Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gYu-BREIqaYrBvxp5L-jaX5l4w8.cer
File: gYu-BREIqaYrBvxp5L-jaX5l4w8.cer (raw, json)
Hash identifier: Szw912PF3ayi9FRhyf3BE31WE5BDeaIiADsZhr/DuWo=
Subject key identifier: 81:8B:BE:05:11:08:A9:A6:2B:06:FC:69:E4:BF:A3:69:7E:65:E3:0F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 680F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FCF44/CD6D6C7E5E2011F0ADAA4B6FC4F9AE02/gYu-BREIqaYrBvxp5L-jaX5l4w8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FCF44/CD6D6C7E5E2011F0ADAA4B6FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 11 Jul 2025 06:32:27 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 49385
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Jul 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26639 (0x680f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 11 06:32:27 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91FCF44, serialNumber=818BBE051108A9A62B06FC69E4BFA3697E65E30F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:be:b4:8e:7a:8a:f4:2e:42:20:7e:89:a8:d3:
3a:1b:b8:93:09:9d:88:0a:a6:74:e3:fa:6f:06:72:
23:56:60:84:d7:8a:b7:6a:8b:a2:0a:92:59:f9:f2:
d2:c6:ab:52:48:69:fe:f7:85:53:6a:f0:e6:6c:c6:
ad:11:a9:51:fe:c6:0b:1f:57:39:dc:fa:34:a7:05:
3e:71:e9:c6:74:1d:b9:b2:4e:d2:f1:d3:dd:af:2a:
62:d6:47:ab:da:67:90:4a:f7:3e:ea:2e:0c:f1:76:
fe:83:1c:82:ee:2e:81:53:b5:69:8c:60:cd:fa:af:
33:36:c5:ee:b6:4e:67:82:3d:07:87:63:6e:1e:34:
0d:46:cb:bb:d2:6d:1e:42:cf:3a:24:fa:c8:c7:e6:
80:aa:f6:b7:68:e2:10:c8:fe:5a:ae:62:be:35:77:
76:df:44:11:4a:b0:b4:b9:6a:2d:cb:71:de:ea:93:
c2:88:ef:68:61:6f:31:22:7a:44:33:e8:22:18:8d:
c4:0f:b7:bd:d7:5f:85:61:26:92:61:df:44:fc:5b:
dc:ff:b0:73:62:a5:1d:95:ea:cd:d3:40:23:9f:49:
51:8f:2b:3a:d2:de:8b:91:22:8b:27:04:55:9a:a7:
ab:fd:01:ad:8a:5d:92:a2:0d:47:c6:2d:7b:69:f0:
e3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8B:BE:05:11:08:A9:A6:2B:06:FC:69:E4:BF:A3:69:7E:65:E3:0F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FCF44/CD6D6C7E5E2011F0ADAA4B6FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FCF44/CD6D6C7E5E2011F0ADAA4B6FC4F9AE02/gYu-BREIqaYrBvxp5L-jaX5l4w8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49385
Signature Algorithm: sha256WithRSAEncryption
ac:16:c0:3b:26:99:68:7b:bb:1c:d7:90:65:a9:d3:6c:06:5c:
cc:bc:12:3f:31:4a:b0:b2:6d:6b:79:dd:e5:b3:c8:48:13:bf:
bd:82:11:82:7e:40:c2:e9:10:0e:c4:49:74:f4:9a:56:51:9f:
1e:23:98:66:38:73:d8:75:2a:c7:04:c3:4c:14:57:97:97:8a:
b6:5a:64:a4:c4:03:a6:ad:55:5e:fd:94:4c:10:09:37:3e:d4:
19:73:67:97:cb:e0:d1:2c:d4:49:8d:70:8f:62:6e:6c:a7:99:
e4:a3:3f:86:0b:55:ae:5b:64:4c:58:00:e8:2a:89:21:33:8b:
bc:75:05:27:2d:61:3f:d2:23:02:05:f1:98:64:c8:f6:cf:91:
62:bd:52:85:9b:e6:8d:71:d4:5e:79:b5:ad:0b:46:89:e1:00:
b3:07:60:6a:05:c1:be:95:77:02:74:bd:c7:43:bc:71:78:04:
20:6d:bb:38:a1:60:9a:18:80:cd:d4:ad:2a:ee:9e:56:88:3c:
3d:13:67:c7:fd:3f:ac:04:12:89:cd:14:3b:65:bc:6c:b2:2b:
6e:67:c7:1c:15:79:49:d2:fd:55:3d:ec:f1:3b:f3:8b:16:2b:
ca:0b:6b:80:8c:52:d4:64:5c:f6:93:09:c4:3e:19:17:f3:65:
df:95:08:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 15:33:12 2025 by rpki-client