Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSqNF9-Qeng3ZQEqg7eLfLHKJRI.cer
File: QSqNF9-Qeng3ZQEqg7eLfLHKJRI.cer (raw, json)
Hash identifier: xLnBfb4QetAI6VR8ZY37MZMfMeOfyA/6vYVT9PXplCk=
Subject key identifier: 41:2A:8D:17:DF:90:7A:78:37:65:01:2A:83:B7:8B:7C:B1:CA:25:12
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 65D3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D8BB1/51F9F6143D2511F080C48955C4F9AE02/QSqNF9-Qeng3ZQEqg7eLfLHKJRI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D8BB1/51F9F6143D2511F080C48955C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 May 2025 07:11:39 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 160.187.160.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 10 Jun 2025 20:16:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26067 (0x65d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 30 07:11:39 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91D8BB1, serialNumber=412A8D17DF907A783765012A83B78B7CB1CA2512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f2:e2:2c:b9:e4:f0:3b:02:58:83:9c:03:9c:
85:ad:f0:17:b5:3f:58:91:ec:e6:c5:ea:17:52:7c:
70:ce:89:44:3d:f6:bb:4a:7d:df:61:97:7a:65:94:
02:32:94:8d:d7:e9:58:9d:c0:7a:a7:0b:40:c7:78:
2f:cb:99:da:fc:b9:84:a3:3f:a1:19:62:77:db:bf:
78:a4:66:dd:56:c1:aa:30:3a:86:7c:8a:9a:c7:51:
e4:c1:00:61:98:85:5e:21:9b:6c:3d:d3:80:c2:6c:
11:32:d6:64:ef:fd:79:09:39:c0:75:c8:a9:d4:3a:
78:e4:16:bc:63:9a:e2:7d:ac:98:d4:fc:53:0e:7e:
d9:cb:52:f1:d5:02:4f:71:0b:9b:92:31:29:35:3a:
3d:83:a1:25:ab:c8:59:e9:b1:1c:18:53:41:b2:4e:
16:03:dc:41:92:e3:5b:cd:9f:3d:c1:94:ad:5c:74:
5b:9f:82:c6:2e:f2:db:0e:27:db:e7:af:f4:b2:f9:
38:f3:db:26:3d:96:32:a8:a9:9c:6d:6f:14:a7:6d:
ea:4d:d5:42:32:bf:4e:d3:37:5d:a1:aa:ea:8f:33:
05:fc:b5:30:68:6a:eb:ee:c4:56:79:64:45:96:db:
33:1c:0c:c9:f6:37:0f:d1:48:db:b7:cd:75:27:2e:
06:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2A:8D:17:DF:90:7A:78:37:65:01:2A:83:B7:8B:7C:B1:CA:25:12
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D8BB1/51F9F6143D2511F080C48955C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D8BB1/51F9F6143D2511F080C48955C4F9AE02/QSqNF9-Qeng3ZQEqg7eLfLHKJRI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.160.0/23
Signature Algorithm: sha256WithRSAEncryption
bf:36:c7:de:27:04:89:d1:c2:21:28:9c:bb:6b:ee:05:f3:98:
d6:64:86:b6:2a:a5:bb:8e:3e:2a:50:28:aa:64:5a:e3:e6:09:
47:dc:f5:b1:08:b8:cb:71:32:00:0b:54:a8:1e:c7:e4:ce:aa:
58:13:f3:d1:19:08:bd:75:5f:e6:2f:31:61:cb:d8:b2:24:3b:
a3:0e:d2:60:44:a7:aa:6b:97:8e:f0:07:ad:18:94:ed:7e:3b:
b8:83:a4:4c:f3:fd:98:2b:8f:19:73:6d:ef:72:87:a7:3e:62:
a3:37:59:15:19:0d:34:3d:16:a4:10:69:b7:71:5a:2a:8d:25:
72:80:53:d8:27:36:5b:0f:92:a7:00:b0:ad:ef:9b:37:dc:12:
bc:b8:cd:b8:03:3f:66:71:3a:40:25:3d:f1:b2:af:13:95:ab:
2e:12:80:e4:6a:f3:f1:8f:bb:9e:c7:32:3b:25:11:7c:eb:b0:
ba:4c:6a:15:15:d5:e6:a1:28:9c:61:9e:d1:5a:5b:ac:9b:5c:
bd:5a:a7:45:f8:c2:22:9a:f5:96:b8:c8:0c:ec:51:13:09:06:
a0:72:49:34:2c:b1:9f:ca:6e:e1:fb:9d:96:c4:31:f1:67:fc:
c8:d2:fd:d2:19:f3:e8:01:23:49:61:4c:cb:06:e2:44:13:85:
5f:64:fb:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 23:50:21 2025 by rpki-client