Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDvPbbKI6WRw000Yr7PkqBJ5GGc.cer
File: qDvPbbKI6WRw000Yr7PkqBJ5GGc.cer (raw, json)
Hash identifier: lPQ7JGLUraM00QnumtfC2Q74XJzDMkcpTCo0H1z1xpA=
Subject key identifier: A8:3B:CF:6D:B2:88:E9:64:70:D3:4D:18:AF:B3:E4:A8:12:79:18:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023D3E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/qDvPbbKI6WRw000Yr7PkqBJ5GGc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 06 Apr 2025 13:03:15 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 153755
IP: 163.223.240.0/23
IP: 2001:df5:5140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146750 (0x23d3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 6 13:03:15 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9167F95, serialNumber=A83BCF6DB288E96470D34D18AFB3E4A812791867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:30:b3:48:cd:31:d7:bd:37:67:32:4f:46:7e:
85:09:28:57:14:ba:c3:10:4e:bb:e5:09:56:31:a9:
7f:6f:95:f2:8f:51:df:c6:05:a3:fb:77:6b:d4:ac:
ab:28:44:18:29:d6:9f:29:cf:3b:cc:2b:fb:44:6e:
b1:bb:45:62:94:c6:52:f7:de:7f:f5:cf:9f:96:04:
65:3f:4f:cc:a4:c5:a5:8a:04:0d:a5:b2:19:29:0a:
6b:94:04:8e:51:50:fd:fc:9d:e5:2e:12:92:6e:f3:
22:81:89:94:e1:ba:c4:81:3c:6e:ac:84:19:12:6a:
78:16:a3:84:de:f0:d1:34:24:d5:8f:84:26:62:bb:
cc:51:7e:33:59:24:33:44:64:97:b8:55:82:3f:11:
d5:0f:ef:c1:96:74:31:b6:22:d9:7a:f7:f3:50:fd:
00:67:cb:c2:12:b2:f3:f2:3f:f6:4e:f0:e4:6a:2a:
6a:d1:a3:b5:29:0e:97:67:5a:b1:8a:b0:db:12:71:
f8:77:2d:be:e9:c7:01:20:61:17:73:cc:a5:ed:36:
a8:09:c2:b7:de:3f:11:63:52:ac:b5:5b:d7:74:85:
60:b9:93:a6:e6:3d:8d:a9:06:da:aa:1f:78:84:0d:
1c:a9:ef:7f:82:9e:40:41:51:44:70:b0:da:08:7c:
a6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3B:CF:6D:B2:88:E9:64:70:D3:4D:18:AF:B3:E4:A8:12:79:18:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/qDvPbbKI6WRw000Yr7PkqBJ5GGc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153755
sbgp-ipAddrBlock: critical
IPv4:
163.223.240.0/23
IPv6:
2001:df5:5140::/48
Signature Algorithm: sha256WithRSAEncryption
3e:0f:b6:8a:aa:12:c4:ef:02:de:5b:7c:2f:e0:2a:79:c7:53:
b6:c2:ed:16:e1:72:ad:23:be:fd:6b:74:bc:3f:b4:8c:96:0e:
c9:2e:1e:07:13:06:0a:f6:31:2b:98:bd:31:71:47:c5:3c:19:
4b:29:2f:e0:44:9e:86:73:8d:b2:0e:16:21:47:16:d8:50:97:
38:34:12:9c:67:76:e6:4c:43:2d:01:83:e9:ec:ea:8c:3f:59:
c4:b8:4d:fd:16:3c:da:37:e7:76:19:65:b4:25:98:ea:37:aa:
2d:e6:72:da:06:22:65:05:ae:49:6d:71:9a:88:19:c2:a5:ae:
a1:de:9e:3a:17:57:0d:59:5f:84:8b:da:78:ae:46:92:b4:5a:
fe:75:14:7f:f3:84:91:b4:8b:22:c2:75:c0:f6:bf:82:cb:03:
66:bf:ea:c5:ff:87:7c:6b:26:48:99:f5:5d:b8:70:e5:29:ab:
b9:f5:e0:d5:4f:76:44:13:5a:0f:51:d1:ae:b4:f0:57:5a:11:
b0:8d:b0:71:a0:b7:1b:85:33:73:8e:23:6b:96:8d:88:92:0e:
4f:03:1d:1c:0b:b5:45:47:41:f4:fb:aa:7a:20:a5:f3:b1:dd:
76:ab:cf:18:fa:4b:d3:09:84:f8:d1:45:7a:43:45:1c:a9:07:
e7:ff:4c:0f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 25 22:46:25 2025 by rpki-client