Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-6fDrfB_gLNWwRO4Ulb1ekBp6uY.cer
File: -6fDrfB_gLNWwRO4Ulb1ekBp6uY.cer (raw, json)
Hash identifier: KP879i4004Hs+9A971TV4EEAxszCLF53nUHLY1vcc0c=
Subject key identifier: FB:A7:C3:AD:F0:7F:80:B3:56:C1:13:B8:52:56:F5:7A:40:69:EA:E6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022F5C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918FD87/29AA9956DE0811EAA106B62BC4F9AE02/-6fDrfB_gLNWwRO4Ulb1ekBp6uY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918FD87/29AA9956DE0811EAA106B62BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Feb 2025 15:59:53 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 43.224.16.0/22
IP: 103.43.44.0/22
IP: 2407:180::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143196 (0x22f5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 5 15:59:53 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A918FD87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:99:07:37:f8:3b:9d:02:ce:75:be:29:17:37:
c0:8b:a8:39:24:57:9b:30:53:c0:86:5c:a7:3e:48:
04:71:97:6d:40:d2:6a:bb:30:c9:c4:15:c5:d3:eb:
8b:dd:76:79:6f:bc:67:ae:96:12:e5:b3:9b:5c:c3:
4f:03:c6:b8:52:28:f7:14:c9:99:03:6b:36:f3:cc:
58:9f:d5:01:6d:66:4e:a2:e8:e1:de:be:cd:ef:f1:
90:f6:96:21:5c:32:db:88:e5:9f:9b:a4:05:01:00:
91:eb:54:32:3e:5a:ed:9b:d2:a3:7b:70:5a:e2:cc:
55:27:e0:58:d4:57:55:92:66:38:d5:2c:b3:31:75:
96:e2:90:b6:30:ec:cc:85:ad:b8:4b:c6:82:41:71:
fc:3b:27:d6:96:dc:e5:76:02:87:40:f8:bb:49:ed:
8a:05:7d:cf:d2:66:11:1a:02:ec:d2:c0:c8:87:1b:
7f:ef:91:0f:d0:5e:2a:93:46:54:ba:4b:91:8a:bf:
a7:ee:ac:6e:dc:29:df:b2:af:42:d1:61:50:29:8f:
f0:43:f8:52:92:6f:e0:cf:42:65:70:51:73:6c:20:
ed:dc:71:0b:ef:0a:e7:fe:a3:b1:73:5e:4f:a7:a5:
63:be:0f:d9:16:cc:aa:1e:d2:9a:f9:88:22:06:1f:
ff:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A7:C3:AD:F0:7F:80:B3:56:C1:13:B8:52:56:F5:7A:40:69:EA:E6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918FD87/29AA9956DE0811EAA106B62BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918FD87/29AA9956DE0811EAA106B62BC4F9AE02/-6fDrfB_gLNWwRO4Ulb1ekBp6uY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.16.0/22
103.43.44.0/22
IPv6:
2407:180::/32
Signature Algorithm: sha256WithRSAEncryption
3e:0f:fe:c6:32:29:ce:79:d4:79:10:b8:a5:9d:78:16:ba:84:
59:d5:d8:2c:7e:fd:85:71:88:49:7c:58:db:c4:f5:65:de:51:
b1:e8:e5:4f:f0:fd:be:a3:45:47:81:3a:d9:fb:72:14:63:20:
98:7c:04:38:57:04:68:7f:ed:3f:ff:6b:4e:df:c2:1c:f9:16:
7b:8d:79:6b:b8:ad:2e:87:ca:a5:f7:f8:f8:13:62:25:9b:42:
bb:62:33:4e:7d:01:da:ff:c4:aa:0e:de:2b:7e:5f:e1:49:b6:
8e:17:b5:e2:9b:e2:11:26:d4:72:aa:b4:d4:eb:06:11:b3:3f:
08:51:55:b5:51:9c:fd:82:5f:5d:a7:43:4e:55:57:52:09:b0:
a1:91:72:67:fb:db:5e:60:3b:43:1d:74:44:16:c3:69:ee:94:
79:8b:79:b5:ea:72:ee:ed:ed:22:dd:74:22:84:5f:e2:21:0e:
c5:29:6a:78:d0:d4:ed:bd:a8:e0:8a:63:03:dc:10:c6:25:f6:
97:4d:e0:44:5f:be:28:28:d4:de:3d:9d:12:e3:ec:aa:20:3c:
e2:02:66:e2:a1:7d:3c:b6:9d:16:a5:89:e8:99:01:73:cd:fe:
d4:b3:87:09:c3:29:4c:19:a6:72:e7:a3:2c:98:c6:5b:c5:44:
5e:18:d9:96
-----BEGIN CERTIFICATE-----
MIIGEzCCBPugAwIBAgIDAi9cMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDIwNTE1NTk1M1oXDTI2MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOEZEODcxMTAvBgNVBAUTKEZCQTdDM0FERjA3RjgwQjM1NkMxMTNC
ODUyNTZGNTdBNDA2OUVBRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC9mQc3+DudAs51vikXN8CLqDkkV5swU8CGXKc+SARxl21A0mq7MMnEFcXT64vd
dnlvvGeulhLls5tcw08DxrhSKPcUyZkDazbzzFif1QFtZk6i6OHevs3v8ZD2liFc
MtuI5Z+bpAUBAJHrVDI+Wu2b0qN7cFrizFUn4FjUV1WSZjjVLLMxdZbikLYw7MyF
rbhLxoJBcfw7J9aW3OV2AodA+LtJ7YoFfc/SZhEaAuzSwMiHG3/vkQ/QXiqTRlS6
S5GKv6furG7cKd+yr0LRYVApj/BD+FKSb+DPQmVwUXNsIO3ccQvvCuf+o7FzXk+n
pWO+D9kWzKoe0pr5iCIGH/9NAgMBAAGjggMIMIIDBDAdBgNVHQ4EFgQU+6fDrfB/
gLNWwRO4Ulb1ekBp6uYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThGRDg3LzI5QUE5OTU2REUwODExRUFBMTA2QjYyQkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4RkQ4Ny8yOUFBOTk1NkRFMDgxMUVBQTEwNkI2MkJDNEY5QUUwMi8tNmZEcmZC
X2dMTld3Uk80VWxiMWVrQnA2dVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8EJTAj
MBIEAgABMAwDBAIr4BADBAJnKywwDQQCAAIwBwMFACQHAYAwDQYJKoZIhvcNAQEL
BQADggEBAD4P/sYyKc551HkQuKWdeBa6hFnV2Cx+/YVxiEl8WNvE9WXeUbHo5U/w
/b6jRUeBOtn7chRjIJh8BDhXBGh/7T//a07fwhz5FnuNeWu4rS6HyqX3+PgTYiWb
QrtiM059Adr/xKoO3it+X+FJto4XteKb4hEm1HKqtNTrBhGzPwhRVbVRnP2CX12n
Q05VV1IJsKGRcmf7215gO0MddEQWw2nulHmLebXqcu7t7SLddCKEX+IhDsUpanjQ
1O29qOCKYwPcEMYl9pdN4ERfvigo1N49nRLj7KogPOICZuKhfTy2nRalieiZAXPN
/tSzhwnDKUwZpnLnoyyYxlvFRF4Y2ZY=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:11:39 2025 by rpki-client