Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer
File: Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer (raw, json)
Hash identifier: 8eYqtxKS1jEX9/1MmYSaIeGaXPhuad5jC6vECVH6oJc=
Subject key identifier: 43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 56F1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 19 Jun 2024 06:25:09 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 160.22.42.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 02 Jul 2025 06:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22257 (0x56f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jun 19 06:25:09 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9186D9F, serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b4:0c:d0:be:fc:4d:12:4f:ce:b7:06:32:30:
c7:fd:07:51:22:3d:9a:2e:e6:42:a2:3b:8d:e0:b0:
27:76:bf:38:89:4b:45:61:97:11:35:bd:a1:82:79:
b8:44:b8:58:ab:ff:88:bf:40:f3:b9:1d:7d:72:5a:
8d:00:e2:d2:f8:8f:14:f8:ba:aa:77:8a:5f:5a:00:
80:e2:ce:8b:0c:90:d2:a6:51:50:bb:7a:11:f8:b9:
ea:06:33:d7:f2:b1:8a:01:b4:fc:f6:95:41:a0:16:
e4:ad:da:90:04:58:35:e9:ac:f9:4e:28:6a:e3:2b:
c2:1c:c1:20:56:7b:f8:08:c8:ad:8c:87:82:55:a4:
a1:55:ab:8d:dd:2f:a4:b4:db:50:97:01:7f:ce:61:
7d:8a:6f:48:5d:c4:29:4d:0a:a7:14:70:88:17:01:
c0:7a:98:bd:4a:5f:45:34:dd:a8:8b:d3:97:7a:9f:
b2:1a:ff:f8:8e:c6:b8:89:91:79:b5:54:2e:08:a2:
7b:4a:63:c0:da:77:4b:b8:06:61:a9:26:0a:df:5c:
f3:52:20:30:f1:be:c2:53:f9:f7:aa:76:52:5c:d0:
96:bb:f1:f0:0b:f9:4f:84:8e:10:25:6e:a4:ff:2d:
61:d9:18:83:cd:36:b5:1f:28:94:7a:e5:66:18:fb:
a1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.22.42.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:3d:ec:46:88:45:9d:0d:34:b9:c0:f2:b5:ca:1c:84:8b:ff:
a8:f1:a5:b1:e3:b5:23:03:10:ba:5e:91:e5:ac:82:9a:ac:76:
b7:40:cb:1e:b0:95:96:8a:0b:6e:c3:85:ed:b3:31:12:1e:00:
45:12:40:2b:c2:43:7b:08:0d:c4:2d:70:5e:b0:4b:8c:71:97:
b3:ef:3d:1a:5c:58:4a:f2:2e:11:de:8d:a5:4b:6a:7b:f0:95:
2d:8d:9c:0b:dd:e8:78:95:79:90:e7:93:97:f3:3f:72:15:fa:
45:09:a5:71:66:d8:08:78:46:9a:ed:7e:37:fb:b0:65:c8:e5:
c7:ed:66:18:37:6c:ce:55:a6:72:07:a6:61:36:c8:a4:6a:a8:
ad:9c:1e:32:dc:7a:b3:1d:35:75:85:45:35:b6:8b:d1:01:cc:
05:cc:59:8b:fc:36:14:4b:66:a8:84:f9:bb:59:f7:c1:dc:66:
fa:2b:e1:8d:dc:78:fe:95:bd:75:cb:2d:dc:30:f4:23:15:c0:
58:6c:9a:27:5d:0f:d0:56:b4:a0:08:35:18:f5:62:1a:6a:ec:
43:c7:d8:65:92:85:6b:2d:45:e1:b0:e0:6d:77:f3:22:4f:de:
8e:3d:99:b4:14:8d:2d:8f:12:f1:54:e0:90:a9:d4:ab:4d:a6:
00:b0:22:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 25 08:02:18 2025 by rpki-client