Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-65NuTksgZMhr1EdxrK1qomYGfo.cer
File: -65NuTksgZMhr1EdxrK1qomYGfo.cer (raw, json)
Hash identifier: MIm+e6rJ6GhbM2ebx8+xMt3heHHx5ybThfUaNGWb4GA=
Subject key identifier: FB:AE:4D:B9:39:2C:81:93:21:AF:51:1D:C6:B2:B5:AA:89:98:19:FA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022A65
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F2D93/818FDB78D44D11EFB1600B28C4F9AE02/-65NuTksgZMhr1EdxrK1qomYGfo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F2D93/818FDB78D44D11EFB1600B28C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 20 Jan 2025 21:03:30 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 203.55.122.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141925 (0x22a65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 20 21:03:30 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91F2D93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:60:db:5a:00:6e:6b:66:59:da:c8:16:90:cd:
86:53:b5:6b:f5:5a:ec:7e:d1:b5:89:29:ce:d1:c0:
c7:49:60:dc:02:bc:45:8b:04:7e:75:11:94:3c:a3:
4d:9a:f0:48:ac:5f:8f:1d:de:ca:77:74:ed:00:c3:
b7:5c:f0:62:06:33:9e:8b:46:80:a9:1a:c9:6c:92:
56:47:e3:3c:f0:08:3c:d7:ee:8a:c5:3d:69:26:2b:
25:1c:88:48:76:af:03:e0:64:84:30:30:35:5a:f3:
2c:60:d4:3a:e0:e0:96:91:c6:ca:70:4b:9f:37:a4:
98:00:e8:9e:99:8b:60:8a:ae:42:db:33:42:b8:0e:
66:3d:02:9b:dd:89:98:c8:57:0a:54:c4:f6:28:92:
f9:0c:6b:ad:c7:99:92:f6:5e:72:d7:da:ab:8a:ce:
30:70:2f:25:96:b7:36:5c:39:16:8d:60:e6:b3:51:
4d:c7:96:92:bb:ee:91:78:c1:a4:d6:04:88:27:b6:
bc:30:b1:04:a4:30:7a:4a:25:96:a0:76:5e:37:08:
4c:4e:b4:5e:aa:af:41:e0:6d:42:68:c8:70:67:a7:
64:7b:76:db:d4:49:df:66:49:1a:32:0f:87:bb:f2:
e9:ef:20:c0:3c:e5:9a:f5:5b:3b:25:44:7d:a1:e6:
a0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:AE:4D:B9:39:2C:81:93:21:AF:51:1D:C6:B2:B5:AA:89:98:19:FA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F2D93/818FDB78D44D11EFB1600B28C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F2D93/818FDB78D44D11EFB1600B28C4F9AE02/-65NuTksgZMhr1EdxrK1qomYGfo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.55.122.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:5c:ff:cc:25:e5:44:59:d5:6f:8f:d1:6a:c2:36:c3:c9:25:
99:ba:28:2c:ff:f3:af:32:44:5c:0b:6d:1b:10:aa:cf:f9:76:
f8:c0:45:ee:1a:e4:1a:c7:18:96:89:74:fb:7b:da:61:9c:f1:
e7:f4:66:db:cd:cf:a7:54:55:1b:3f:19:5e:b8:ee:02:95:7d:
42:8a:2e:81:b6:99:9a:e3:1f:f3:64:5e:1e:f4:f5:7d:77:e7:
b0:a2:bf:5f:de:46:fb:f3:7a:13:36:38:e3:3f:5e:7e:68:10:
86:2d:dd:cd:08:36:5d:cb:67:ef:84:8c:27:61:1b:72:a9:b3:
32:dc:71:04:a7:23:0e:9b:71:6c:bb:64:71:ce:a7:d8:49:48:
5f:29:ab:aa:00:e5:30:b7:e6:4a:3c:15:ec:be:a3:79:5f:c4:
79:f8:6c:22:b5:02:9d:16:96:82:27:14:fb:b9:e4:3b:a3:98:
4e:71:35:77:74:b5:a6:c7:cb:f7:2d:54:a5:81:1d:d0:b5:30:
8d:37:98:2f:7a:df:12:87:b7:d8:62:42:bc:a9:21:28:b1:c2:
a2:89:a6:f6:20:f9:ce:24:8d:81:cd:43:54:35:02:12:1c:53:
3a:40:ff:6d:92:c7:67:de:b1:79:50:8c:a7:7e:60:c6:ac:89:
42:43:dc:9e
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAiplMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDEyMDIxMDMzMFoXDTI2MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjJEOTMxMTAvBgNVBAUTKEZCQUU0REI5MzkyQzgxOTMyMUFGNTEx
REM2QjJCNUFBODk5ODE5RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDPYNtaAG5rZlnayBaQzYZTtWv1Wux+0bWJKc7RwMdJYNwCvEWLBH51EZQ8o02a
8EisX48d3sp3dO0Aw7dc8GIGM56LRoCpGslsklZH4zzwCDzX7orFPWkmKyUciEh2
rwPgZIQwMDVa8yxg1Drg4JaRxspwS583pJgA6J6Zi2CKrkLbM0K4DmY9ApvdiZjI
VwpUxPYokvkMa63HmZL2XnLX2quKzjBwLyWWtzZcORaNYOazUU3HlpK77pF4waTW
BIgntrwwsQSkMHpKJZagdl43CExOtF6qr0HgbUJoyHBnp2R7dtvUSd9mSRoyD4e7
8unvIMA85Zr1WzslRH2h5qC1AgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQU+65NuTks
gZMhr1EdxrK1qomYGfowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUYyRDkzLzgxOEZEQjc4RDQ0RDExRUZCMTYwMEIyOEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGMkQ5My84MThGREI3OEQ0NEQxMUVGQjE2MDBCMjhDNEY5QUUwMi8tNjVOdVRr
c2daTWhyMUVkeHJLMXFvbVlHZm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBADLN3owDQYJKoZIhvcNAQELBQADggEBAMZc/8wl5URZ1W+P0WrC
NsPJJZm6KCz/868yRFwLbRsQqs/5dvjARe4a5BrHGJaJdPt72mGc8ef0ZtvNz6dU
VRs/GV647gKVfUKKLoG2mZrjH/NkXh709X1357Civ1/eRvvzehM2OOM/Xn5oEIYt
3c0INl3LZ++EjCdhG3KpszLccQSnIw6bcWy7ZHHOp9hJSF8pq6oA5TC35ko8Fey+
o3lfxHn4bCK1Ap0WloInFPu55DujmE5xNXd0tabHy/ctVKWBHdC1MI03mC963xKH
t9hiQrypISixwqKJpvYg+c4kjYHNQ1Q1AhIcUzpA/22Sx2fesXlQjKd+YMasiUJD
3J4=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:09:05 2025 by rpki-client