Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer
File: 07yEKALa0i1cMMKCZffRCL1HjnA.cer (raw, json)
Hash identifier: rD/8EYd3Ib7l7tkZ5gGWfkbDW75R5eP3K96si9oGbV4=
Subject key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 64D8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 12 May 2025 18:06:03 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: IP: 157.15.228.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 08 Jun 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25816 (0x64d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 12 18:06:03 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4e:99:ed:89:ad:93:27:66:d4:24:4b:99:7a:
0a:38:39:39:e0:90:eb:42:2e:ee:53:1c:86:f9:1e:
80:1c:1d:c7:5f:03:88:24:a2:f3:d9:0a:4f:6d:33:
51:c7:b9:2c:da:66:39:2e:c5:65:60:61:12:74:5b:
5e:b5:24:66:fb:a9:df:c0:fe:1f:94:9d:a3:8a:93:
41:f8:62:6c:49:86:3f:33:80:38:1b:65:d2:34:e3:
93:99:d8:2c:ba:b7:92:ba:d9:b4:96:e4:9d:5c:87:
3b:71:88:bb:a3:7f:f4:fe:80:8f:ff:54:cf:03:e4:
9c:7b:e2:87:71:e6:60:4b:e1:e7:67:59:c7:aa:9a:
44:96:4c:63:ce:5b:8c:e2:a4:fd:ee:06:1a:c4:2b:
d4:cb:fd:3d:92:92:fb:3c:37:d0:f1:83:51:c9:61:
a3:31:8a:bc:85:7a:d1:f9:d6:b1:f9:23:17:f9:b3:
69:08:b7:0a:3b:45:5c:d6:32:f9:b1:e8:96:bb:70:
b7:72:02:7f:56:e4:39:04:08:88:80:17:e7:80:fb:
f8:3f:06:38:fa:ef:bc:ff:e6:69:86:1c:8b:15:53:
32:ad:6b:57:df:40:89:9c:22:00:0b:23:fd:a9:67:
a8:56:e8:44:0d:da:14:4a:3c:81:2e:83:22:b9:73:
65:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.228.0/23
Signature Algorithm: sha256WithRSAEncryption
95:dc:d9:f1:2e:f3:15:7e:e4:c0:b7:93:89:dc:a3:ff:a0:7b:
0e:05:fb:75:a1:18:bb:e2:83:99:34:b4:bc:d0:be:b4:bb:dd:
3f:24:a9:1a:d6:01:80:ba:54:b7:ff:07:98:e4:aa:7e:79:49:
c4:b1:d7:d8:e2:02:3f:41:20:9b:39:a7:53:49:74:c8:fc:c6:
95:73:52:c0:85:38:20:cf:6b:3e:c9:42:92:3d:4c:f0:69:06:
f4:cc:fe:20:c0:d8:98:b0:51:5c:70:87:39:c4:77:5e:d6:e5:
25:b2:3e:1d:27:42:0b:a8:70:85:df:09:53:ba:63:3e:6b:df:
d8:ad:4b:01:a8:e6:fa:cc:e0:e5:f6:25:da:54:39:1e:ae:fc:
ef:ac:88:63:0d:5f:06:d7:cf:ac:0b:cc:e8:36:8c:59:b5:e7:
e7:41:d7:1d:0d:18:af:84:4f:d6:7c:ec:53:e0:74:38:60:ef:
45:fc:69:8f:a6:5f:09:ee:05:14:b3:50:86:ce:01:34:7b:a7:
4c:7b:2b:a2:70:8a:57:87:d9:16:9b:09:08:4f:56:16:09:ef:
c5:a5:10:49:44:72:ea:e4:45:e8:1c:a8:69:43:2b:96:9f:c4:
d4:b6:bf:22:bc:99:de:70:f8:e5:bf:28:5a:27:bd:a6:df:35:
a1:37:db:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 1 07:46:37 2025 by rpki-client