:e3:96:26:7c:81:3a:9b:81:5e:6d:d3:52:bb:f2:
5c:2c:64:7b:73:cf:e6:16:8d:d9:95:55:46:a5:b0:
f1:49:fd:05:04:45:f8:64:0b:e1:c7:cd:f9:57:c2:
f9:bf:ae:b7:c1:6d:2b:60:ab:01:3d:00:27:24:e9:
67:0b:24:4c:c1:5b:61:9d:c6:c3:3b:f4:b3:48:84:
f3:1e:94:6d:f1:bf:52:a6:8e:1c:e2:e2:3d:71:19:
62:4c:40:75:f8:bc:cf:f3:dc:0b:38:2d:ab:c5:c3:
1b:ae:da:7c:16:74:c1:c8:0c:6c:d0:fe:77:96:92:
f9:02:ce:11:c6:cd:46:30:39:5b:8a:7e:03:00:cd:
1e:f0:bf:2a:50:9b:22:4a:fd:b4:d5:94:be:61:a2:
6b:1f:07:c6:45:07:c3:e8:c1:bc:16:e8:fd:fc:e5:
c9:65:7d:64:8a:a9:30:ce:78:33:75:f9:55:12:ea:
55:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6E:94:1C:DB:FE:01:AA:EE:09:1B:3F:95:59:5D:6D:40:18:31:6D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/2m6UHNv-AaruCRs_lVldbUAYMW0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.23.76.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:6e:d5:82:1e:ce:a7:9c:85:c0:8b:b4:d3:03:2a:ed:22:d6:
e3:4b:9b:54:7f:97:a0:c0:e0:7d:cb:ab:e8:f1:a7:30:9b:4d:
c5:d1:22:64:57:90:7c:40:a7:83:70:92:e4:c4:df:2a:c4:ea:
85:f3:cc:f1:fd:63:2a:64:7f:f9:6e:23:c9:56:30:8c:d9:b5:
34:a0:e7:f8:97:15:c0:f7:7f:90:46:b5:90:2b:a5:10:88:92:
86:5d:6d:0b:8b:48:b0:0c:77:86:c7:e0:18:dc:a8:57:38:21:
ef:ad:46:9f:5b:c8:6f:be:c4:fe:89:3e:6e:f8:73:9d:be:88:
de:5d:f7:82:b7:a6:28:17:9a:f4:5c:42:c5:5e:6e:d1:0e:c2:
ab:49:b5:0b:11:15:ae:ff:24:87:d6:3a:2a:5f:f9:01:1c:42:
c0:74:86:58:40:fe:67:bc:fb:03:b4:a5:66:4d:04:2a:5f:b2:
f5:2a:f5:31:9f:07:67:a0:e0:77:94:e9:ad:f9:71:24:1b:12:
fd:91:44:cd:50:ad:76:e6:a7:f7:5c:23:61:87:cb:71:be:b7:
20:28:cf:95:79:56:8c:52:e7:09:09:a7:fb:68:bb:ed:22:58:
11:2a:6a:10:96:11:7b:d7:21:7d:d4:28:f1:b3:90:9a:a4:72:
36:73:f8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:13:13 2025 by rpki-client