Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer
File: AtoTJ_UsQCOjghrIeFDJF9joNSc.cer (raw, json)
Hash identifier: hLQnUMy4dh0q/k51VI9yvUhxN92glzZZnbId6GuJ+44=
Subject key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6AAA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Sep 2025 20:25:31 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 160.30.208.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Sep 2025 03:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27306 (0x6aaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 2 20:25:31 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A918DB7E, serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:95:07:ec:cc:4f:33:0b:ad:ad:fb:d1:96:93:
29:42:3a:2f:27:aa:16:e0:cf:96:34:1c:1e:ae:ed:
cb:50:e2:24:45:01:34:53:96:77:b8:10:cc:0f:a5:
e2:aa:4a:19:4d:e0:de:7e:19:9c:6f:c9:02:05:9b:
40:83:3a:cd:ff:1c:5a:73:98:ba:08:aa:c5:07:09:
2d:3a:cd:f5:9b:34:83:50:54:a6:14:e6:25:eb:0a:
ea:eb:fb:c6:34:04:64:05:49:7e:d6:81:f2:c4:da:
bd:28:3a:03:1d:ca:93:3d:ea:86:4a:38:39:c2:85:
33:ee:27:6a:5e:40:47:34:91:5b:a3:f8:39:4c:7e:
ab:97:b5:fe:ee:a6:65:db:82:bc:5d:dd:78:a8:01:
34:49:da:61:99:0c:e1:08:e2:aa:b6:43:3c:82:2d:
1a:9e:ad:0d:d2:0a:91:2a:bd:7d:eb:96:16:47:ae:
95:b7:c9:a7:d3:b3:b9:b5:7a:64:01:12:d5:50:de:
ff:ce:b5:c8:37:5b:6d:4f:88:d0:f0:6c:35:ac:2d:
c0:d6:82:0a:79:87:21:35:ba:6a:4f:3d:5b:23:08:
22:64:53:c1:6c:25:51:61:06:c3:dc:1a:f0:4c:bb:
69:e3:be:f2:08:3e:ca:97:52:29:80:33:7c:f8:44:
28:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.208.0/24
Signature Algorithm: sha256WithRSAEncryption
71:9c:bb:ef:7f:38:f3:3d:90:51:aa:81:18:4b:fa:65:1c:86:
11:6c:b5:94:b3:08:27:e3:60:6a:c4:ec:ab:1f:03:0b:6a:f2:
91:ea:07:a2:8c:61:3f:a4:5a:72:28:db:79:1f:4f:62:53:fa:
86:6a:1b:9a:c6:19:da:49:37:17:9d:ca:db:01:60:20:64:8c:
1f:ae:7c:18:69:c8:74:bf:6e:c0:7c:f7:ff:38:36:48:ad:fa:
c3:fd:84:23:3b:41:7d:e3:bc:9c:90:57:fc:f4:8b:f0:59:37:
76:89:73:76:b7:e8:1f:ca:cf:0b:0b:35:44:a9:eb:c6:ee:7b:
c9:32:91:6a:9f:73:f5:8f:83:a0:e6:8f:54:72:29:91:17:79:
28:63:d6:a0:23:40:2c:f4:66:11:5e:bb:21:0e:f3:21:1f:20:
bf:c5:5f:40:56:7e:dd:1c:66:15:5a:e9:86:e8:7a:05:8f:65:
14:06:21:93:05:62:89:95:83:89:a6:7d:f4:f0:44:38:b0:4a:
2e:87:6c:6a:d2:19:ab:e0:91:98:ba:a6:67:ca:93:cd:68:54:
0d:5c:af:8e:95:61:9a:c5:6e:72:39:a6:36:ba:a8:00:d4:cd:
68:1f:bc:43:8b:a0:51:45:c6:f1:2e:26:fd:d8:c3:8a:fd:d6:
c9:3c:58:ef
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICaqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjUwOTAyMjAyNTMxWhcNMjYxMjAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE4REI3RTExMC8GA1UEBRMoMDJEQTEzMjdGNTJDNDAyM0EzODIxQUM4
Nzg1MEM5MTdEOEU4MzUyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMqVB+zMTzMLra370ZaTKUI6LyeqFuDPljQcHq7ty1DiJEUBNFOWd7gQzA+l4qpK
GU3g3n4ZnG/JAgWbQIM6zf8cWnOYugiqxQcJLTrN9Zs0g1BUphTmJesK6uv7xjQE
ZAVJftaB8sTavSg6Ax3Kkz3qhko4OcKFM+4nal5ARzSRW6P4OUx+q5e1/u6mZduC
vF3deKgBNEnaYZkM4QjiqrZDPIItGp6tDdIKkSq9feuWFkeulbfJp9OzubV6ZAES
1VDe/861yDdbbU+I0PBsNawtwNaCCnmHITW6ak89WyMIImRTwWwlUWEGw9wa8Ey7
aeO+8gg+ypdSKYAzfPhEKCsCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQC2hMn9SxA
I6OCGsh4UMkX2Og1JzAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OERCN0UvOUMzRkVDREM2NERDMTFFRkIzMUVBODM5QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThEQjdFLzlDM0ZFQ0RDNjREQzExRUZCMzFFQTgzOUM0RjlBRTAyL0F0b1RKX1Vz
UUNPamdockllRkRKRjlqb05TYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAKAe0DANBgkqhkiG9w0BAQsFAAOCAQEAcZy773848z2QUaqBGEv6
ZRyGEWy1lLMIJ+NgasTsqx8DC2rykeoHooxhP6RacijbeR9PYlP6hmobmsYZ2kk3
F53K2wFgIGSMH658GGnIdL9uwHz3/zg2SK36w/2EIztBfeO8nJBX/PSL8Fk3dolz
drfoH8rPCws1RKnrxu57yTKRap9z9Y+DoOaPVHIpkRd5KGPWoCNALPRmEV67IQ7z
IR8gv8VfQFZ+3RxmFVrphuh6BY9lFAYhkwViiZWDiaZ99PBEOLBKLodsatIZq+CR
mLqmZ8qTzWhUDVyvjpVhmsVucjmmNrqoANTNaB+8Q4ugUUXG8S4m/djDiv3WyTxY
7w==
-----END CERTIFICATE-----
Generated at Thu Sep 4 12:29:39 2025 by rpki-client