Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/De7tE2IUPDYvJPl8Z8jk7OLHpWE.cer
File: De7tE2IUPDYvJPl8Z8jk7OLHpWE.cer (raw, json)
Hash identifier: N8H74tt7Gj6JjWVnkWPxhO8WbrFYw79ktd0WWdR/oQE=
Subject key identifier: 0D:EE:ED:13:62:14:3C:36:2F:24:F9:7C:67:C8:E4:EC:E2:C7:A5:61
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6314
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/De7tE2IUPDYvJPl8Z8jk7OLHpWE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 17 Mar 2025 06:21:31 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 144.6.0.0/16
IP: 157.211.0.0/16
IP: 159.196.0.0/16
IP: 167.179.128.0/18
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25364 (0x6314)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 17 06:21:31 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91B1FA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5a:9b:c6:cf:4c:b0:c4:4f:63:0d:41:7e:10:
18:e0:42:7e:82:25:68:53:15:17:4e:79:2d:8e:3e:
26:63:b0:7c:0f:12:d9:f3:9e:72:57:31:02:b7:25:
15:a9:7e:5c:87:9b:cd:f0:01:ca:bf:1f:e3:bb:0f:
84:f0:86:5c:42:4d:4d:60:c6:08:51:1c:05:c9:4b:
24:eb:27:55:8b:50:89:62:17:08:29:db:9e:71:92:
0d:64:00:cc:d4:e3:81:da:47:4e:f8:ec:87:34:3d:
42:92:80:bf:18:59:c5:c6:6a:91:fc:ad:51:be:58:
08:51:ef:65:9d:2f:22:28:dc:35:c2:c4:c4:bd:4a:
63:c8:ef:a9:76:a8:d9:fa:0c:93:ec:6e:c1:7a:53:
4a:aa:63:fa:06:da:fe:f7:6e:78:32:d3:08:1c:1f:
6a:6e:5e:6c:ae:43:38:a9:75:88:d2:dc:32:eb:a1:
1a:8d:66:60:d8:3a:28:63:d4:72:d2:d2:b5:df:11:
7d:38:f9:8c:37:7e:ec:6a:26:fc:6c:b0:b8:04:21:
8d:ad:a4:f4:7c:1a:3f:c2:eb:82:f7:25:2f:a2:8d:
eb:41:e7:90:c9:93:ad:cc:25:95:81:87:7a:80:c5:
6a:8f:5f:54:d8:16:21:81:a1:89:db:78:3d:3d:35:
96:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EE:ED:13:62:14:3C:36:2F:24:F9:7C:67:C8:E4:EC:E2:C7:A5:61
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/De7tE2IUPDYvJPl8Z8jk7OLHpWE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
144.6.0.0/16
157.211.0.0/16
159.196.0.0/16
167.179.128.0/18
Signature Algorithm: sha256WithRSAEncryption
74:59:7f:0d:92:3b:ee:b0:86:be:e4:d4:49:4f:ed:42:ed:7b:
40:d0:a6:74:4b:19:25:74:93:21:6c:0e:33:98:e3:b9:da:e3:
99:92:2c:cc:ae:8f:67:49:7d:17:6f:51:0c:78:73:9f:cc:0c:
6d:78:cd:f3:47:6a:d9:fb:35:2c:a2:2b:72:d3:5c:0c:56:1d:
6f:fd:e2:59:3d:18:4f:03:56:03:d1:eb:a7:80:65:dd:07:28:
0c:4e:4e:d2:de:8b:95:f7:31:00:8f:e3:9d:37:f6:3e:fc:3e:
7b:04:44:96:cc:3b:dc:6f:31:7c:9a:b4:4d:ec:03:c3:8b:0b:
b9:74:5a:e9:a3:4e:23:ae:20:f9:81:0f:17:14:3e:86:58:a1:
94:68:df:ca:89:9c:8a:60:8f:17:70:b6:f2:cd:df:a8:be:a0:
7b:64:17:26:8f:bb:75:be:a2:90:a3:8a:bd:75:4b:67:77:87:
14:b3:e1:64:06:8a:22:27:b3:b3:59:db:0b:3c:a0:fe:7a:45:
b9:c5:91:99:fc:9c:df:af:af:49:d9:44:14:ab:d8:0b:e3:95:
44:33:84:1d:6e:74:81:56:8f:97:1f:ad:70:63:c9:bd:59:0a:
1a:38:4c:52:70:1e:15:b9:52:06:d2:42:94:32:3b:77:db:20:
41:22:70:66
-----BEGIN CERTIFICATE-----
MIIGDDCCBPSgAwIBAgICYxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjUwMzE3MDYyMTMxWhcNMjYwNTAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFCMUZBODExMC8GA1UEBRMoMERFRUVEMTM2MjE0M0MzNjJGMjRGOTdD
NjdDOEU0RUNFMkM3QTU2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMdam8bPTLDET2MNQX4QGOBCfoIlaFMVF055LY4+JmOwfA8S2fOeclcxArclFal+
XIebzfAByr8f47sPhPCGXEJNTWDGCFEcBclLJOsnVYtQiWIXCCnbnnGSDWQAzNTj
gdpHTvjshzQ9QpKAvxhZxcZqkfytUb5YCFHvZZ0vIijcNcLExL1KY8jvqXao2foM
k+xuwXpTSqpj+gba/vdueDLTCBwfam5ebK5DOKl1iNLcMuuhGo1mYNg6KGPUctLS
td8RfTj5jDd+7Gom/GywuAQhja2k9HwaP8LrgvclL6KN60HnkMmTrcwllYGHeoDF
ao9fVNgWIYGhidt4PT01lpMCAwEAAaOCAwIwggL+MB0GA1UdDgQWBBQN7u0TYhQ8
Ni8k+XxnyOTs4selYTAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QjFGQTgvREY0NzA5MDJBRkQ5MTFFOEIyRUQ0QzdGQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUIxRkE4L0RGNDcwOTAyQUZEOTExRThCMkVENEM3RkM0RjlBRTAyL0RlN3RFMklV
UERZdkpQbDhaOGprN09MSHBXRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQfMB0w
GwQCAAEwFQMDAJAGAwMAndMDAwCfxAMEBqezgDANBgkqhkiG9w0BAQsFAAOCAQEA
dFl/DZI77rCGvuTUSU/tQu17QNCmdEsZJXSTIWwOM5jjudrjmZIszK6PZ0l9F29R
DHhzn8wMbXjN80dq2fs1LKIrctNcDFYdb/3iWT0YTwNWA9Hrp4Bl3QcoDE5O0t6L
lfcxAI/jnTf2Pvw+ewRElsw73G8xfJq0TewDw4sLuXRa6aNOI64g+YEPFxQ+hlih
lGjfyomcimCPF3C28s3fqL6ge2QXJo+7db6ikKOKvXVLZ3eHFLPhZAaKIiezs1nb
Czyg/npFucWRmfyc36+vSdlEFKvYC+OVRDOEHW50gVaPlx+tcGPJvVkKGjhMUnAe
FblSBtJClDI7d9sgQSJwZg==
-----END CERTIFICATE-----
Generated at Fri Apr 4 11:45:43 2025 by rpki-client