Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cleSPWdwxWeJGbB8vPqK-LnFBT8.cer
File: cleSPWdwxWeJGbB8vPqK-LnFBT8.cer (raw, json)
Hash identifier: Xv7EsDn0wnUemP+2MAM6/jo4babSczj0wZ7t3Ff4XHk=
Subject key identifier: 72:57:92:3D:67:70:C5:67:89:19:B0:7C:BC:FA:8A:F8:B9:C5:05:3F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6A2D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 23 Aug 2025 06:10:12 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 160.30.234.0/24
IP: 165.101.26.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Sep 2025 03:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27181 (0x6a2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 23 06:10:12 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A91C7175, serialNumber=7257923D6770C5678919B07CBCFA8AF8B9C5053F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:48:b0:b6:76:6c:84:7c:e9:a8:a4:7c:86:99:
fe:8d:73:d0:a7:8f:37:81:83:fb:a9:19:05:15:0a:
01:c2:b4:95:7d:79:03:4f:40:41:30:f3:cb:c7:76:
c2:63:f2:72:bc:e7:8e:6e:8b:06:e6:58:48:19:ef:
0d:26:20:0f:36:de:fe:5d:37:3e:2a:44:31:2f:7b:
83:e0:02:3e:5a:70:cd:1e:32:71:f9:37:d4:b7:a3:
09:8d:a7:38:28:5e:8c:99:6f:03:9f:c8:8a:c6:52:
97:aa:5b:19:f7:75:8a:8b:5f:e0:35:b7:53:ec:18:
53:c1:92:0e:6a:4e:45:e9:87:45:17:6f:ad:57:b6:
a7:36:b0:5d:a3:87:9d:7f:b2:cd:1c:0c:fe:67:38:
cd:c2:c2:63:31:8c:32:e4:79:cd:75:14:09:4a:74:
83:81:b7:9b:f8:43:28:ab:7a:36:27:fe:a9:04:f0:
a4:9a:57:5c:79:7c:d8:0e:d1:fc:fa:b6:ea:0c:3b:
eb:f9:cf:ab:7a:9a:88:8e:b2:c8:28:dc:96:e0:23:
b7:a4:3f:eb:78:f9:0b:34:a1:2b:8f:70:e2:3b:c8:
5d:50:01:04:d9:01:a1:77:23:48:de:d9:36:96:3f:
2d:c2:e5:9c:ce:5c:b9:68:12:19:e9:d8:fd:57:32:
62:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:57:92:3D:67:70:C5:67:89:19:B0:7C:BC:FA:8A:F8:B9:C5:05:3F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C7175/E9A092B868FD11EFA9500187C4F9AE02/cleSPWdwxWeJGbB8vPqK-LnFBT8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.234.0/24
165.101.26.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:4c:82:e4:31:b9:5c:fe:be:d2:9e:1f:db:2c:1a:b0:f5:17:
39:b7:15:74:fd:e1:39:9d:de:f4:cc:c2:b8:14:69:57:83:c2:
10:61:bf:fb:c4:81:a5:d0:27:b5:35:c0:ba:58:73:8e:e8:22:
70:d4:47:5d:bd:fa:db:a3:66:91:16:e9:ec:31:77:f2:33:1b:
a8:14:37:e1:7a:e3:53:b2:02:ed:87:5f:c0:d0:d0:ac:39:63:
37:77:32:bb:8a:4b:4f:77:dc:0c:07:27:91:4d:87:16:0a:b5:
1c:32:85:c5:9c:65:fb:bc:ca:ea:3d:61:df:ec:27:3d:cd:0f:
67:a2:f5:56:f5:dd:b5:bd:e3:32:70:6a:b9:71:7b:ba:76:d8:
6b:80:8d:a4:7b:e9:79:b6:dc:f5:3a:5a:d7:2b:81:c1:c2:d7:
a9:9f:14:be:f6:12:66:db:3e:11:ca:f1:25:4c:c3:2d:af:64:
aa:a4:ec:20:a7:17:50:9e:10:c9:a9:92:56:04:a4:ec:51:0d:
01:51:74:88:37:1c:f5:f4:83:9b:63:c4:08:b8:6a:44:6a:08:
45:a8:51:5d:66:96:9c:85:ff:05:d1:ef:07:e3:c5:b9:73:80:
05:19:d1:55:e6:f9:cd:28:e1:72:08:42:13:41:e2:8d:9c:56:
e7:d4:fb:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 4 12:25:38 2025 by rpki-client