Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer
File: bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer (raw, json)
Hash identifier: 9VRL+Y29jlv+TzjOiQzUwgj9HEmqn7OjkgywwYHr7G4=
Subject key identifier: 6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6AA3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Sep 2025 14:51:18 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: IP: 148.182.0.0/16
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Sep 2025 03:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27299 (0x6aa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 2 14:51:18 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A91DDDA7, serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:89:53:de:3f:52:f7:f9:36:cc:1e:6a:a8:f6:
6f:aa:64:eb:b6:d0:87:1c:52:18:10:e7:c1:72:b9:
ad:25:6e:66:8b:79:5a:1e:31:de:40:a4:87:0c:d4:
1d:34:85:2f:65:3b:97:9b:a5:74:02:42:2f:4f:ee:
98:e4:47:17:36:c3:05:12:47:71:17:3e:d3:88:4f:
c2:8e:2d:e2:1f:4a:bd:63:44:bd:ea:b7:66:a5:2b:
62:a6:07:34:a0:c9:06:98:7d:7f:23:21:55:ba:25:
d2:e9:0d:76:20:cb:28:9b:88:a6:5c:36:c4:53:3f:
df:b5:f1:81:5b:86:72:c7:51:01:c9:22:08:51:2b:
66:33:84:a8:89:a8:c9:53:6d:74:fc:4f:2f:f1:6f:
c9:13:e4:08:7c:19:f7:99:3b:e4:64:97:70:bc:1f:
8f:e2:de:35:98:36:e1:b1:12:32:86:5f:07:89:f1:
5a:a7:0a:15:9a:52:58:e5:41:1b:5a:42:c7:d3:b1:
d8:a4:e7:84:57:8b:c5:8f:93:f5:6c:c8:e6:c4:45:
b0:9d:c6:7d:62:55:34:b3:03:6c:0e:eb:25:e2:9f:
e5:58:a7:bd:f4:9a:2e:8f:43:7e:6f:55:87:0b:da:
46:d3:15:e6:32:ba:2c:c6:d6:be:7a:d9:ab:df:0c:
bc:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
148.182.0.0/16
Signature Algorithm: sha256WithRSAEncryption
71:ce:7e:53:29:da:76:a0:99:f5:19:a8:ed:85:c8:21:85:21:
e3:1d:fc:a4:7e:13:47:5d:0a:c7:ca:65:89:d6:2a:27:7d:2b:
64:74:b1:e0:6e:91:4b:64:27:8f:51:1a:62:1d:9c:9e:e8:e5:
2b:0a:e9:f0:23:ec:76:70:c8:5b:9c:38:b3:48:a9:4d:15:4c:
e4:a8:7b:6b:98:6d:2a:d1:86:ca:61:aa:78:32:ca:f5:b7:87:
ac:1c:3e:a0:cd:f7:15:cc:62:8d:16:a4:10:a6:65:d2:7e:8a:
17:7c:79:0a:ce:c3:c9:84:f6:6c:ff:3f:65:72:15:be:50:69:
b9:f7:d6:4c:71:51:4e:34:76:d1:12:a1:15:36:2e:10:2d:c8:
e0:31:65:70:8e:44:db:fa:c1:34:cc:16:94:db:05:9b:71:85:
93:22:e2:ad:df:e6:b4:62:74:35:33:52:89:b5:26:53:7d:a6:
22:7e:64:3f:8e:46:2c:13:b1:80:03:dc:c8:ca:77:f1:7c:e0:
22:38:69:a5:5a:8a:d7:0d:8f:78:3d:01:58:ae:f2:24:7d:97:
13:72:62:7e:0e:74:7f:9d:d1:e2:e8:2d:3d:c4:32:2b:a1:79:
95:1b:f9:8f:2c:d1:69:7c:4e:4a:9a:5a:90:75:46:4a:17:c0:
d3:cf:b5:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 4 12:27:07 2025 by rpki-client