Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/h_pIRIna7X3O5mDHjYe6LMGtqmI.cer
File: h_pIRIna7X3O5mDHjYe6LMGtqmI.cer (raw, json)
Hash identifier: kBjwSIimeKW/YPJKgSkP+n8s4uic6D6fzORL3K77a4k=
Subject key identifier: 87:FA:48:44:89:DA:ED:7D:CE:E6:60:C7:8D:87:BA:2C:C1:AD:AA:62
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 655A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F1962/AEBC08FA371311F0AB0D9E4EC4F9AE02/h_pIRIna7X3O5mDHjYe6LMGtqmI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F1962/AEBC08FA371311F0AB0D9E4EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 May 2025 13:50:17 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: IP: 165.99.88.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Jun 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25946 (0x655a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: May 22 13:50:17 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A91F1962, serialNumber=87FA484489DAED7DCEE660C78D87BA2CC1ADAA62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:40:22:cd:f8:2a:f2:6a:25:97:b5:d3:e1:6a:
7d:49:f5:5f:ce:e3:27:c1:01:07:ac:18:8d:eb:c1:
84:3a:4f:55:1c:65:fc:df:4d:13:99:9d:ee:9a:b6:
a2:5c:e4:bf:94:2f:96:50:78:ff:81:34:9b:2d:5d:
8c:d3:f5:e2:2d:5d:f0:8a:c7:d1:03:98:4f:65:18:
23:c5:3a:bf:a9:eb:b0:ae:91:b9:f0:fa:0f:cf:2f:
e5:cb:b8:d2:e9:a2:9a:1a:98:1e:d8:9c:de:53:86:
2f:45:09:82:4e:a5:c8:b9:c9:12:d8:dd:1d:42:22:
e1:97:59:5d:98:af:f3:d0:b9:ac:7b:1f:3b:0a:02:
71:45:40:39:79:ec:8a:09:30:9d:3c:04:86:36:50:
db:0a:a0:8e:33:69:29:0b:0a:98:a8:58:94:55:19:
d5:cc:fd:1c:2b:d9:14:bd:1b:ac:cc:f1:24:16:90:
d2:46:9a:d1:85:ff:f0:71:cc:3b:e8:15:d0:98:b4:
3c:99:f2:f7:b0:04:b4:2f:a5:23:9b:0d:59:ad:b9:
d2:57:25:f4:0c:5c:4c:6f:5e:21:f0:2b:e9:f3:45:
ee:ee:2c:88:fb:35:b8:b8:26:af:80:79:7e:f4:6a:
ef:03:fd:c8:f8:59:40:67:28:65:80:88:7e:c4:2d:
f9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:FA:48:44:89:DA:ED:7D:CE:E6:60:C7:8D:87:BA:2C:C1:AD:AA:62
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F1962/AEBC08FA371311F0AB0D9E4EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F1962/AEBC08FA371311F0AB0D9E4EC4F9AE02/h_pIRIna7X3O5mDHjYe6LMGtqmI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.99.88.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:61:e2:2a:18:f3:19:04:1c:26:4e:b1:17:e5:c4:8a:50:5b:
a6:d5:26:09:3c:04:39:c0:19:4e:c8:e7:8f:2c:32:30:73:b8:
d1:2b:8f:05:47:01:fa:8c:a2:72:04:90:9d:3d:6d:d7:e5:99:
5e:0b:05:07:62:00:7d:81:0b:9c:aa:be:b3:47:9a:57:6b:9d:
fe:07:55:5d:1a:43:e9:f4:2a:cc:70:88:dd:d6:4e:bf:21:50:
0b:24:6c:e7:89:4f:f0:36:27:f4:4b:06:f8:eb:ed:30:fa:2a:
8e:a3:bb:79:8b:06:55:05:dc:9a:55:14:80:69:c3:c4:3c:aa:
6f:ed:36:60:b9:48:6d:a2:4f:21:3f:f2:46:f0:e1:c0:77:a3:
b4:6e:16:9f:89:ed:71:17:8d:ec:2b:c2:be:20:0d:0d:8f:58:
b5:1b:e5:53:a2:63:92:2c:d6:e0:31:e1:bc:a1:5a:31:7d:21:
14:e4:07:95:aa:02:ef:8f:f1:63:bf:97:e8:c9:d8:9b:e5:fe:
17:0d:eb:c4:a9:98:8c:27:56:ed:20:37:3b:45:87:c2:35:2e:
42:61:ef:8a:c3:24:86:ad:28:cb:0e:4b:83:a9:3c:c7:2a:16:
1e:77:55:18:f4:8a:27:11:8f:36:91:9a:3d:0b:e4:22:33:51:
dd:4a:4f:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 2 06:36:25 2025 by rpki-client