Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GhajkdMlFwt7hcS_x4VaF300e24.cer
File: GhajkdMlFwt7hcS_x4VaF300e24.cer (raw, json)
Hash identifier: y9BZWzM6ZsdUDD1foIGAPfqws+EPv/gVQ4/jyn2+kgk=
Subject key identifier: 1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 67F5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Jul 2025 11:29:14 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: IP: 160.30.16.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Jul 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26613 (0x67f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 10 11:29:14 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A913B510, serialNumber=1A16A391D325170B7B85C4BFC7855A177D347B6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:19:9d:6b:39:b7:f1:6b:af:0c:64:30:ee:5e:
a9:5b:14:41:b1:e8:69:c5:03:b2:72:44:b5:c4:26:
6c:61:81:8a:bf:04:65:bd:0b:58:eb:0b:e3:88:b2:
ea:28:00:1a:ca:3d:b0:fa:f0:77:0f:44:87:9f:2a:
0c:95:ad:e5:81:00:3f:9f:d5:4c:bc:ac:cf:cb:79:
3d:5e:3d:fa:f9:96:da:e7:04:64:fd:41:0c:a3:bc:
be:d1:c6:8b:b6:71:29:4e:50:0c:a1:a2:bc:82:2d:
7d:80:4a:0d:e1:02:d8:be:4a:00:04:d2:5d:37:88:
8c:6c:9c:8b:92:90:7c:f1:83:dd:8a:e2:f0:5c:cd:
6b:82:84:bd:cc:3e:0e:ef:55:b6:4b:1f:13:1c:2c:
75:ee:4a:c4:aa:aa:13:8e:e4:d2:90:41:6b:3d:16:
56:7e:aa:44:75:07:96:2f:af:81:7b:b9:d2:48:82:
d5:97:d3:26:a3:36:a2:76:c8:aa:47:c0:0e:2c:8f:
b0:8d:f6:02:c0:90:96:63:c9:5d:07:22:db:70:f3:
b2:14:26:21:24:f7:2f:d7:57:8f:c5:43:21:dd:50:
a6:1a:6e:17:7d:73:6e:72:8d:9a:6c:41:e8:13:72:
b5:e3:fa:8e:13:80:6a:a1:fc:9e:16:60:82:f1:c9:
fb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:16:A3:91:D3:25:17:0B:7B:85:C4:BF:C7:85:5A:17:7D:34:7B:6E
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B510/1882D0E65D8111F091226E31C4F9AE02/GhajkdMlFwt7hcS_x4VaF300e24.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.16.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:fe:1d:e5:95:40:ac:b6:25:5a:bb:92:e0:1b:e9:56:66:d5:
f3:92:10:33:55:42:9f:52:1a:d4:6a:85:ca:a6:3e:20:5d:a8:
b2:fc:33:15:83:18:24:2f:76:bf:79:7a:a9:6d:0e:b4:b9:11:
a6:9d:b6:90:e5:47:75:c2:fa:24:a8:82:39:8a:e7:be:51:bc:
70:0e:29:18:ce:05:d6:54:5c:9c:69:18:71:61:af:cf:4f:2a:
ce:43:11:a8:ab:ba:9e:f3:c8:40:84:a9:19:88:c7:c6:8a:73:
9b:2a:78:e8:99:7f:c1:0d:89:ae:ae:de:39:11:fb:6f:0c:d8:
6c:a5:d0:c0:25:81:d1:0e:48:34:bc:4a:9a:e9:34:7d:6b:3f:
63:92:c1:28:fe:28:9b:48:c6:1a:a1:e5:54:95:89:8d:79:51:
4a:b5:93:8b:6c:03:44:03:59:69:f5:66:86:d3:70:4a:39:53:
56:a2:d5:b0:51:67:c6:c4:25:24:ae:9a:b8:ec:78:97:97:ee:
da:a0:a3:dc:34:4e:9c:ed:6a:4b:6a:f3:f8:72:fa:ff:e1:36:
02:f3:10:aa:d9:c7:f9:67:4d:8d:7e:b6:af:3a:7b:83:a0:74:
d6:c8:f1:8b:1b:a8:c7:79:ba:d4:ff:d7:76:8d:38:6f:4e:27:
20:e6:67:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 16:08:41 2025 by rpki-client