Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9I4pw6sem_8a5CrMM77dzkhb0o.cer
File: H9I4pw6sem_8a5CrMM77dzkhb0o.cer (raw, json)
Hash identifier: IHQ5yevSpiZ+ZX53CmezfRvmDKoVBIL8MWBFb4FjmGI=
Subject key identifier: 1F:D2:38:A7:0E:AC:7A:6F:FC:6B:90:AB:30:CE:FB:77:39:21:6F:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025600
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913DD09/70C10760622B11F0BE528B1FC4F9AE02/H9I4pw6sem_8a5CrMM77dzkhb0o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913DD09/70C10760622B11F0BE528B1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 16 Jul 2025 09:58:41 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 2401:de60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 11 Aug 2025 04:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153088 (0x25600)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 16 09:58:41 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A913DD09, serialNumber=1FD238A70EAC7A6FFC6B90AB30CEFB7739216F4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6f:dd:1b:68:34:44:79:6e:65:d2:7a:ea:a7:
5a:ef:33:49:56:c2:e0:64:41:47:7b:0e:23:3f:0d:
df:e6:78:78:c5:b9:97:e5:f5:6c:73:98:3a:04:fc:
c3:2b:1e:be:95:d4:a2:7f:c1:24:9e:b2:62:8d:a6:
c1:46:0b:49:a6:a1:59:5b:99:44:bf:e9:d1:49:9e:
e2:b0:64:bd:bc:bd:31:ec:16:c5:44:28:49:79:10:
e7:ba:a3:29:e4:54:f0:8e:6a:22:b9:00:d5:96:28:
9e:52:8f:84:be:c8:78:64:16:e7:be:ae:60:f4:b2:
b2:18:6f:05:cc:48:60:9c:bc:f8:50:43:15:93:5d:
e8:d9:ec:38:7a:90:b9:29:a2:4c:5a:9c:97:8d:15:
52:3e:6d:74:6b:3d:76:53:3e:92:88:42:24:1e:54:
a0:b9:4b:c7:ad:88:ec:ac:33:6a:6d:2a:e3:60:5c:
94:95:73:8f:42:d3:f9:5e:eb:cf:af:07:fa:42:9c:
6a:0f:c2:62:5c:b5:e0:57:4e:7a:64:a2:8b:bb:9a:
db:1c:50:fe:07:d3:15:24:d6:47:00:96:81:6b:80:
e6:13:c9:53:47:3e:2f:b2:06:29:ea:73:74:da:b2:
d4:43:a0:93:f6:ae:20:93:ab:81:b8:61:86:9a:e4:
11:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D2:38:A7:0E:AC:7A:6F:FC:6B:90:AB:30:CE:FB:77:39:21:6F:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913DD09/70C10760622B11F0BE528B1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913DD09/70C10760622B11F0BE528B1FC4F9AE02/H9I4pw6sem_8a5CrMM77dzkhb0o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:de60::/32
Signature Algorithm: sha256WithRSAEncryption
b1:d0:fe:02:ff:9f:73:b7:c6:ed:51:ca:a9:26:08:61:6e:21:
e8:a4:38:28:d2:26:13:3c:1f:ff:53:d5:c8:0a:de:8a:bf:2d:
6a:41:26:6d:fc:a1:cc:90:22:c7:16:98:69:54:4f:23:4c:b9:
ea:6b:40:9e:15:50:ac:8a:41:3b:76:03:a3:9a:0d:fa:55:e9:
6b:fe:ba:b9:a9:3f:57:c8:62:96:ac:f3:c6:74:60:99:e8:97:
be:f3:21:f8:15:60:27:30:ad:2f:f5:d9:d9:2c:28:85:16:e6:
54:c2:a7:7d:fa:cb:c4:1f:e6:99:c5:90:65:bb:eb:7d:d3:d5:
bd:2f:3c:6c:93:4a:04:9a:13:83:9f:ea:e4:ea:e6:ee:e6:64:
a4:a0:a1:9f:4c:09:83:3d:2f:25:80:26:d6:e6:bd:57:8c:f9:
85:61:63:2d:11:14:ba:e9:0c:15:69:02:f9:dc:4d:22:8a:e4:
5d:cf:94:a0:a8:19:b9:84:d0:e6:49:b1:b0:a4:58:18:ed:55:
5e:ff:50:21:ff:ab:99:9d:81:9a:b3:8f:7f:b3:3e:35:85:d3:
ae:77:3a:89:b3:8b:95:bd:c7:c6:28:a7:45:9d:52:87:d9:d3:
13:c9:a0:76:27:ab:25:79:ff:20:64:2d:ab:a4:e6:e5:d6:3b:
76:64:41:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 08:20:28 2025 by rpki-client