Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hnHJZ--Azj0S3OowSRuUb9cGh8A.cer
File: hnHJZ--Azj0S3OowSRuUb9cGh8A.cer (raw, json)
Hash identifier: zP9hlQUcPvD5pXFDIBXyPq4s/3QJ476iVl/hAAS/xjg=
Subject key identifier: 86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024A4A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 31 May 2025 17:04:38 +0000
Certificate not after: Wed 01 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 2404:9f40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 20 Jun 2025 22:15:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150090 (0x24a4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 31 17:04:38 2025 GMT
Not After : Oct 1 00:00:00 2025 GMT
Subject: CN=A9138D0E, serialNumber=8671C967EF80CE3D12DCEA30491B946FD70687C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:dd:f7:cc:cb:23:4f:2b:12:15:77:93:db:e0:
d5:75:99:06:ca:08:92:d5:2d:ec:ec:0e:f3:18:a1:
dc:b4:3b:fe:e1:3b:91:47:57:48:81:5c:1c:c5:80:
6c:3d:5d:e3:df:6c:91:33:ae:71:e3:b0:10:74:24:
81:59:bd:de:fc:3f:91:2a:14:5b:f3:75:4d:bd:1e:
5e:e8:94:cd:1f:68:49:78:af:0f:0c:5a:50:4c:f1:
bd:55:ec:89:1f:a5:19:1a:66:f7:49:dc:30:d7:59:
f7:11:fd:26:55:ed:a3:67:6c:eb:6d:0f:96:95:a4:
6b:3e:85:3b:35:da:c6:13:78:11:99:35:99:08:b6:
d2:8c:d5:25:a7:19:98:d5:01:cb:33:c5:ee:8d:9b:
28:58:fb:83:83:1e:2b:46:fd:39:fa:bc:d2:31:52:
eb:06:88:8d:4a:71:ae:5d:55:af:8b:e3:a9:7a:25:
fb:f4:53:c7:db:dc:5b:13:aa:36:05:ba:e8:78:a4:
93:f6:70:4e:3a:ff:a8:b7:cb:71:57:96:3e:51:22:
4d:36:d3:06:ea:ae:e7:41:b7:89:81:d1:5c:28:1f:
4e:e2:71:93:1a:90:ad:d2:22:42:da:2b:ea:67:b8:
c9:4b:34:69:b3:1c:8f:86:be:de:a3:ca:60:65:eb:
87:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:71:C9:67:EF:80:CE:3D:12:DC:EA:30:49:1B:94:6F:D7:06:87:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9138D0E/8E714984A35E11E8B41A5878C4F9AE02/hnHJZ--Azj0S3OowSRuUb9cGh8A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:9f40::/32
Signature Algorithm: sha256WithRSAEncryption
41:30:39:61:13:09:7b:f9:33:6a:bb:c7:ac:e2:ce:82:e5:db:
7b:6a:a1:33:d9:f8:22:e6:59:84:3e:e4:04:f7:51:48:d2:2c:
f0:b2:5c:31:2a:11:55:65:33:d3:24:da:43:76:da:63:1c:5b:
79:22:91:ba:22:12:24:85:80:1a:66:0d:16:e0:26:3b:dc:0d:
b4:99:44:cc:4b:cf:33:4b:8a:3b:44:d1:ab:22:04:cd:2e:7a:
eb:f7:55:38:da:7a:40:49:75:94:17:59:18:15:40:50:02:81:
75:73:4d:2a:51:7f:a5:4f:af:4b:14:28:82:ee:fd:11:ab:07:
fc:1c:5d:78:17:e1:38:a9:ee:36:6e:df:98:f0:f3:79:ee:42:
1a:dc:7e:2e:81:e6:40:43:8a:2b:8e:2b:a7:b0:59:36:e4:a4:
31:12:76:74:18:04:cd:53:e5:89:67:01:e0:26:a5:8d:27:40:
04:eb:a9:98:cb:53:0d:af:22:c4:e0:ce:ef:21:cb:d7:53:23:
97:be:5b:5e:72:38:7d:20:ee:92:8d:c6:6f:66:fa:92:ed:11:
b0:4f:eb:a2:28:b4:f1:d0:3d:ed:48:eb:a1:76:d5:6f:6b:c2:
56:f4:05:03:ea:8b:6f:e8:7b:c3:fc:6e:f7:a3:b8:bb:a6:6c:
73:5d:d4:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 04:14:23 2025 by rpki-client