Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/c8Mme8SMmzk0ep8yp9O0D59yiVg.cer
File: c8Mme8SMmzk0ep8yp9O0D59yiVg.cer (raw, json)
Hash identifier: 7+ArBBDlsK6YsTQ+RYQlnmYIMUjT4nl1s96igy+ztUw=
Subject key identifier: 73:C3:26:7B:C4:8C:9B:39:34:7A:9F:32:A7:D3:B4:0F:9F:72:89:58
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4D13
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/c8Mme8SMmzk0ep8yp9O0D59yiVg.mft
caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/
Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml
Certificate not before: Sun 24 Aug 2025 23:35:15 +0000
Certificate not after: Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources: IP: 57.176.0.0/15
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 14 Sep 2025 02:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19731 (0x4d13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Aug 24 23:35:15 2025 GMT
Not After : Sep 30 00:00:00 2027 GMT
Subject: CN=A9162E3D0000, serialNumber=73C3267BC48C9B39347A9F32A7D3B40F9F728958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a6:ee:8c:64:e8:c6:79:4a:d3:28:73:34:55:
99:e3:eb:ab:93:6b:6b:32:6b:06:57:64:c7:6e:4c:
ee:f8:8f:21:46:ab:c4:03:77:96:4c:49:c3:19:63:
be:30:97:36:17:24:77:0d:29:60:5b:a5:f0:83:b3:
ed:ca:a7:e1:c8:75:27:d9:3f:19:07:54:07:b7:5b:
db:89:e7:64:37:21:bb:93:9a:18:da:ee:22:a9:15:
c6:20:2c:f0:6b:eb:9a:0b:7c:d6:d6:74:0d:a6:b0:
08:95:a5:3f:80:c4:82:0f:80:a3:b2:8a:b7:c9:50:
f4:ff:f5:fb:69:a3:75:e7:65:41:5a:60:8c:ef:24:
a5:4c:e3:0f:3f:2d:9a:bc:93:09:a5:07:57:1f:55:
9e:32:4e:1b:e8:6f:3c:d7:17:a5:87:39:2a:77:e4:
d1:c4:bd:fb:bc:ca:ec:0e:9e:9a:cb:fb:87:98:1d:
7f:9e:87:f9:f3:a9:93:ea:66:d6:75:84:8b:ea:d4:
2f:7d:6c:d8:04:a4:de:61:45:76:71:d6:41:e0:df:
70:2c:92:26:8b:8b:a5:b9:f3:04:45:63:07:3b:b1:
c3:08:b7:1f:05:2d:e6:91:c8:a4:62:34:36:bd:52:
70:f3:f6:2b:b0:1f:5d:f9:a4:cb:5b:95:8b:20:3f:
08:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C3:26:7B:C4:8C:9B:39:34:7A:9F:32:A7:D3:B4:0F:9F:72:89:58
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/
RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/c8Mme8SMmzk0ep8yp9O0D59yiVg.mft
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
57.176.0.0/15
Signature Algorithm: sha256WithRSAEncryption
d4:ec:66:cd:d4:87:57:a2:f3:e6:2c:d3:ce:df:39:28:52:6c:
fa:31:88:b5:96:94:10:a0:50:0b:3a:59:f4:73:5d:6d:0c:96:
27:43:d6:1e:db:da:d2:e9:78:37:46:ce:c1:17:be:4a:61:e2:
8d:bc:11:a4:ad:1f:22:00:dc:5a:da:83:5a:6c:6d:90:b2:1e:
82:36:9e:a8:5b:32:9e:9b:63:26:94:89:a9:30:d7:c7:8d:b9:
