Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer
File: b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer (raw, json)
Hash identifier: sIj324hQLrFelEEatiyholF3NgJp7l9XPGiEkiJ7LzY=
Subject key identifier: 6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 653B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 20 May 2025 06:52:52 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.201.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 10 Jun 2025 20:16:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25915 (0x653b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 20 06:52:52 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A918D2CA, serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:22:01:c1:ac:a4:c1:83:d6:78:f3:ba:20:2a:
96:87:45:4e:99:f8:2b:b0:46:3c:b2:f5:99:3f:62:
9f:e5:ff:4d:f6:e7:e8:21:28:b3:54:ba:e8:0e:0b:
49:51:e2:d0:49:3b:08:8f:84:f6:36:25:e6:71:55:
6c:8a:01:58:4d:e5:89:0c:4f:6b:41:f1:da:2a:e7:
f5:43:e8:86:da:63:04:f5:64:3d:de:84:6e:f9:ea:
fc:75:df:ce:63:43:97:e1:86:13:da:18:df:05:ee:
a4:0e:a4:14:c8:d1:34:62:ed:89:5e:35:29:41:ee:
44:a7:25:dd:dc:9a:0d:7c:e4:e0:bb:af:13:b6:db:
15:c8:e7:4b:a1:0a:83:e0:e0:f6:c0:63:c7:e9:66:
43:62:18:af:19:2c:80:4c:cf:25:cc:35:ef:6e:e9:
3a:ec:e6:88:eb:f6:a8:c2:d1:69:c7:bb:1d:63:85:
32:4b:83:85:af:b8:19:9d:4b:ea:e7:99:f3:2c:1a:
2c:3c:fd:9b:60:9d:3c:de:25:f0:ca:78:58:f4:80:
ae:db:e3:14:6b:59:29:ec:e5:03:f1:38:ae:5f:63:
2c:46:82:31:62:c8:4c:0e:7d:87:c1:ee:fe:35:49:
43:31:fa:8f:df:a5:01:f7:32:d5:ab:fc:44:58:e5:
d4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.201.0/24
Signature Algorithm: sha256WithRSAEncryption
70:85:eb:4b:ae:90:ff:f7:53:88:34:28:b2:d1:bf:81:37:86:
4a:31:71:bf:d9:a2:e9:88:6b:d8:dc:74:85:77:b3:21:43:93:
75:41:db:87:74:ed:88:c9:81:b0:63:d6:97:cf:bf:11:81:59:
9b:d4:d9:2a:68:a7:43:65:d6:d2:fa:ec:da:a4:ef:92:13:aa:
68:2b:f3:79:d7:58:a7:00:57:36:f6:1b:69:73:7d:6a:93:26:
a3:5d:9e:92:23:88:54:37:5a:5e:d9:82:15:a0:59:65:8c:ce:
f2:50:8c:48:56:4f:b0:86:3b:3c:d8:ae:51:20:d0:35:a8:d4:
9b:51:f3:6a:60:73:08:1b:05:c2:5c:b9:2a:f5:bb:92:18:57:
bb:da:b7:35:1c:f8:d1:d7:7e:c6:08:49:c2:a5:f6:fa:7f:3b:
5e:64:91:b1:60:b0:74:dc:57:84:1e:30:55:99:d3:1b:08:f5:
64:5f:a9:4e:05:6b:5f:c3:3a:b1:8c:c6:80:d4:d1:28:bf:b4:
3d:7e:3d:2d:d7:c6:8c:f4:7a:fe:b9:45:63:70:41:9a:f6:13:
c3:ee:fe:62:50:cf:bb:e1:a7:f5:52:aa:bb:79:e9:a2:d9:4f:
d9:9b:b8:a7:99:13:8a:b1:c7:48:32:93:8a:5b:d7:01:29:8f:
b9:93:c2:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 00:11:53 2025 by rpki-client