Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer
File: hwGGtlfRGymKhLAkIO504fu1woI.cer (raw, json)
Hash identifier: 7wycJK0s0PsnGS6ot4O0QDrf7qNBJdFYBbJT7RpxcLY=
Subject key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6A8D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Sep 2025 04:53:12 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: IP: 157.15.213.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Sep 2025 03:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27277 (0x6a8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 1 04:53:12 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a0:e9:7e:5f:5b:16:1a:3c:90:18:dc:00:25:
f8:b6:6e:e3:67:42:7e:cd:0a:58:24:c7:e7:5c:5b:
4b:9f:04:c3:46:ef:f6:68:7d:93:58:f1:43:d8:9e:
30:f4:bf:a9:fc:2f:a0:bf:1f:38:4c:98:a9:3e:83:
13:a9:2c:85:e4:4e:2b:be:49:ce:f4:a2:9f:20:85:
54:6f:77:01:97:0e:75:53:03:d6:a1:ed:a3:ba:9d:
f2:60:b6:e8:c6:98:0b:99:19:97:63:de:f3:ab:d6:
65:9b:8c:e0:e7:4f:2d:50:4f:b3:46:7d:e9:fc:10:
54:a7:aa:40:0e:a0:e0:ac:40:1b:e9:b1:5b:bc:d6:
79:fc:3b:ef:6e:b9:e0:8e:54:2d:38:3c:54:7d:0d:
8e:3a:ac:fb:bc:90:21:9c:dc:ef:83:76:a7:67:07:
74:b8:1c:2f:7e:c0:89:ce:8f:0e:27:eb:3f:a4:39:
e6:f6:92:f9:2b:80:af:8f:b7:14:3d:1c:e6:d3:84:
05:3e:9f:df:da:f2:54:b9:2d:5a:99:43:21:3a:0f:
03:de:c5:3b:79:2e:d3:01:a7:cb:79:45:ef:14:13:
fb:75:d8:c1:1b:e4:63:8f:31:9d:99:38:8f:8c:0e:
9b:58:07:55:fc:78:ee:95:46:45:75:fd:a4:1d:9f:
eb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.213.0/24
Signature Algorithm: sha256WithRSAEncryption
39:68:25:cd:f5:69:a4:f0:b3:40:cf:21:01:09:f8:90:d9:c7:
45:9a:72:aa:fa:a8:9a:d6:22:de:65:21:69:4d:74:3a:a0:f4:
3c:71:aa:bd:ba:43:a2:18:08:3c:44:c6:90:58:ed:31:4f:47:
6f:6d:0f:aa:e0:55:37:3a:89:40:43:5a:c5:65:a5:ea:7e:33:
b0:6c:12:7d:24:0e:82:46:b4:89:b4:22:ed:51:40:67:38:bf:
1c:1a:51:89:22:33:69:d9:cc:80:5b:2c:7e:da:54:df:b5:84:
61:70:17:2b:62:f7:d4:4f:42:59:0c:1d:39:74:44:da:f0:12:
09:5d:2d:dc:e1:8e:a1:cc:eb:a6:e4:aa:ef:d1:25:99:ab:c2:
02:1b:cf:1b:1b:01:64:b2:7a:2b:82:fb:b9:17:e0:be:3e:a8:
1a:d7:6c:20:88:81:25:c7:ab:51:91:c8:c2:6f:97:5c:2b:15:
86:51:6c:6d:7d:18:a9:09:60:2a:15:fd:9e:cc:a0:e5:5e:1c:
58:fa:7d:67:c3:0a:67:2b:1f:32:1b:24:38:52:75:a1:ac:94:
d0:15:f7:7a:69:b8:4c:2e:e1:01:a3:fe:18:fd:7e:09:1c:c5:
1a:8d:3b:f9:61:d6:4b:89:48:3a:27:e1:b2:b6:16:64:55:03:
33:f7:f5:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 4 12:23:26 2025 by rpki-client