Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer
File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer (raw, json)
Hash identifier: wPoE3JBWcfdsGTyzk145XSCez3xKQBYVSEb+16zG4Cs=
Subject key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4BCD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 May 2025 15:22:13 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 5.28.32.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 10 Jun 2025 14:50:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19405 (0x4bcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: May 26 15:22:13 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:eb:00:c4:85:13:8a:ec:85:48:0e:22:dd:cd:
d4:6a:61:45:9c:ba:8b:71:be:c3:ec:5b:68:16:24:
57:4e:26:e9:12:9c:a4:4c:81:67:5e:45:53:d3:42:
0f:4b:49:fa:91:c7:b1:78:b4:9f:bc:d2:45:4e:0b:
e5:04:7a:d0:4e:a8:12:ef:da:8d:73:b1:48:01:40:
b5:8e:4f:ae:fc:a9:ba:a4:1e:7e:23:04:f6:b6:34:
f6:86:83:f9:f1:b4:f8:8d:28:43:32:fa:9a:ee:fa:
72:19:0a:24:7b:61:96:12:77:82:27:ac:e2:6d:e4:
ce:55:db:84:fe:fd:9c:10:a9:06:2a:a9:57:9a:d8:
5b:90:e0:d8:9f:3c:7c:ee:f7:6f:76:85:a0:d7:a6:
f3:8e:6a:0f:02:8b:d1:a3:be:95:8f:f0:1d:c6:58:
85:3f:d3:db:c8:57:18:a8:b0:44:5d:42:2d:e8:45:
d0:04:e6:f1:0e:1f:ec:95:0f:c6:4d:a0:a0:87:99:
68:2e:a1:82:46:c2:60:c7:93:90:42:d9:f3:e2:b4:
2e:fc:9a:a2:25:fe:01:8c:5d:63:61:41:d4:7d:6e:
c9:c1:f1:5e:40:06:0a:c0:0f:65:0b:b1:37:6c:e4:
af:c6:55:24:39:ef:ee:9e:e8:72:0b:46:2d:50:02:
c8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
5.28.32.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:7c:16:8e:f0:42:99:52:5c:76:e0:91:aa:08:0c:1e:59:63:
7a:38:3d:fc:e5:02:80:df:a5:14:e8:4d:65:b2:02:be:ed:ec:
ce:87:7e:c6:47:60:16:02:5a:ab:b5:fc:9a:38:6f:d3:96:4b:
d8:fd:79:47:7c:01:b3:97:7d:9a:85:7e:69:93:06:59:3c:60:
8f:ba:81:19:7e:eb:db:c4:66:ba:3a:3c:27:06:bf:e0:1c:b8:
56:b5:1f:dc:d4:43:ff:27:20:4a:c0:ef:8a:53:bd:de:fa:1e:
1b:1f:3e:b2:ea:27:26:36:ef:e5:09:42:98:6d:9d:5b:8a:cb:
d1:56:82:7f:0f:6d:6b:2f:f4:45:68:62:3f:f0:8e:75:4b:ec:
a6:a7:3c:0b:53:fc:7d:23:23:d5:b4:be:f5:04:ed:c6:8b:d3:
06:42:09:56:f6:71:69:43:a2:c9:0a:f6:85:f2:51:aa:00:90:
4f:86:89:6b:97:18:88:86:67:13:ea:fe:5a:eb:ed:c6:e5:74:
77:1e:7a:38:44:e2:45:8d:34:72:cf:51:75:0f:3a:bb:d6:70:
57:f6:44:0c:a1:ad:1f:de:6b:c3:5e:1d:06:b9:bd:d6:1d:88:
91:52:f2:60:3d:84:ee:38:78:09:a6:bb:dd:1a:ef:97:e6:3c:
eb:af:65:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 00:07:15 2025 by rpki-client