Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer
File: htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer (raw, json)
Hash identifier: tXraNySENjBoHLCYxkvFv8yRjZN/EPA74NQDejpjaw4=
Subject key identifier: 86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0254FA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Jul 2025 18:31:03 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 153998
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Jul 2025 04:28:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152826 (0x254fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 10 18:31:03 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A91A99C5, serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:13:2e:7c:b7:62:ef:7f:9a:88:02:7e:bc:b6:
05:7c:d1:d7:26:50:17:48:49:95:d7:7f:e9:b7:d8:
5b:da:ef:26:a0:b4:1e:00:a8:a9:cf:9f:5c:60:8c:
46:0e:21:09:a5:b3:f2:90:39:ff:96:b2:86:fa:12:
35:e4:6f:ff:45:e7:b5:8d:73:2f:77:2f:11:01:80:
59:3b:bf:1c:95:92:bd:06:64:cb:02:05:65:f9:ca:
db:1a:54:69:88:a4:34:4a:2d:01:47:b6:95:78:2a:
ea:36:79:3c:cb:d4:0e:d1:9a:d8:8d:49:81:40:20:
e0:1f:4c:48:77:a5:00:4c:26:2e:99:02:24:3c:0b:
4f:f1:ea:53:43:92:c7:e2:50:b9:97:40:ef:fd:a1:
62:0f:7e:ab:6d:80:f6:f8:c0:52:fb:80:0a:a6:ae:
40:61:51:10:ec:6d:57:7c:8b:50:6d:6b:37:e0:11:
5e:e3:1c:39:19:d0:e5:ac:14:15:29:a7:eb:fe:0a:
a2:73:14:8f:1a:c3:fc:f0:33:4d:78:e2:c9:60:f2:
4d:33:ed:8c:8d:4b:7a:ef:63:32:14:ac:f3:b3:24:
3a:7c:43:e8:8c:0f:29:83:c5:b5:3c:77:90:be:4f:
9e:b3:4f:e9:35:14:07:22:19:e4:c1:c4:80:85:92:
ec:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153998
Signature Algorithm: sha256WithRSAEncryption
d9:d8:90:a0:63:24:01:22:53:4b:0c:8f:92:d2:a4:da:86:5e:
78:1d:7f:45:51:72:34:b6:4b:94:69:40:7f:32:a3:64:cd:99:
66:bc:34:38:d5:27:9b:f0:de:e9:23:9a:4e:f9:9f:fa:50:0f:
13:19:96:39:fc:64:14:04:09:51:7b:20:aa:e1:c8:a9:cf:7b:
b7:d4:de:cb:05:d7:fc:78:2a:b9:83:af:b0:34:65:71:a4:80:
e4:89:5c:01:b3:ac:c9:56:0b:09:e6:cc:db:a3:c2:2a:cf:e3:
b3:1f:56:e6:14:d9:75:cf:ef:fa:f1:a9:f1:d8:e7:12:f5:67:
26:cf:61:17:23:b1:f3:8d:21:73:55:f7:2f:83:99:4f:55:3f:
f9:e5:35:4d:e6:cb:83:af:85:07:9f:9f:d8:8d:98:90:25:1d:
4d:9a:af:8d:f7:eb:39:de:fe:95:5d:17:46:ba:83:3d:35:ed:
0b:22:8c:fb:19:af:4a:c8:6b:7b:75:84:42:ee:4f:f0:af:03:
e1:0e:09:06:7e:a6:8e:9c:74:3e:5c:39:2e:d6:9d:78:86:42:
16:b6:2e:8b:fc:29:ee:29:49:d7:e4:d1:50:74:2c:2a:b0:6f:
20:cd:44:9a:0a:72:d9:92:98:9f:e9:66:9f:af:67:98:e0:e6:
b6:d9:d9:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 07:35:21 2025 by rpki-client