Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer
File: jdQUSFkXzUyAFnvaGdcklkawZyU.cer (raw, json)
Hash identifier: sZOEG11PnCTvLPLpSb+JT/F2onDYh19VmoONzEsA820=
Subject key identifier: 8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6A76
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 30 Aug 2025 17:01:55 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 160.187.18.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Sep 2025 03:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27254 (0x6a76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 30 17:01:55 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91777B9, serialNumber=8DD414485917CD4C80167BDA19D7249646B06725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:98:4a:35:ba:e3:fa:58:e6:28:53:e5:79:8a:
e6:52:dd:28:4d:ee:db:6a:50:bb:d7:bb:4a:df:d9:
35:9d:0e:6a:4a:ce:54:d6:10:86:4a:70:95:74:f0:
72:ab:1e:2e:87:58:04:20:0a:0f:a7:25:09:0c:8f:
b1:7b:7f:c1:fc:99:d1:1b:6c:60:9b:04:23:33:8d:
20:19:4a:89:aa:39:13:8f:39:f6:0d:6f:72:c3:96:
1e:60:d1:ee:94:fa:0d:98:06:77:da:0d:e9:f6:d1:
4a:54:4f:43:8c:cf:14:f4:73:c0:44:80:9f:f5:c6:
11:11:3a:21:6f:e8:37:1a:48:73:2a:5f:3b:e1:b0:
f2:ff:f3:f5:55:84:bf:1c:3d:a4:3c:57:af:ea:c4:
55:96:6d:75:3e:f8:06:59:e5:e3:fa:2e:bd:83:47:
0a:4e:a3:bf:78:8d:8b:50:5e:20:fe:79:2f:b3:bc:
50:ec:96:bd:33:22:e5:41:fc:4c:c3:ce:e2:01:63:
12:42:b6:63:c2:22:eb:81:d4:a9:19:c9:cf:67:d3:
fb:49:46:7a:45:a0:03:99:4f:d5:44:c7:f5:2a:fb:
54:fa:31:a0:d6:06:27:2a:7e:40:36:6b:03:fb:c8:
9a:2b:22:a9:f4:5f:c3:a0:ad:40:ad:30:a3:d7:95:
39:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.18.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:8d:66:1b:fb:20:77:7e:72:6c:46:74:05:6b:82:ed:b6:f3:
07:db:62:ae:5b:ec:34:e6:45:80:70:ad:52:a6:68:d2:e1:b9:
32:51:54:0d:68:df:72:09:1d:d9:3a:22:ad:ae:30:23:77:88:
16:6c:71:59:fa:58:27:93:b2:a3:ed:97:9e:13:77:e0:a4:5e:
9e:c8:b5:5f:49:68:f9:48:9c:ae:10:9f:d3:22:17:43:a8:7d:
c1:05:b3:23:8a:1a:b0:2a:ac:13:a1:75:a3:c4:02:6f:21:7d:
9a:2c:08:ec:9c:10:91:10:3c:be:75:cb:ef:7b:55:8e:90:e7:
f0:49:40:5d:09:08:66:a9:87:e6:7c:06:cb:4c:de:7c:1a:d7:
b7:44:0e:de:bd:35:9d:a7:bd:3d:40:15:52:4a:fa:75:b0:d3:
e4:3c:05:55:aa:53:6d:2b:84:cd:81:a9:aa:ae:29:0c:96:6d:
4a:a6:f2:d0:15:64:b1:2a:72:7f:00:f9:00:ad:cf:4d:59:a1:
64:9f:f1:8e:29:36:bb:3a:fd:4e:21:7e:36:5e:bb:52:12:de:
78:3f:2e:a1:50:2a:71:8e:eb:57:58:2f:50:d3:87:58:71:40:
2e:89:f7:bd:a8:d7:4d:56:88:a8:53:90:7d:f5:5b:c1:06:3a:
55:9f:73:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 4 12:28:06 2025 by rpki-client