2a:92:b3:02:47:f8:74:29:3b:7e:58:d8:53:50:17:f0:8c:d1:
6c:09:d5:64:34:16:8e:a4:c7:92:d0:92:23:11:21:9b:23:43:
41:6c:1a:fd:bc:43:cd:d8:07:d7:3a:b6:52:79:f4:8a:a2:29:
cf:41:cd:4d:0e:52:42:c1:ea:72:56:1a:5d:b0:c6:f5:e1:f7:
71:04:67:98:6e:99:e7:ea:02:6c:b7:32:54:46:be:41:52:e1:
51:6e:9e:6e:39:7a:4d:64:e6:03:8f:8e:01:89:19:44:b5:43:
64:cd:7d:88:c0:1b:db:f2:26:38:99:14:21:df:7c:f5:3a:e1:
6f:f7:e2:aa:c1:0e:8a:19:5f:4b:1e:a5:0c:5a:75:66:fc:b8:
1a:a7:bd:a7:99:2d:b8:0e:a2:5a:bf:50:06:d9:8e:ee:92:9b:
a5:40:f6:42
-----BEGIN CERTIFICATE-----
MIIFpTCCBI2gAwIBAgICTRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjUwODI0MjMzNTE1WhcNMjcwOTMwMDAwMDAwWjBKMRUwEwYD
VQQDEwxBOTE2MkUzRDAwMDAxMTAvBgNVBAUTKDczQzMyNjdCQzQ4QzlCMzkzNDdB
OUYzMkE3RDNCNDBGOUY3Mjg5NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCdpu6MZOjGeUrTKHM0VZnj66uTa2syawZXZMduTO74jyFGq8QDd5ZMScMZ
Y74wlzYXJHcNKWBbpfCDs+3Kp+HIdSfZPxkHVAe3W9uJ52Q3IbuTmhja7iKpFcYg
LPBr65oLfNbWdA2msAiVpT+AxIIPgKOyirfJUPT/9ftpo3XnZUFaYIzvJKVM4w8/
LZq8kwmlB1cfVZ4yThvobzzXF6WHOSp35NHEvfu8yuwOnprL+4eYHX+eh/nzqZPq
ZtZ1hIvq1C99bNgEpN5hRXZx1kHg33AskiaLi6W58wRFYwc7scMItx8FLeaRyKRi
NDa9UnDz9iuwH135pMtblYsgPwgPAgMBAAGjggKXMIICkzAdBgNVHQ4EFgQUc8Mm
e8SMmzk0ep8yp9O0D59yiVgwHwYDVR0jBBgwFoAUDPzneFf88B852ZpitKpi5hWe
dvgwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBo
oGagZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0
MUQ2NjExRTJBM0YyN0Y3QzcyRkQxRkYyL0RQem5lRmY4OEI4NTJacGl0S3BpNWhX
ZWR2Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jw
a2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUy
MUE0RjRGQjQvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZnLmNlcjBKBgNVHSAB
Af8EQDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFw
bmljLm5ldC9SUEtJL0NQUy5wZGYwgc4GCCsGAQUFBwELBIHBMIG+MDQGCCsGAQUF
BzAFhihyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMFMG
CCsGAQUFBzAKhkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAw
MDAvYzhNbWU4U01temswZXA4eXA5TzBENTl5aVZnLm1mdDAxBggrBgEFBQcwDYYl
aHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcB
BwEB/wQPMA0wCwQCAAEwBQMDATmwMA0GCSqGSIb3DQEBCwUAA4IBAQDU7GbN1IdX
ovPmLNPO3zkoUmz6MYi1lpQQoFALOln0c11tDJYnQ9Ye29rS6Xg3Rs7BF75KYeKN
vBGkrR8iANxa2oNabG2Qsh6CNp6oWzKem2MmlImpMNfHjbkqkrMCR/h0KTt+WNhT
UBfwjNFsCdVkNBaOpMeS0JIjESGbI0NBbBr9vEPN2AfXOrZSefSKoinPQc1NDlJC
wepyVhpdsMb14fdxBGeYbpnn6gJstzJURr5BUuFRbp5uOXpNZOYDj44BiRlEtUNk
zX2IwBvb8iY4mRQh33z1OuFv9+KqwQ6KGV9LHqUMWnVm/Lgap72nmS24DqJav1AG
2Y7ukpulQPZC
-----END CERTIFICATE-----
Generated at Sun Sep 7 15:48:44 2025 by rpki-client