Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer
File: 0ypa3AVCwugXwgK-a3KB6GnReJc.cer (raw, json)
Hash identifier: sREMoYyLWY7lTcD+fnCAfaig88kj6qBUZVcBfWhZ7vQ=
Subject key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6A69
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Aug 2025 22:36:36 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: IP: 160.25.224.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 Oct 2025 14:09:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27241 (0x6a69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 29 22:36:36 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:94:20:45:7c:a7:b5:b4:78:fb:a8:d7:47:94:
06:f5:d8:8a:dd:0d:0b:df:2a:6a:7f:75:76:55:1e:
b5:a7:26:22:aa:55:2d:5a:6d:f8:06:3d:41:af:97:
c8:76:46:f4:35:8d:b8:e7:7c:68:58:5b:43:a0:02:
26:42:9d:78:2e:81:ff:11:ea:06:de:1a:e3:16:1d:
bb:96:ba:7c:bc:ca:e2:1c:f0:0a:33:77:57:c9:ca:
2b:74:46:80:12:1b:b8:85:eb:b1:12:82:74:c7:28:
bb:9b:98:9b:aa:5b:35:76:b2:84:5e:5a:18:e4:ec:
94:6e:26:c4:2c:f5:73:16:20:20:f4:63:9e:a5:ba:
fc:10:1c:e6:ee:6c:65:13:a4:ca:33:8a:6b:f6:ff:
b0:a4:cc:95:19:b1:4b:83:84:28:22:ab:99:fb:21:
d2:62:c3:82:41:4b:60:72:cf:37:69:1e:59:25:b7:
46:ec:a1:e2:0e:cf:45:65:62:f0:c5:3f:80:f4:32:
f4:d6:9d:b8:15:f0:31:ce:f7:5f:d5:e0:8d:f0:1a:
a7:b2:5b:1b:c2:63:14:50:0e:07:80:89:30:ee:2b:
e5:61:84:f3:0c:b9:b7:d3:4d:12:90:a6:b2:13:67:
d9:97:18:70:12:5d:8d:6f:16:bd:76:ea:78:4c:d8:
ac:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.224.0/23
Signature Algorithm: sha256WithRSAEncryption
c5:98:dc:b1:18:d0:f7:68:a2:47:74:f3:47:7b:22:81:0c:e8:
ed:56:e2:bb:4c:21:75:4c:2e:ea:32:72:d8:14:71:b1:a0:df:
0b:a1:5f:51:a2:55:b6:5f:a4:21:75:28:e8:32:f8:35:33:02:
fa:63:cb:d3:60:e6:b8:e6:cb:84:ca:6c:df:99:44:e2:41:1d:
83:d7:b7:80:79:72:dd:38:e4:21:69:f3:10:0b:11:ae:6a:2f:
ec:50:96:72:16:93:6b:d4:62:d0:db:ae:2b:2d:47:12:ee:af:
30:c2:aa:72:7f:f5:50:ce:95:71:fb:c0:61:8a:9b:7a:47:42:
c2:6e:d9:92:c0:73:c0:32:d6:87:56:31:a2:05:44:bb:2c:7e:
5a:42:9d:b0:c4:0b:ff:e1:97:b4:14:d1:95:57:94:ce:c4:a5:
70:76:8b:da:05:58:98:fa:2d:e5:2b:19:e5:2d:a8:f1:3e:f2:
8c:6a:12:f4:19:b8:2d:a8:78:93:b5:b3:15:29:d9:dd:10:8f:
84:2f:31:ed:cc:5a:3a:d8:6e:3d:8e:e9:c7:12:49:f8:dd:d7:
c6:04:02:bc:7b:e0:00:26:db:b4:46:09:bc:13:c3:be:af:3f:
de:41:62:02:45:22:fb:c1:0b:25:c1:d9:72:29:58:6e:a7:f8:
8b:75:c6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 18 15:55:59 2025 by rpki-client