Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JaGXWBbNnonz1upqdjAiQ77DRe4.cer
File: JaGXWBbNnonz1upqdjAiQ77DRe4.cer (raw, json)
Hash identifier: 87xfBlvCAuRxje4fn16EMY5bcObG+8VJYsc6zX9Agj4=
Subject key identifier: 25:A1:97:58:16:CD:9E:89:F3:D6:EA:6A:76:30:22:43:BE:C3:45:EE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025843
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D488C/4F6D6F606B8911F095F1102BC4F9AE02/JaGXWBbNnonz1upqdjAiQ77DRe4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D488C/4F6D6F606B8911F095F1102BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Jul 2025 08:03:18 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 153471
IP: 2001:df4:ae40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 Aug 2025 05:57:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153667 (0x25843)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 28 08:03:18 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91D488C, serialNumber=25A1975816CD9E89F3D6EA6A76302243BEC345EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e8:67:91:2f:dd:f6:19:ee:d7:c4:ef:13:da:
ae:42:1a:cb:9b:e2:25:3b:65:33:52:d4:1c:76:91:
d7:f4:76:74:9a:d4:57:65:6a:ac:e2:6f:e7:f3:6d:
8d:33:63:da:16:4b:8c:ba:3c:48:6f:32:28:75:1c:
23:62:68:c2:02:36:89:4c:5c:1d:89:37:a7:6c:37:
6c:13:f9:df:52:a9:80:a6:74:5e:8b:45:ea:1a:87:
13:5b:7a:e2:96:27:31:51:c5:a1:f5:ea:71:35:d2:
cc:99:28:2d:94:e6:61:bb:8f:c5:20:21:03:24:ec:
a4:48:cb:b5:ea:56:a8:7e:46:00:f2:51:9a:26:e5:
48:2a:ed:76:f9:ad:54:9b:32:50:2e:59:39:a3:ee:
f8:05:21:38:c0:86:a3:6b:6f:eb:09:b0:a0:1c:88:
3e:fc:de:fb:56:9b:87:c0:4e:5a:bd:ce:99:20:35:
19:24:13:2c:db:4a:6e:bf:df:da:b0:f5:77:1f:e2:
58:a5:de:5d:f0:12:a7:93:e2:67:58:cc:47:89:17:
03:0a:ae:57:06:f8:88:06:a7:f6:23:cf:ef:23:cc:
1a:d9:71:03:54:41:cd:d8:8e:9e:93:44:aa:ef:ad:
9b:fd:91:42:a1:a9:78:66:ce:65:36:70:80:84:3f:
a8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A1:97:58:16:CD:9E:89:F3:D6:EA:6A:76:30:22:43:BE:C3:45:EE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D488C/4F6D6F606B8911F095F1102BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D488C/4F6D6F606B8911F095F1102BC4F9AE02/JaGXWBbNnonz1upqdjAiQ77DRe4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153471
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:ae40::/48
Signature Algorithm: sha256WithRSAEncryption
c2:d2:fa:cf:ad:56:9f:df:a7:7d:3c:8f:fe:a5:83:51:97:62:
22:74:dd:3d:5c:a5:46:40:1b:b6:03:c9:72:23:20:3d:81:dc:
88:43:20:5e:36:36:c3:c7:30:00:c3:37:c1:36:0b:69:c5:fd:
b3:c7:04:11:e3:3e:3f:b8:e7:60:64:f8:c5:d5:d3:37:ef:c7:
b3:01:d3:1f:fe:f5:01:4b:35:31:4e:58:98:30:98:46:5c:9b:
23:ce:54:1e:55:37:c7:d6:d2:23:3c:95:b9:60:95:fa:2d:c2:
61:e1:61:6a:b1:25:93:c8:14:c9:cf:53:71:96:e3:7f:fc:25:
02:87:fc:51:8c:fc:19:b5:eb:b7:50:80:32:bf:bf:ad:2f:6c:
bd:a7:37:23:ad:97:ec:d1:3f:1c:f6:a2:9e:96:29:6d:0d:10:
b0:ed:7c:51:e1:63:d4:41:db:06:e1:18:4d:59:27:cb:09:07:
52:c8:90:df:2c:e5:50:ea:79:c3:5d:00:7d:e1:e2:37:2d:1e:
9a:98:a6:ae:ae:3e:07:48:e3:eb:28:cb:22:b7:e6:ed:2d:0c:
35:2d:f4:6c:28:dd:15:84:c0:14:cd:c7:4c:3e:4b:fa:3a:0b:
ff:fe:dd:24:90:99:0a:70:b8:f0:3e:4c:30:2e:89:b4:df:33:
5b:25:43:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:45:10 2025 by rpki-client