Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cAIGO_MCy6RvkkWweaSbEa2W6uQ.cer
File: cAIGO_MCy6RvkkWweaSbEa2W6uQ.cer (raw, json)
Hash identifier: RFd7IWvxn3wk32jd8gXi082VscS9JtsYM9y4Nm1rbMo=
Subject key identifier: 70:02:06:3B:F3:02:CB:A4:6F:92:45:B0:79:A4:9B:11:AD:96:EA:E4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024882
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9184684/BFCAB5CC398611F0ACC55914C4F9AE02/cAIGO_MCy6RvkkWweaSbEa2W6uQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9184684/BFCAB5CC398611F0ACC55914C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 25 May 2025 16:39:00 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 153457
IP: 2001:df4:a0c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Jun 2025 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149634 (0x24882)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 25 16:39:00 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9184684, serialNumber=7002063BF302CBA46F9245B079A49B11AD96EAE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1a:55:13:57:91:85:97:9e:bd:3f:de:42:a6:
24:aa:13:13:06:e7:b6:0a:aa:26:0d:42:8a:ce:71:
27:c1:f1:74:e8:a9:16:70:d3:cf:da:d5:95:14:d5:
30:be:c2:ed:2d:32:9a:f9:13:a8:32:41:51:e9:53:
32:cf:89:7f:35:26:99:12:18:7b:22:fc:b8:fa:9b:
f0:6e:79:23:0d:70:dd:35:6c:a6:ea:60:11:7f:84:
65:b2:76:88:d5:f9:ec:1e:3b:79:7a:b4:8c:21:6b:
6b:0d:df:26:20:5b:3a:6a:01:50:40:86:5e:53:59:
26:39:2e:1c:8e:e6:fe:1a:07:2c:66:79:94:ad:71:
ed:81:25:89:78:6d:42:17:2b:c8:3b:95:48:b2:6b:
a8:fc:ed:cd:b5:92:3a:f8:84:e4:ef:55:f0:d5:9f:
3e:9c:dd:4c:a9:ef:70:de:04:f5:d9:70:20:c3:e0:
b0:29:e7:db:a1:95:e9:af:5c:5c:86:ee:27:30:fa:
e2:fb:4b:e2:48:39:e6:c2:12:2c:23:e9:5f:b8:3e:
dc:27:29:9b:cd:3b:32:d1:89:d9:58:0e:6a:5a:86:
cb:1a:6c:96:31:88:bf:02:54:ee:ac:7a:b9:79:d7:
77:5a:74:e6:67:4d:60:a6:36:c1:44:3d:b1:7c:be:
71:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:02:06:3B:F3:02:CB:A4:6F:92:45:B0:79:A4:9B:11:AD:96:EA:E4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9184684/BFCAB5CC398611F0ACC55914C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9184684/BFCAB5CC398611F0ACC55914C4F9AE02/cAIGO_MCy6RvkkWweaSbEa2W6uQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153457
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:a0c0::/48
Signature Algorithm: sha256WithRSAEncryption
91:7b:00:52:33:75:3c:b6:3a:56:bd:0e:16:6f:10:73:4b:31:
04:8d:b4:35:a0:70:6d:60:f4:ad:15:1f:15:2f:87:50:f5:f1:
f8:7e:42:99:90:16:12:bb:b5:7b:05:17:1e:23:b4:0e:af:5a:
5b:1a:88:4a:e0:60:f6:3a:83:a7:13:4c:e9:57:d8:2f:9f:f5:
6c:3e:57:a1:1d:23:2b:f7:74:3b:fe:ef:d0:43:b7:21:64:43:
de:0e:9e:f4:c4:c4:59:fe:0b:30:eb:c2:c7:ab:58:3a:2b:5e:
9d:d8:ce:f7:2c:4c:45:e0:b0:f4:a6:fb:ec:d8:ef:d2:d3:99:
21:bf:99:dc:cb:4a:eb:b9:ee:aa:ac:ed:fc:6a:eb:00:9f:83:
02:71:33:19:94:46:7e:81:1d:dd:f9:8d:77:cc:0a:61:7d:1a:
26:32:cc:37:58:76:59:77:d3:05:e0:f1:d1:e8:57:0b:d9:06:
27:b8:ed:da:28:89:96:47:a6:f9:8e:29:53:71:b5:5f:b5:22:
64:32:ce:a2:d5:fa:16:ec:ba:04:dd:a5:52:5a:8c:aa:83:d4:
59:ff:1c:00:28:80:a7:41:ff:da:f8:09:02:71:24:d9:b7:c6:
16:d2:f0:ba:1d:f3:4b:10:94:b6:9a:8f:75:cf:26:95:bb:bd:
e3:a5:c0:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 04:54:52 2025 by rpki-client