Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdHLvF31vfq7s62vErACVrfxjRI.cer
File: HdHLvF31vfq7s62vErACVrfxjRI.cer (raw, json)
Hash identifier: aPgeb7WW35G2oISrZBswyjoSZJ+An8BCg/k1rYQu4mo=
Subject key identifier: 1D:D1:CB:BC:5D:F5:BD:FA:BB:B3:AD:AF:12:B0:02:56:B7:F1:8D:12
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023D40
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/HdHLvF31vfq7s62vErACVrfxjRI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 06 Apr 2025 13:56:49 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 136419
AS: 137707
AS: 152300
IP: 2401:72a0::/32
IP: 2402:ca40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146752 (0x23d40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 6 13:56:49 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A915ADC4, serialNumber=1DD1CBBC5DF5BDFABBB3ADAF12B00256B7F18D12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9c:63:12:d6:5b:18:c3:de:d9:fe:ac:ce:be:
0a:4e:76:6b:9c:02:99:a6:12:a5:1b:8c:1a:62:f9:
59:cd:a5:a2:7d:fa:48:82:00:35:a1:d4:55:d3:2b:
8e:b4:a3:41:77:78:cb:ae:d6:58:ae:fd:97:60:6a:
19:26:37:74:b5:97:25:97:ae:ad:40:f4:dd:b8:bd:
8b:84:58:bd:2c:13:fa:45:86:5f:47:f0:e0:e1:80:
1e:74:14:fc:86:c2:c2:08:e3:2f:f4:5a:f6:c3:74:
b0:e1:5b:9b:dc:02:79:83:d3:c6:96:0e:7d:03:57:
2a:b7:a1:19:b0:6d:44:23:cf:b8:ac:15:5d:a8:39:
3d:92:b0:58:35:79:e8:3e:27:91:c6:b7:b4:53:c5:
94:5e:3d:43:60:d2:8f:7f:14:cb:04:8d:bf:f2:e2:
c9:9f:08:3f:7e:8a:41:60:f3:16:82:35:43:bc:bb:
9e:3c:f8:09:05:4d:00:36:5a:b7:9d:d8:d6:09:ca:
7d:63:05:18:5f:46:1c:c5:1a:33:a5:51:87:fe:fd:
eb:6b:4f:6a:bc:d3:b7:76:3e:3b:22:e5:57:63:19:
dc:17:1a:06:bf:e1:29:fe:fe:5b:f6:51:68:f2:ef:
3d:4e:14:2e:72:e4:93:60:b2:33:7f:f7:3c:be:e2:
cf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D1:CB:BC:5D:F5:BD:FA:BB:B3:AD:AF:12:B0:02:56:B7:F1:8D:12
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/HdHLvF31vfq7s62vErACVrfxjRI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136419
137707
152300
sbgp-ipAddrBlock: critical
IPv6:
2401:72a0::/32
2402:ca40::/32
Signature Algorithm: sha256WithRSAEncryption
a4:7a:4e:ee:8a:b8:ff:2e:a5:76:1a:ca:4f:42:b6:da:a7:46:
fd:21:56:66:62:74:0e:dd:a8:12:ca:60:ac:db:eb:77:52:06:
94:87:d8:1b:f1:41:97:49:ac:c5:d1:75:d1:85:b7:b6:9b:67:
fb:a3:3c:b2:e5:2e:08:e8:65:8a:56:5a:5f:3a:78:75:e1:84:
dd:30:95:ef:db:ec:20:09:a6:bb:c4:9d:0b:77:34:32:34:c0:
be:14:49:c9:75:d2:ec:94:e6:92:c7:70:e2:90:5c:b8:7a:00:
c7:3e:be:5e:52:bf:da:ce:8a:c7:5a:d7:d6:cc:6c:1e:d5:6e:
b1:ef:4e:cf:69:dd:57:05:3b:3e:67:76:fd:1c:55:7e:68:32:
09:60:19:30:a7:63:fc:33:de:8f:06:53:f7:9e:c7:3c:f1:70:
4b:71:e3:ec:56:ea:e8:fe:ee:6f:b0:3b:b4:0d:01:86:42:08:
72:e0:94:bb:8b:3e:53:1e:ee:7f:8a:de:cc:e2:c5:34:7f:e7:
cf:9d:ae:09:f9:ba:c9:8c:d8:67:0d:65:ff:fc:c0:b1:96:0f:
20:5a:84:1a:8f:47:64:02:e5:3b:73:c0:b9:e7:e5:db:59:73:
e2:c4:22:61:0f:81:54:98:2e:6f:ae:eb:ac:a7:21:c2:55:e0:
24:b6:c1:06
-----BEGIN CERTIFICATE-----
MIIGLDCCBRSgAwIBAgIDAj1AMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDQwNjEzNTY0OVoXDTI2MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUFEQzQxMTAvBgNVBAUTKDFERDFDQkJDNURGNUJERkFCQkIzQURB
RjEyQjAwMjU2QjdGMThEMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCdnGMS1lsYw97Z/qzOvgpOdmucApmmEqUbjBpi+VnNpaJ9+kiCADWh1FXTK460
o0F3eMuu1liu/ZdgahkmN3S1lyWXrq1A9N24vYuEWL0sE/pFhl9H8ODhgB50FPyG
wsII4y/0WvbDdLDhW5vcAnmD08aWDn0DVyq3oRmwbUQjz7isFV2oOT2SsFg1eeg+
J5HGt7RTxZRePUNg0o9/FMsEjb/y4smfCD9+ikFg8xaCNUO8u548+AkFTQA2Wred
2NYJyn1jBRhfRhzFGjOlUYf+/etrT2q807d2Pjsi5VdjGdwXGga/4Sn+/lv2UWjy
7z1OFC5y5JNgsjN/9zy+4s89AgMBAAGjggMhMIIDHTAdBgNVHQ4EFgQUHdHLvF31
vfq7s62vErACVrfxjRIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVBREM0LzYxNDE1RjU4QTlGNzExRUU4RUI0OEQyMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1QURDNC82MTQxNUY1OEE5RjcxMUVFOEVCNDhEMjJDNEY5QUUwMi9IZEhMdkYz
MXZmcTdzNjJ2RXJBQ1ZyZnhqUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQgBAf8EFTAT
oBEwDwIDAhTjAgMCGesCAwJS7DAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAIwDgMF
ACQBcqADBQAkAspAMA0GCSqGSIb3DQEBCwUAA4IBAQCkek7uirj/LqV2GspPQrba
p0b9IVZmYnQO3agSymCs2+t3UgaUh9gb8UGXSazF0XXRhbe2m2f7ozyy5S4I6GWK
VlpfOnh14YTdMJXv2+wgCaa7xJ0LdzQyNMC+FEnJddLslOaSx3DikFy4egDHPr5e
Ur/azorHWtfWzGwe1W6x707Pad1XBTs+Z3b9HFV+aDIJYBkwp2P8M96PBlP3nsc8
8XBLcePsVuro/u5vsDu0DQGGQghy4JS7iz5THu5/it7M4sU0f+fPna4J+brJjNhn
DWX//MCxlg8gWoQaj0dkAuU7c8C55+XbWXPixCJhD4FUmC5vruuspyHCVeAktsEG
-----END CERTIFICATE-----
Generated at Fri Apr 25 22:56:05 2025 by rpki-client