Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer
File: h5BiUD_SCEZvdOqa-HZwqH2GpzY.cer (raw, json)
Hash identifier: b/rFP9r5+w6Zf5hKaT2PLBjvBM9F2cUjC+bXGDHIz9Y=
Subject key identifier: 87:90:62:50:3F:D2:08:46:6F:74:EA:9A:F8:76:70:A8:7D:86:A7:36
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4A1B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 29 Jan 2025 16:04:19 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 2001:7fa:3:: -- 2001:7fa:4:ffff:ffff:ffff:ffff:ffff
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 21:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18971 (0x4a1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 29 16:04:19 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A9174880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cc:80:db:4e:1a:4e:e8:c1:d0:45:5f:bf:a1:
61:f3:97:9b:56:b3:a1:03:67:1b:92:21:ed:54:38:
08:b4:42:55:2e:b3:38:f5:ef:9d:f8:c9:53:bd:d8:
4b:79:a1:87:6e:bd:05:d4:a6:35:f7:47:cb:9f:52:
c1:88:c2:6d:63:56:c0:7c:7f:b5:d9:25:e1:f1:8d:
ea:2a:21:37:e4:a3:3a:96:25:fe:c9:28:e5:6d:78:
be:52:81:19:ca:7f:c9:9b:2d:0f:b0:6f:7d:f8:40:
34:6d:88:2d:a9:0e:14:63:c1:83:0f:5e:38:96:dd:
6e:a8:e1:95:4c:0f:32:62:59:f1:84:03:57:a7:2e:
e7:e0:10:30:cd:30:67:2e:c7:1e:35:e0:1b:c2:fa:
f9:9f:05:26:02:84:24:dc:24:72:a4:b1:ba:ae:b4:
1b:e2:c5:d1:e1:f2:58:9a:a9:2a:cf:04:74:cf:6c:
2f:67:58:cf:e8:53:96:bb:a5:b7:15:18:92:55:ee:
24:6b:0b:7d:05:ac:9c:aa:f2:9c:24:50:ee:c9:f2:
21:09:41:08:7e:40:61:78:60:1d:5f:b5:02:20:26:
06:d5:f5:ed:c3:34:c8:9a:fd:ee:0c:ca:ee:93:da:
f5:2b:88:d1:a7:a3:ee:79:a4:78:16:f3:12:4a:2f:
cf:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:90:62:50:3F:D2:08:46:6F:74:EA:9A:F8:76:70:A8:7D:86:A7:36
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9174880/846EC0401D6A11E2BB7014A808B02CD2/h5BiUD_SCEZvdOqa-HZwqH2GpzY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:7fa:3::-2001:7fa:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
94:6a:21:4f:de:c5:8c:f2:49:ee:4d:1d:6a:2b:2d:b3:c5:d8:
7f:f7:fe:8e:6a:bc:2d:fe:73:05:bc:36:77:0c:b7:fd:91:9e:
3f:4f:b0:6e:b8:e4:76:fc:27:1f:a0:a0:b0:81:25:d3:b2:c2:
0a:17:a0:9a:6a:71:d3:c0:4e:09:0d:ea:09:01:53:1d:33:c6:
62:b8:52:ca:06:18:5f:64:71:73:87:ac:4a:c5:fc:eb:c8:78:
c1:6a:45:ac:6e:a4:d3:70:b9:c3:28:f7:4d:6b:45:3e:aa:91:
e5:54:56:01:5b:f1:5a:ec:00:6c:60:c6:db:58:16:20:88:05:
7a:55:1d:45:20:b6:7b:f5:19:34:44:90:a7:14:21:b6:65:4f:
1e:05:b3:46:3a:86:23:3e:74:b0:64:a2:67:f1:da:39:73:54:
5a:66:37:f3:d0:a8:7a:d9:a2:c5:5a:f7:be:bc:be:bc:b2:64:
df:cb:0a:fe:6f:a5:b8:26:a7:e0:bf:06:53:9e:e2:e6:98:a3:
38:59:cc:b2:6b:d4:12:25:e6:36:60:7b:c6:83:87:d9:a4:57:
a6:90:b7:cf:6a:c6:98:ab:15:9d:6f:4f:e0:7b:44:f7:da:ff:
56:06:aa:2b:c1:98:80:50:b9:25:71:1b:84:4d:2b:69:1b:40:
e4:64:28:68
-----BEGIN CERTIFICATE-----
MIIGCzCCBPOgAwIBAgICShswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjUwMTI5MTYwNDE5WhcNMjYwMzMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE3NDg4MDExMC8GA1UEBRMoODc5MDYyNTAzRkQyMDg0NjZGNzRFQTlB
Rjg3NjcwQTg3RDg2QTczNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AM/MgNtOGk7owdBFX7+hYfOXm1azoQNnG5Ih7VQ4CLRCVS6zOPXvnfjJU73YS3mh
h269BdSmNfdHy59SwYjCbWNWwHx/tdkl4fGN6iohN+SjOpYl/sko5W14vlKBGcp/
yZstD7BvffhANG2ILakOFGPBgw9eOJbdbqjhlUwPMmJZ8YQDV6cu5+AQMM0wZy7H
HjXgG8L6+Z8FJgKEJNwkcqSxuq60G+LF0eHyWJqpKs8EdM9sL2dYz+hTlrultxUY
klXuJGsLfQWsnKrynCRQ7snyIQlBCH5AYXhgHV+1AiAmBtX17cM0yJr97gzK7pPa
9SuI0aej7nmkeBbzEkovz6MCAwEAAaOCAwEwggL9MB0GA1UdDgQWBBSHkGJQP9II
Rm906pr4dnCofYanNjAfBgNVHSMEGDAWgBQM/Od4V/zwHznZmmK0qmLmFZ52+DAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2
MTFFMkEzRjI3RjdDNzJGRDFGRjIvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZn
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9EUHpuZUZmODhCODUyWnBpdEtwaTVoV2VkdmcuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NzQ4ODAvODQ2RUMwNDAxRDZBMTFFMkJCNzAxNEE4MDhCMDJDRDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc0ODgwLzg0NkVDMDQwMUQ2QTExRTJCQjcwMTRBODA4QjAyQ0QyL2g1QmlVRF9T
Q0VadmRPcWEtSFp3cUgyR3B6WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAtBggrBgEFBQcBBwEB/wQeMBww
GgQCAAIwFDASAwcAIAEH+gADAwcAIAEH+gAEMA0GCSqGSIb3DQEBCwUAA4IBAQCU
aiFP3sWM8knuTR1qKy2zxdh/9/6Oarwt/nMFvDZ3DLf9kZ4/T7BuuOR2/CcfoKCw
gSXTssIKF6CaanHTwE4JDeoJAVMdM8ZiuFLKBhhfZHFzh6xKxfzryHjBakWsbqTT
cLnDKPdNa0U+qpHlVFYBW/Fa7ABsYMbbWBYgiAV6VR1FILZ79Rk0RJCnFCG2ZU8e
BbNGOoYjPnSwZKJn8do5c1RaZjfz0Kh62aLFWve+vL68smTfywr+b6W4JqfgvwZT
nuLmmKM4Wcyya9QSJeY2YHvGg4fZpFemkLfPasaYqxWdb0/ge0T32v9WBqorwZiA
ULklcRuETStpG0DkZCho
-----END CERTIFICATE-----
Generated at Fri Apr 4 23:19:15 2025 by rpki-client