Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnDzQpmiHqWwx27T1-suB7tnI_c.cer
File: cnDzQpmiHqWwx27T1-suB7tnI_c.cer (raw, json)
Hash identifier: wqwPxo/X2qm/JrAxD4tY4INKdg63gpMojXUbhfdIa/U=
Subject key identifier: 72:70:F3:42:99:A2:1E:A5:B0:C7:6E:D3:D7:EB:2E:07:BB:67:23:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026ED8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9179EAE/AE0280568D0E11EFA8FE9371C4F9AE02/cnDzQpmiHqWwx27T1-suB7tnI_c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9179EAE/AE0280568D0E11EFA8FE9371C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 23 Oct 2025 23:24:22 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 153366
IP: 2001:df6:3fc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 17:45:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159448 (0x26ed8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 23 23:24:22 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9179EAE, serialNumber=7270F34299A21EA5B0C76ED3D7EB2E07BB6723F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:af:2b:d9:39:1a:bb:e8:38:07:40:cd:42:95:
7d:12:e8:9f:cd:12:bc:0b:83:2c:23:b8:a6:e8:02:
52:96:92:bf:22:a4:30:f8:db:1f:16:a2:79:d2:3b:
15:b0:3d:73:9b:b1:6a:83:10:b3:15:9f:92:56:f3:
2f:ab:65:50:e3:d9:b8:25:2b:f4:d4:89:eb:fa:3f:
28:94:69:d0:93:a5:b8:49:e9:09:ad:7c:10:98:8f:
05:4e:98:11:df:ec:74:01:81:fe:28:a8:da:4f:ff:
27:cf:52:95:40:55:eb:29:c2:ad:f1:f8:ec:73:cc:
9e:37:8f:14:ba:ab:85:94:4a:6d:2c:20:e1:a8:16:
ff:dc:1f:1b:37:ab:b9:d2:46:5e:9d:b4:3d:26:55:
9b:4f:31:87:d9:2d:d7:ba:ab:cd:71:8c:8a:53:e9:
52:9c:c0:22:11:4b:44:55:e2:6a:c0:27:7c:04:8d:
81:0c:0b:0f:fe:77:ae:f3:7f:73:88:f4:46:98:31:
0c:41:c4:eb:be:0e:c6:a9:87:af:e3:c6:f2:71:9a:
e4:9d:00:b9:3f:b3:92:5e:05:de:77:45:f0:be:60:
88:15:e8:54:b8:2f:6c:b5:68:03:6a:5d:18:bf:da:
b0:f8:35:2f:b7:0f:33:5d:9f:10:33:6b:b9:30:24:
f5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:70:F3:42:99:A2:1E:A5:B0:C7:6E:D3:D7:EB:2E:07:BB:67:23:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9179EAE/AE0280568D0E11EFA8FE9371C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9179EAE/AE0280568D0E11EFA8FE9371C4F9AE02/cnDzQpmiHqWwx27T1-suB7tnI_c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153366
sbgp-ipAddrBlock: critical
IPv6:
2001:df6:3fc0::/48
Signature Algorithm: sha256WithRSAEncryption
8f:1f:3e:2f:0d:de:69:42:b0:46:c3:9a:ee:b5:c3:8c:4e:ab:
a5:75:0f:63:53:af:18:87:a0:04:da:cd:f3:3c:37:b7:15:b5:
43:2d:de:75:89:0c:90:10:07:ae:68:91:8b:ec:8c:6f:fa:c9:
2e:48:48:be:cc:aa:07:21:d3:d5:7f:7c:b8:7b:6f:02:41:06:
68:e2:e3:c9:59:0f:b1:36:e5:c9:7b:94:ae:95:ad:72:ee:7e:
b3:3e:00:5e:6a:dc:c2:c9:89:b8:b4:26:e5:40:08:63:c4:c9:
be:22:be:e1:0a:a6:a4:b0:2a:5e:c9:86:3d:10:d4:90:ac:2e:
89:0c:08:cd:00:95:e1:cf:99:37:67:b0:42:13:d2:81:58:d0:
61:01:32:e3:20:83:f1:ae:03:32:f4:a2:7a:87:c5:18:53:c4:
ea:0a:bf:6e:1b:ee:0b:69:f6:b7:a7:6e:ea:d2:71:c6:4f:21:
b8:b7:5d:5a:d2:1d:e1:b9:e9:ea:60:b5:07:61:27:f2:f7:2f:
fe:b0:04:90:4f:bb:d1:d0:6a:0d:b0:b6:c8:53:10:f0:26:ed:
fe:02:73:8b:4b:b3:05:8e:db:7f:7b:00:8a:ed:be:60:19:1d:
cb:42:1e:7f:ab:7f:08:41:e5:ca:a2:d7:25:ab:68:08:8f:ec:
84:65:3a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 19:29:21 2025 by rpki-client