Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8KAMMdCR4kVxN9Ko7zJndH7dfCI.cer
File: 8KAMMdCR4kVxN9Ko7zJndH7dfCI.cer (raw, json)
Hash identifier: +7lqBQ9lF1gq11T8KZQJfWqvytcebEpyYZJtudUfBAA=
Subject key identifier: F0:A0:0C:31:D0:91:E2:45:71:37:D2:A8:EF:32:67:74:7E:DD:7C:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02595C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915E402/47CB5BC46DF911F0B358F173C4F9AE02/8KAMMdCR4kVxN9Ko7zJndH7dfCI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915E402/47CB5BC46DF911F0B358F173C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Jul 2025 10:29:52 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 203.31.52.0/23
IP: 2406:200::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 Aug 2025 05:57:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153948 (0x2595c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 31 10:29:52 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A915E402, serialNumber=F0A00C31D091E2457137D2A8EF3267747EDD7C22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:15:bd:df:99:ea:c1:9a:97:e7:41:12:57:2b:
ce:a8:cb:4e:28:3e:05:a5:02:45:c7:77:bd:24:0d:
b0:ac:23:7c:b7:39:79:68:90:be:37:93:0c:5c:41:
c8:55:83:e2:0d:4b:cd:17:e1:e1:03:d6:3b:15:da:
f9:12:21:68:13:83:be:67:6d:e8:0a:68:62:30:b7:
f6:5e:74:c4:90:c5:3a:a0:32:7e:49:0e:84:5f:54:
26:c8:e0:05:bb:00:1b:5e:4f:76:61:63:54:ce:3f:
e8:9a:da:3e:12:bf:6c:56:3f:87:b7:19:ec:79:4e:
42:c9:ef:83:22:25:32:66:ca:19:5d:c4:8e:47:af:
92:91:7f:72:60:3b:15:27:43:0d:08:59:ad:20:c0:
5c:92:16:a2:5a:9a:16:5c:64:10:10:64:8a:ef:c4:
cf:fa:0c:87:33:55:f5:2f:08:98:ec:4d:f3:3a:23:
ce:ec:4c:5d:33:fe:47:39:26:6f:84:82:0f:6e:64:
1d:91:04:fb:9c:b4:eb:3f:9c:94:77:e9:61:e3:8e:
5d:95:51:dd:31:1c:0b:77:dd:2d:70:56:8a:13:4a:
dd:dd:4e:3b:1e:35:6d:54:b9:5e:27:fc:8e:37:41:
be:a1:0b:7f:ac:4c:44:9f:26:f5:86:e9:37:49:4a:
16:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A0:0C:31:D0:91:E2:45:71:37:D2:A8:EF:32:67:74:7E:DD:7C:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915E402/47CB5BC46DF911F0B358F173C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915E402/47CB5BC46DF911F0B358F173C4F9AE02/8KAMMdCR4kVxN9Ko7zJndH7dfCI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.31.52.0/23
IPv6:
2406:200::/32
Signature Algorithm: sha256WithRSAEncryption
4c:01:c7:f9:a3:2c:36:b0:23:36:48:c3:ed:e2:bc:7a:e5:3a:
ee:9b:d7:b3:cc:f9:0a:f2:b9:5d:66:71:18:30:63:32:97:b4:
16:27:7d:4d:08:fd:11:d5:71:c5:92:4c:f9:bb:f6:05:4d:88:
10:45:49:ab:e2:7e:df:2d:9b:5b:b0:23:c8:65:05:3a:0a:d7:
e0:6d:35:1c:54:ca:54:fb:8d:4d:31:33:96:3f:c9:35:ea:0d:
e8:79:f1:b2:7d:50:aa:f2:06:e9:03:8c:d3:43:69:25:05:21:
3a:3a:cd:59:6f:4d:ab:0f:f1:a9:27:f8:e4:e3:82:74:9f:25:
58:14:ca:4b:f5:25:08:c3:2e:70:52:73:43:98:d8:00:66:5b:
1a:c8:4e:25:75:8b:06:da:b8:88:7b:6b:c5:4c:93:bd:0e:5f:
e0:44:44:5b:40:10:e2:63:05:e0:80:5c:d9:35:02:4f:96:32:
53:7b:75:55:17:23:ae:f5:53:3a:af:40:51:8f:c4:87:f8:24:
eb:5d:0f:8a:b3:37:db:b5:ed:d2:d7:c8:06:61:b6:d4:db:76:
93:01:3d:b6:7b:38:13:3a:4c:6e:41:a8:78:ca:74:a9:34:f4:
16:a3:86:1b:fb:2b:72:f5:3d:0e:bf:7b:98:a3:bb:15:ec:70:
f5:9f:d4:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:27:39 2025 by rpki-client