Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/e5ztyDKAKKdFbpxBS7d9r-vOdl8.cer
File: e5ztyDKAKKdFbpxBS7d9r-vOdl8.cer (raw, json)
Hash identifier: +3CM7H5xn4MrcgGq6HwW30EtN1xw5jagVFiYSseLyK4=
Subject key identifier: 7B:9C:ED:C8:32:80:28:A7:45:6E:9C:41:4B:B7:7D:AF:EB:CE:76:5F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6A46
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/e5ztyDKAKKdFbpxBS7d9r-vOdl8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Aug 2025 14:56:59 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: IP: 161.121.128.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Sep 2025 03:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27206 (0x6a46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 26 14:56:59 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A916D36A, serialNumber=7B9CEDC8328028A7456E9C414BB77DAFEBCE765F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d2:99:e3:e8:9e:3a:55:3d:3c:48:b0:4c:3f:
96:b0:0f:dd:31:9b:8e:76:29:db:6d:01:bc:9c:8f:
15:75:1b:31:5b:30:ea:1e:b1:2e:c8:69:4a:70:c1:
57:18:e7:64:a3:f3:5d:e4:1a:6e:a9:4e:1a:fd:d9:
ed:41:30:74:10:e5:61:b6:4f:31:64:24:59:97:48:
63:4d:08:67:71:6a:8b:86:c9:2b:c0:81:30:f2:fa:
7b:e1:74:7d:1a:d6:b9:ad:0a:35:5a:65:8b:d3:76:
96:e1:db:fa:a7:15:a5:24:ff:84:4a:e1:2e:7b:ad:
30:10:2d:bb:09:62:8f:51:6b:cd:bf:4d:ea:c1:03:
7d:90:d0:3c:b1:a2:83:2e:71:14:04:ca:bd:5b:5f:
12:5f:25:55:e0:cf:88:ca:3d:92:70:f8:c1:b7:bc:
3f:39:75:76:3e:10:1d:f5:7b:4b:bc:f9:1c:19:e7:
4c:66:fb:74:0c:88:6a:88:82:9d:87:07:81:b2:46:
1f:01:62:e0:4f:55:51:21:29:50:71:0f:78:9c:86:
b8:25:cc:51:97:a1:92:c0:f3:00:37:52:c5:34:03:
d3:1a:d3:49:a7:ca:3f:d3:72:9b:d2:de:04:69:12:
c0:e4:ae:c8:e9:6e:14:26:49:58:8c:10:81:28:20:
b3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:9C:ED:C8:32:80:28:A7:45:6E:9C:41:4B:B7:7D:AF:EB:CE:76:5F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916D36A/C6DD51B4736F11EE917D0334C4F9AE02/e5ztyDKAKKdFbpxBS7d9r-vOdl8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.121.128.0/19
Signature Algorithm: sha256WithRSAEncryption
32:fd:89:6c:6b:b4:82:f3:55:fe:a8:d8:e5:93:ea:5a:60:57:
c2:b7:a2:54:96:1c:87:68:da:5f:70:76:a5:d5:c0:d9:2e:c8:
e8:3b:c3:73:34:87:3a:f8:c5:da:9c:af:36:2d:29:f3:68:c7:
0d:3c:e9:97:2a:6f:b4:42:8b:f4:6e:b6:ad:b3:36:02:67:f5:
2f:a3:c3:26:b8:2d:ce:b2:e4:eb:50:60:0e:e5:13:d6:70:0b:
5c:4e:c7:a5:1f:6a:a0:50:d5:43:20:59:48:4e:f2:21:83:bf:
70:ff:3d:ae:31:29:82:1e:00:ce:99:9e:93:05:de:c5:7a:14:
b4:19:e9:15:0b:e0:04:dd:d1:44:d8:b7:1b:a6:f1:de:2f:16:
d3:3c:2b:58:20:af:d0:e9:e6:eb:a4:e7:81:a4:d7:1c:68:59:
a0:92:38:d1:8d:ef:69:58:64:08:b6:06:98:1b:e6:e1:6f:71:
c8:c1:09:77:60:b2:47:a4:20:9d:1a:e1:f1:23:e4:e8:25:1e:
44:5e:ef:62:3b:f2:af:98:f1:bc:2f:24:22:41:7b:23:e8:d3:
fb:2f:cb:3e:aa:4f:37:b7:99:d0:d7:e4:83:74:1b:ab:b3:e6:
49:a3:b4:bd:27:c0:84:9e:4b:84:68:d9:a6:70:aa:8e:17:a9:
d9:d8:07:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 4 12:27:35 2025 by rpki-client