Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer
File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer (raw, json)
Hash identifier: TLqxeHm56zM1bHozOlcDUc4QHKNRzS0CpMB6FROjiIY=
Subject key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02358F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Mar 2025 12:59:03 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 203.2.224.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 17 Apr 2025 04:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144783 (0x2358f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 5 12:59:03 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A912519D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:45:47:eb:b6:c1:a1:c4:1a:a8:e3:31:12:bd:
f0:00:42:d3:e5:43:bc:98:82:cf:50:56:b9:19:2b:
0f:ac:54:c4:7d:19:ee:74:ce:41:aa:d0:31:ec:2b:
17:80:ae:c2:b6:8d:5b:b7:69:ff:a1:60:44:7d:34:
c3:75:53:55:80:1e:fd:45:3c:9b:89:27:9e:d9:d7:
e9:b9:4e:fb:d5:b2:d9:c1:63:44:9c:7e:0f:49:28:
24:22:a3:10:e0:80:77:ce:ab:d1:1c:6b:c2:0c:3f:
8f:21:71:6c:d2:5e:2e:d6:97:33:c3:67:14:a1:54:
ca:ae:31:f8:4a:e5:09:c7:7d:4d:38:13:78:4f:f2:
05:7d:a2:c3:62:2a:48:73:db:83:98:79:cd:df:af:
78:8c:68:13:77:99:65:58:25:bc:f0:ec:23:e2:c0:
44:8f:f9:7c:e1:c7:3f:9d:98:0a:d9:c7:9e:54:0b:
bc:59:e2:06:aa:45:05:6b:98:88:e5:14:b2:1b:48:
ec:40:65:b5:e6:87:4a:2e:fd:2b:72:71:ab:c6:08:
f6:47:d9:71:af:ee:2d:5a:dd:ee:27:f6:bd:d7:15:
18:5d:3e:b3:90:1f:42:e6:34:93:1a:69:85:ba:77:
34:11:68:6e:6c:b1:94:5d:cd:62:ea:b6:6b:0e:35:
f3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.2.224.0/24
Signature Algorithm: sha256WithRSAEncryption
83:8d:36:a8:63:87:99:fc:7b:ce:8c:12:30:f1:74:fb:d0:c8:
e5:f2:6a:96:65:f1:10:b9:19:34:4b:fd:b9:1f:ea:5f:4f:23:
28:59:45:0e:88:e7:4c:fd:8e:f3:7a:49:7d:37:3c:ca:29:25:
26:e4:e6:91:26:68:c8:fa:db:fe:9b:ea:c8:df:c2:05:61:db:
c4:5d:77:a1:24:0e:00:78:1f:77:bc:e9:d1:c9:ae:51:3f:29:
66:1f:73:18:59:9f:97:4f:75:d5:0b:7f:bd:bf:6b:46:a0:72:
01:4f:31:e1:e8:21:0c:47:d9:0e:b9:59:90:e6:15:61:1d:c3:
f5:55:67:c4:f0:66:fd:85:04:c3:44:6f:ce:f5:46:7f:01:da:
59:8b:9a:e2:16:07:ab:5a:4d:89:99:e7:bc:9a:a5:48:8a:67:
26:4b:44:55:bc:5f:d3:2e:fb:a8:78:44:9e:b5:78:07:d0:d9:
e5:b0:36:f8:27:8a:c5:3c:aa:7d:87:be:21:03:1c:d6:a1:53:
c1:6b:d9:e7:7a:a8:55:59:c1:8c:06:1f:a3:e1:7a:9d:06:e4:
6a:8b:55:50:1a:59:23:3a:e3:5e:ea:e6:1d:01:69:d2:ba:60:
cf:45:19:6b:dc:d2:b9:4f:06:cb:18:c5:1c:46:87:51:3f:f3:
1b:15:7b:30
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAjWPMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDMwNTEyNTkwM1oXDTI2MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAy
RTgyMEE3OTY4NkUxRTUyQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC0RUfrtsGhxBqo4zESvfAAQtPlQ7yYgs9QVrkZKw+sVMR9Ge50zkGq0DHsKxeA
rsK2jVu3af+hYER9NMN1U1WAHv1FPJuJJ57Z1+m5TvvVstnBY0Scfg9JKCQioxDg
gHfOq9Eca8IMP48hcWzSXi7WlzPDZxShVMquMfhK5QnHfU04E3hP8gV9osNiKkhz
24OYec3fr3iMaBN3mWVYJbzw7CPiwESP+Xzhxz+dmArZx55UC7xZ4gaqRQVrmIjl
FLIbSOxAZbXmh0ou/StycavGCPZH2XGv7i1a3e4n9r3XFRhdPrOQH0LmNJMaaYW6
dzQRaG5ssZRdzWLqtmsONfMlAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQUZrnYT0M2
qJ2E0eAuggp5aG4eUsQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI1MTlEL0I4MjgwNjY0Qzc1QTExRUI4MUU5OUUxOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyNTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBN
MnFKMkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBADLAuAwDQYJKoZIhvcNAQELBQADggEBAIONNqhjh5n8e86MEjDx
dPvQyOXyapZl8RC5GTRL/bkf6l9PIyhZRQ6I50z9jvN6SX03PMopJSbk5pEmaMj6
2/6b6sjfwgVh28Rdd6EkDgB4H3e86dHJrlE/KWYfcxhZn5dPddULf72/a0agcgFP
MeHoIQxH2Q65WZDmFWEdw/VVZ8TwZv2FBMNEb871Rn8B2lmLmuIWB6taTYmZ57ya
pUiKZyZLRFW8X9Mu+6h4RJ61eAfQ2eWwNvgnisU8qn2HviEDHNahU8Fr2ed6qFVZ
wYwGH6Phep0G5GqLVVAaWSM6417q5h0BadK6YM9FGWvc0rlPBssYxRxGh1E/8xsV
ezA=
-----END CERTIFICATE-----
Generated at Thu Apr 10 08:45:31 2025 by rpki-client