Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer
File: F4AJbMkKtq6vCNeasYxUx7d6U6A.cer (raw, json)
Hash identifier: HiC9bNnUBWxzmYhCesqiH1bjrkxtPZ6Z6N3JMfMDZnY=
Subject key identifier: 17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 65A3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 May 2025 01:47:15 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 165.99.141.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 10 Jun 2025 20:16:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26019 (0x65a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 28 01:47:15 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91A4543, serialNumber=1780096CC90AB6AEAF08D79AB18C54C7B77A53A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:03:b4:12:d7:1c:4c:e1:6c:8a:c3:b1:89:56:
39:33:0f:09:35:cc:a0:07:74:97:1d:2b:1e:b9:5d:
c6:87:65:7c:bc:70:f8:88:59:a8:cc:4c:35:2e:7c:
2b:df:87:f5:98:18:4c:94:06:92:56:40:f7:63:f6:
ce:d2:fe:ec:c4:b6:57:e2:5f:d3:82:a2:cc:fb:b4:
72:eb:72:20:50:78:60:59:2c:d2:48:15:f6:3f:4d:
ef:c9:3e:1f:4a:5f:f5:00:b7:06:c0:fe:52:51:58:
03:66:3e:0b:84:ea:d8:3a:c4:f8:25:b6:ac:91:2e:
54:6e:55:26:44:73:a4:8f:7b:1f:f6:a0:3d:0c:d8:
a8:64:52:6d:c1:82:f6:91:6a:8c:d9:6a:c0:7d:32:
b7:94:ee:fe:bd:44:b6:b4:4e:6f:38:2b:f9:6b:d4:
38:11:7f:85:1e:f3:a7:63:af:9f:94:2a:21:30:66:
9e:d7:7b:03:5e:34:e3:ec:7a:c0:d0:c9:9c:3e:51:
e4:99:16:fa:73:96:a3:45:f7:89:ee:df:bd:31:17:
43:a0:96:7b:96:2c:49:0b:80:fe:27:64:ba:f8:89:
95:b6:04:37:6f:9e:64:15:eb:49:e4:cc:57:3f:fb:
d4:af:7f:e8:e5:48:b7:20:a1:51:7e:fa:eb:48:05:
28:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.99.141.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:23:3a:08:2e:b1:6e:48:58:f7:0f:1a:36:33:90:cc:d4:eb:
ca:12:e1:60:22:ab:34:19:e3:b3:23:b9:03:69:a2:38:da:86:
1a:d9:ee:26:7d:29:83:7e:49:2f:d5:11:0f:b1:3d:2a:49:1c:
a3:b9:31:78:dc:8b:86:d2:3c:fb:a1:0a:74:ce:e8:2e:c7:b9:
70:5f:a6:f9:d5:58:5b:25:f5:80:7c:0a:63:0e:f1:62:3d:48:
a1:f3:92:e6:45:0f:fb:67:8b:e0:a8:6f:c4:3f:a0:7d:cd:36:
db:d6:5b:48:99:9e:09:f7:15:22:f7:70:55:0a:b0:8d:e7:0a:
90:bc:b1:aa:e4:2b:79:6e:0b:51:8d:c5:da:c9:2c:3a:55:c0:
85:42:d4:83:d3:9d:c3:97:c7:8e:57:85:c1:47:22:0d:c5:4c:
ce:e6:b6:b6:ea:5f:3c:b9:19:d2:1a:48:da:34:0a:cc:9b:90:
b6:46:84:d6:c4:1b:f6:78:1c:67:a8:d9:10:b6:f2:f5:d5:45:
84:bb:cc:89:1c:ea:6d:d5:af:27:ac:a4:a5:2f:00:ed:03:c2:
bb:62:dd:01:4a:e5:35:a7:2e:87:d2:95:46:fe:01:32:c9:c4:
ba:b8:2f:37:4b:03:0b:3c:2c:fb:14:03:29:06:5a:59:52:78:
e4:a2:a0:65
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICZaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjUwNTI4MDE0NzE1WhcNMjUwODMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFBNDU0MzExMC8GA1UEBRMoMTc4MDA5NkNDOTBBQjZBRUFGMDhENzlB
QjE4QzU0QzdCNzdBNTNBMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AN8DtBLXHEzhbIrDsYlWOTMPCTXMoAd0lx0rHrldxodlfLxw+IhZqMxMNS58K9+H
9ZgYTJQGklZA92P2ztL+7MS2V+Jf04KizPu0cutyIFB4YFks0kgV9j9N78k+H0pf
9QC3BsD+UlFYA2Y+C4Tq2DrE+CW2rJEuVG5VJkRzpI97H/agPQzYqGRSbcGC9pFq
jNlqwH0yt5Tu/r1EtrRObzgr+WvUOBF/hR7zp2Ovn5QqITBmntd7A1404+x6wNDJ
nD5R5JkW+nOWo0X3ie7fvTEXQ6CWe5YsSQuA/idkuviJlbYEN2+eZBXrSeTMVz/7
1K9/6OVItyChUX7660gFKIMCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQXgAlsyQq2
rq8I15qxjFTHt3pToDAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTQ1NDMvQUI3MTlGQ0UzQjY1MTFGMDg3NDJEQTM5QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUE0NTQzL0FCNzE5RkNFM0I2NTExRjA4NzQyREEzOUM0RjlBRTAyL0Y0QUpiTWtL
dHE2dkNOZWFzWXhVeDdkNlU2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAKVjjTANBgkqhkiG9w0BAQsFAAOCAQEAnCM6CC6xbkhY9w8aNjOQ
zNTryhLhYCKrNBnjsyO5A2miONqGGtnuJn0pg35JL9URD7E9Kkkco7kxeNyLhtI8
+6EKdM7oLse5cF+m+dVYWyX1gHwKYw7xYj1IofOS5kUP+2eL4KhvxD+gfc0229Zb
SJmeCfcVIvdwVQqwjecKkLyxquQreW4LUY3F2sksOlXAhULUg9Odw5fHjleFwUci
DcVMzua2tupfPLkZ0hpI2jQKzJuQtkaE1sQb9ngcZ6jZELby9dVFhLvMiRzqbdWv
J6ykpS8A7QPCu2LdAUrlNacuh9KVRv4BMsnEurgvN0sDCzws+xQDKQZaWVJ45KKg
ZQ==
-----END CERTIFICATE-----
Generated at Tue Jun 3 23:56:15 2025 by rpki-client