Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IUKTP75ufF-3Z6hqXiHdYBeOo50.cer
File: IUKTP75ufF-3Z6hqXiHdYBeOo50.cer (raw, json)
Hash identifier: m3SDt0LLy7kiAQEjW7D+mByaQ/eASTtQBqBCC5xXeRI=
Subject key identifier: 21:42:93:3F:BE:6E:7C:5F:B7:67:A8:6A:5E:21:DD:60:17:8E:A3:9D
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 684C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9168D00/F1AF105261DF11F0A6F74D7FC4F9AE02/IUKTP75ufF-3Z6hqXiHdYBeOo50.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9168D00/F1AF105261DF11F0A6F74D7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 16 Jul 2025 00:58:16 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 165.101.211.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Jul 2025 04:28:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26700 (0x684c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 16 00:58:16 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9168D00, serialNumber=2142933FBE6E7C5FB767A86A5E21DD60178EA39D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9e:8a:14:50:d1:e0:67:8b:56:98:5c:0b:ea:
58:3f:8d:07:b1:58:74:c9:2a:a4:88:df:70:72:15:
ff:5e:fd:87:fc:ac:c1:08:4a:0c:15:7f:08:4c:04:
fb:00:f7:3f:02:93:1b:da:4b:c1:18:6e:87:48:72:
89:8a:d2:0d:55:a8:d8:bf:78:a7:23:6b:4a:f6:3c:
5d:d1:a9:bb:89:68:a5:bd:b6:06:47:7a:3f:dd:d7:
4c:b3:53:bb:65:98:cb:12:d5:c5:94:98:7c:5b:28:
31:e8:34:b2:f3:b0:a5:0a:65:d9:b9:f3:5a:59:d0:
1f:8e:45:fe:6c:8b:fe:f2:08:2d:9f:23:67:ef:45:
f5:0a:cf:a7:87:36:f1:d4:d1:0c:3c:f2:f5:6e:b4:
18:63:a3:a2:a4:1f:c7:ab:29:d4:8e:0d:c6:43:d5:
3d:c9:1d:a0:27:c9:dc:79:39:06:0b:9d:98:fb:cf:
fe:2e:2d:81:aa:9b:ab:1b:3e:20:2e:5e:06:e8:40:
75:0f:56:94:78:d0:e0:98:bd:f2:94:21:6e:43:08:
52:4d:eb:3c:c4:92:92:ac:53:fb:b6:b2:91:92:1f:
da:d8:46:9c:be:d8:a7:02:c8:a8:5d:4d:39:80:77:
13:01:7c:00:f1:f7:d4:35:da:48:e3:78:b9:05:04:
1f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:42:93:3F:BE:6E:7C:5F:B7:67:A8:6A:5E:21:DD:60:17:8E:A3:9D
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9168D00/F1AF105261DF11F0A6F74D7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9168D00/F1AF105261DF11F0A6F74D7FC4F9AE02/IUKTP75ufF-3Z6hqXiHdYBeOo50.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.101.211.0/24
Signature Algorithm: sha256WithRSAEncryption
29:67:1d:db:03:77:cb:a2:80:d4:12:a9:c4:ef:18:bd:f2:94:
ba:4a:39:89:20:47:f6:60:d0:3f:bf:0e:17:36:42:3e:3f:a7:
b4:6b:fd:b1:9b:19:e2:59:69:82:c0:ad:ab:07:6f:c2:2b:fb:
a4:83:56:f0:a6:f7:4b:31:24:1b:b7:d1:01:e7:d1:af:d2:e8:
11:63:3e:f7:60:b1:5a:75:e5:46:e6:c6:04:a3:9f:98:a0:61:
19:f6:35:a9:a8:1b:11:7f:45:31:77:aa:b1:db:66:23:7a:c5:
b4:2f:33:53:4d:a0:c6:f2:65:4c:11:17:0c:17:34:88:54:4e:
e7:bc:f1:25:64:85:6b:a8:f3:1e:53:90:f8:fe:8e:78:d5:35:
57:c7:92:fb:87:fa:8e:ea:f9:e0:a7:a7:8f:d0:6d:a8:08:7b:
ea:22:87:a9:4a:d7:9b:a7:f8:4f:63:d1:87:b7:c6:1c:3f:27:
14:c6:be:4d:75:2c:bf:b1:1e:84:a2:d4:5a:4d:9d:e1:51:64:
de:4d:6d:6c:bd:0a:a6:5f:3f:16:fe:b9:f3:92:a5:ca:08:40:
e8:d6:a3:26:9f:7d:51:e0:cb:0a:80:de:1e:2f:59:4a:0f:c7:
5f:7e:ad:c9:22:ed:c7:7b:0f:50:c6:6f:86:1e:bc:45:b8:c2:
82:1b:cc:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 14:08:49 2025 by rpki-client