Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer
File: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer (raw, json)
Hash identifier: iDWzJqupHyDhK3Qy6a7Nb3UOSiM01Fv0NKRZ8FGIPCA=
Subject key identifier: DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024AD2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 01 Jun 2025 18:38:05 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: IP: 45.117.192.0/22
IP: 103.57.228.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Jun 2025 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150226 (0x24ad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 1 18:38:05 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A915FA96, serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:82:2a:34:01:5e:c1:e3:18:4c:5b:72:ca:bf:
4b:88:8c:13:1c:6d:76:8d:22:1c:8a:41:0f:54:cd:
19:ec:f6:47:c1:75:d8:18:1d:b2:5d:da:cf:d7:f9:
78:c7:93:c8:16:14:91:8a:dc:25:7e:64:5c:e3:6c:
96:6d:bd:11:1d:33:60:d0:4e:d6:b2:92:fc:ed:eb:
e5:5d:a0:49:e5:7e:1b:b1:98:0d:97:35:70:b8:d6:
f4:89:b0:47:38:38:ea:90:a5:13:0b:ed:a5:19:3e:
6f:44:cb:c6:bd:a4:b7:24:50:7d:f9:78:a9:30:69:
6d:1e:b8:5d:ad:da:ea:77:7c:03:bd:ee:36:a6:98:
76:cf:65:45:d8:f8:11:b8:92:01:41:6f:75:2b:c0:
45:86:5b:44:4a:50:55:73:a2:41:1e:c0:7e:d6:95:
66:1a:c3:ea:80:9f:59:10:98:c0:2e:96:15:c2:74:
ea:3d:14:ac:d4:4b:66:19:c5:62:93:f7:3a:00:25:
bf:9a:39:69:ff:18:9d:e7:8d:32:a8:9d:09:28:ca:
b0:2b:07:5e:a8:c5:65:28:0e:a5:af:91:7c:f3:21:
05:48:20:fa:ea:eb:88:51:59:c5:de:db:56:98:73:
3a:1a:4c:46:0c:24:cb:6d:27:36:08:60:45:f8:2c:
f5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.117.192.0/22
103.57.228.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:d1:8a:18:d5:d2:41:cf:03:6b:c5:05:81:c9:cc:5f:15:ee:
e6:10:5b:7f:1c:66:36:e3:7f:4f:b7:5f:db:6e:5e:69:f7:bd:
42:2d:b8:1b:c5:9b:87:cf:ae:c1:b5:a2:64:84:e6:a8:cc:04:
e9:b0:82:28:91:9f:51:50:0b:f2:fb:f3:56:7b:34:9f:36:93:
ae:8f:d6:c6:4e:89:33:a0:b1:a6:d1:3d:00:fc:3c:18:22:18:
e5:7e:e0:48:1f:97:0c:a7:ba:29:22:3d:27:b5:d8:d5:4d:de:
ba:f1:02:a4:06:28:64:3b:9a:2f:65:e2:8d:af:d3:98:37:ad:
75:c1:15:9f:73:0d:ac:60:34:c6:8c:7a:1a:0d:8b:a5:d3:e4:
b9:7b:22:6a:2f:82:f6:bc:31:b6:e8:7c:b9:3e:73:c9:8a:35:
9b:91:f0:7a:58:60:48:1a:52:44:2a:ad:db:59:5e:a5:a0:32:
94:fc:19:a3:04:3d:c3:10:91:43:6f:93:10:59:60:b6:51:57:
45:d1:ed:b0:b7:fa:b7:d8:68:b2:84:b2:51:5e:63:a9:e2:b1:
14:33:a4:58:7a:85:ad:11:d0:23:38:40:15:5a:57:d2:82:71:
6b:9f:4e:4f:53:ee:54:80:08:8c:15:4e:48:c9:cc:4d:db:20:
ea:39:07:5d
-----BEGIN CERTIFICATE-----
MIIGBDCCBOygAwIBAgIDAkrSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDYwMTE4MzgwNVoXDTI2MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUZBOTYxMTAvBgNVBAUTKERBRUZBNTQzNThGNEJDQzBEODQ3Q0M2
REM5Q0FGNzhCQzVFMDk5NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCjgio0AV7B4xhMW3LKv0uIjBMcbXaNIhyKQQ9UzRns9kfBddgYHbJd2s/X+XjH
k8gWFJGK3CV+ZFzjbJZtvREdM2DQTtaykvzt6+VdoEnlfhuxmA2XNXC41vSJsEc4
OOqQpRML7aUZPm9Ey8a9pLckUH35eKkwaW0euF2t2up3fAO97jammHbPZUXY+BG4
kgFBb3UrwEWGW0RKUFVzokEewH7WlWYaw+qAn1kQmMAulhXCdOo9FKzUS2YZxWKT
9zoAJb+aOWn/GJ3njTKonQkoyrArB16oxWUoDqWvkXzzIQVIIPrq64hRWcXe21aY
czoaTEYMJMttJzYIYEX4LPVVAgMBAAGjggL5MIIC9TAdBgNVHQ4EFgQU2u+lQ1j0
vMDYR8xtycr3i8XgmW4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVGQTk2LzhBMzUwOTBDQjVFRDExRUY5RDIwNjkwRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1RkE5Ni84QTM1MDkwQ0I1RUQxMUVGOUQyMDY5MEVDNEY5QUUwMi8ydS1sUTFq
MHZNRFlSOHh0eWNyM2k4WGdtVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8EFjAU
MBIEAgABMAwDBAItdcADBAJnOeQwDQYJKoZIhvcNAQELBQADggEBANDRihjV0kHP
A2vFBYHJzF8V7uYQW38cZjbjf0+3X9tuXmn3vUItuBvFm4fPrsG1omSE5qjMBOmw
giiRn1FQC/L781Z7NJ82k66P1sZOiTOgsabRPQD8PBgiGOV+4EgflwynuikiPSe1
2NVN3rrxAqQGKGQ7mi9l4o2v05g3rXXBFZ9zDaxgNMaMehoNi6XT5Ll7Imovgva8
MbbofLk+c8mKNZuR8HpYYEgaUkQqrdtZXqWgMpT8GaMEPcMQkUNvkxBZYLZRV0XR
7bC3+rfYaLKEslFeY6nisRQzpFh6ha0R0CM4QBVaV9KCcWufTk9T7lSACIwVTkjJ
zE3bIOo5B10=
-----END CERTIFICATE-----
Generated at Sat Jun 14 05:08:18 2025 by rpki-client