Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.cer
File: 7OLgFgFhtvd_x0l2-n1Gw-QjLe8.cer (raw, json)
Hash identifier: a4WsfpoVLAjUzqQhLRybw+sCOYYXXq7s3pPsQdoItqA=
Subject key identifier: EC:E2:E0:16:01:61:B6:F7:7F:C7:49:76:FA:7D:46:C3:E4:23:2D:EF
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 67BE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 06 Jul 2025 14:32:31 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: IP: 160.22.228.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Jul 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26558 (0x67be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 6 14:32:31 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A916DB72, serialNumber=ECE2E0160161B6F77FC74976FA7D46C3E4232DEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:90:25:2d:7a:48:53:0f:f9:31:af:6a:54:77:
03:d6:43:48:27:bb:2d:e8:97:d6:1c:06:6b:03:07:
04:8f:bc:23:a1:5f:49:46:80:73:87:e4:01:c5:35:
e5:84:72:8f:4b:29:9c:8f:db:66:33:f0:df:9f:8b:
e8:69:ee:0f:ab:00:4c:92:b9:5b:60:f4:c4:4f:00:
ff:30:f1:e1:21:6d:8b:41:d2:cf:38:83:bf:67:9f:
73:79:86:5b:00:e1:20:5b:90:52:a6:41:ce:73:90:
ff:55:a6:be:64:b7:4d:10:e0:36:e6:ca:82:43:05:
31:aa:16:14:9a:1e:7f:1a:a8:c0:57:bb:64:7e:8b:
c9:42:7a:ce:0b:55:a9:49:e5:1f:e7:63:7d:8c:4f:
11:3e:49:9c:f5:aa:aa:19:e7:8b:54:a0:7a:b2:87:
ae:7d:f9:af:18:b0:fa:fe:43:24:07:3d:66:21:5b:
7a:51:d4:19:70:27:98:53:70:95:cb:69:76:b4:ed:
c3:c1:34:8f:5c:97:6a:e6:4f:ed:db:10:0a:86:cb:
28:a3:07:14:64:9d:2a:92:bc:a4:7f:52:1c:89:bd:
4e:ab:6a:78:d9:8f:6f:72:8e:94:c2:50:42:34:99:
b0:2f:d6:aa:6a:f4:aa:f7:07:cb:c6:b7:cf:63:23:
2d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E2:E0:16:01:61:B6:F7:7F:C7:49:76:FA:7D:46:C3:E4:23:2D:EF
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.228.0/23
Signature Algorithm: sha256WithRSAEncryption
42:39:98:7e:89:c2:6f:b0:47:db:b1:d4:e6:55:96:98:b5:91:
43:55:2f:03:8e:c1:b4:4e:61:11:24:0b:d9:82:12:7a:8b:3a:
2b:dc:9e:be:08:06:54:2a:f4:20:9d:24:15:17:2b:a9:67:27:
f2:cc:39:f0:de:08:1e:78:51:3a:c0:a8:d5:88:7a:4a:01:38:
95:06:41:c7:55:0f:9b:9a:4f:55:e4:bb:55:90:fd:ae:99:71:
c6:ea:c9:3d:fd:83:24:8a:de:f6:fa:f1:d8:94:35:a8:c1:e0:
d5:46:08:f5:69:a4:5b:98:ee:bb:e5:1b:a6:28:39:9c:07:23:
99:4d:22:1f:f6:69:05:c2:03:f4:1f:3a:2e:61:58:1f:9a:3a:
8b:ff:6e:fe:50:18:ac:36:5b:0a:9e:c6:be:3f:f9:f4:31:b7:
2f:1b:38:78:24:85:5d:c9:dc:52:52:6c:67:ac:a6:11:46:4a:
66:95:b7:22:d1:70:2c:a8:66:81:12:81:5d:9e:a1:ab:3e:c9:
08:d3:f9:6c:4c:11:b0:ec:41:cd:40:89:13:c4:d7:ef:21:56:
5b:3b:07:16:af:98:55:38:9c:16:47:bc:a9:1d:bc:e8:4a:8f:
56:7b:d3:0b:a4:c9:07:53:3a:7c:df:72:d2:ca:dc:dc:7e:9a:
72:8f:67:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 15:54:29 2025 by rpki-client