Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer
File: OoeHHjuuZe3i8xuxrVxZu3p0q90.cer (raw, json)
Hash identifier: LCta+rhr0ec3fEdP/KxpEgwXDRMcy08qSYl9p5ys+vc=
Subject key identifier: 3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6A7D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 30 Aug 2025 22:20:53 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: IP: 160.30.108.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Sep 2025 03:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27261 (0x6a7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 30 22:20:53 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91B87FC, serialNumber=3A87871E3BAE65EDE2F31BB1AD5C59BB7A74ABDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0b:e4:21:55:17:8b:45:c8:e0:45:88:b4:bb:
c8:b4:62:ad:9f:32:09:ce:8f:c8:0f:72:09:42:37:
b9:a3:15:02:c3:7e:ff:f0:48:3b:6a:5e:31:0c:7c:
b5:a2:34:58:73:9c:47:bc:8f:8e:74:98:8e:4f:cb:
51:ec:74:aa:6a:28:87:3b:79:6c:01:61:a7:85:7e:
54:f5:6c:b4:ab:38:84:26:b6:ca:df:6a:19:a8:c2:
3e:b9:da:2f:0a:87:fc:f1:c5:7f:36:1e:d8:68:cf:
19:ec:d1:53:ca:8a:3a:3d:10:c0:73:17:40:af:c7:
82:15:a9:29:5d:40:e6:4f:d4:91:30:1f:62:f2:8d:
72:3e:d6:e2:22:56:23:1d:fc:63:82:2c:06:a9:08:
1d:89:a5:ab:27:61:26:03:b2:3f:99:a9:c6:73:e8:
21:bb:75:96:5a:40:80:cf:46:10:05:1f:c1:65:08:
e2:63:9e:fe:ed:4e:33:3f:c4:09:fa:fa:cd:76:d6:
8d:2f:ff:0b:5b:41:1e:27:ac:4f:62:2a:96:16:ee:
57:da:cc:82:85:e4:25:b8:82:ef:4b:4d:58:62:54:
38:23:16:b8:5c:d9:c0:91:68:d5:a6:b3:2d:87:4c:
e0:74:85:01:85:d4:52:35:4a:57:1a:72:89:b3:04:
02:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.108.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:d0:7d:57:63:cb:cc:8f:bf:2e:e9:2b:fe:11:e6:ac:c4:3d:
33:ec:ef:11:b7:c5:58:24:95:a2:cd:04:c0:1b:28:be:10:9c:
84:50:8d:c8:00:65:99:cb:2b:5f:5d:50:ea:68:a7:c6:9b:5c:
0e:53:a7:37:1a:a4:a9:33:15:01:f0:17:df:b3:11:ae:8d:49:
53:45:b9:93:02:4e:0e:da:dd:f6:9b:ff:9e:ac:68:bc:b8:87:
4b:b5:e4:d1:b3:6d:17:16:60:1c:de:28:3f:9a:b3:8b:f3:ca:
34:e0:ae:ca:04:77:27:22:cf:02:60:16:e3:7a:92:d7:67:8a:
65:f1:85:75:b9:d4:a8:7f:0f:dd:d9:71:9b:31:b1:5e:40:bc:
75:a4:9b:7c:bb:28:6b:61:ae:4e:62:e9:97:db:96:af:72:b8:
a9:99:6d:f5:02:01:7d:36:a7:12:39:80:2e:8f:4e:d8:f1:c1:
40:a3:3a:10:4f:5e:b0:ac:e6:15:f3:df:df:1d:bb:37:cf:c5:
e2:3b:f5:0b:39:dc:eb:cf:f5:3d:ad:5e:6c:03:51:52:f8:0d:
a3:a6:d1:4c:ec:c5:42:af:e7:c4:09:65:e2:c6:4d:ca:9d:a5:
ca:4e:f1:e0:b9:a3:77:13:04:20:e4:4e:a0:40:a8:30:ea:c8:
60:80:3a:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 4 12:30:58 2025 by rpki-client