Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer
File: pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer (raw, json)
Hash identifier: sI9+S52LQRJFJHEYjYTFxPvaZ/I7w7WXs5cbhRXcru4=
Subject key identifier: A5:54:DF:3D:47:02:7F:FA:F7:CB:8A:16:6F:3E:0A:10:E3:17:78:67
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 687B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 18 Jul 2025 18:20:31 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: IP: 160.25.33.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Jul 2025 04:28:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26747 (0x687b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 18 18:20:31 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A919AD11, serialNumber=A554DF3D47027FFAF7CB8A166F3E0A10E3177867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4b:59:cc:55:7e:8c:c6:8d:d6:c9:16:5f:4d:
29:cc:ac:7f:78:74:49:f4:55:07:28:90:59:bc:3d:
ff:9d:e1:67:1d:d8:c1:45:97:c9:9a:b7:c2:b9:b8:
d7:82:dc:83:45:96:ff:3c:9e:c4:dc:83:13:06:ca:
49:99:3c:52:42:a2:77:7f:c5:e8:84:33:6f:48:24:
37:0a:6d:69:41:46:d0:c1:11:84:89:42:cf:0b:99:
54:1f:d6:7b:78:6e:ac:e8:96:7c:92:8c:43:0b:e0:
ae:46:da:fe:d3:bd:91:85:d7:19:37:24:35:50:87:
12:5a:eb:4a:d8:77:8d:c3:86:0a:9c:59:54:19:b1:
ac:91:46:89:13:7b:17:b8:b5:d2:30:76:7a:62:87:
67:f3:0e:2a:0f:f5:c5:ce:45:04:0d:17:ec:db:f3:
a9:a9:3d:f1:ff:e0:e7:7b:3e:44:d0:21:07:37:69:
d1:f5:85:c6:84:aa:48:f6:0d:c0:ca:52:46:e3:4b:
69:50:1d:c9:4e:50:cf:2b:6b:5c:bc:3f:ad:da:4b:
04:41:63:6f:9b:71:17:0c:0a:c8:fe:68:87:ba:88:
f7:6d:fc:f2:9f:e2:ec:48:47:a7:1d:0a:7a:b3:5b:
99:75:d4:58:db:31:c3:fa:01:4f:b3:22:df:e4:a8:
c7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:54:DF:3D:47:02:7F:FA:F7:CB:8A:16:6F:3E:0A:10:E3:17:78:67
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.33.0/24
Signature Algorithm: sha256WithRSAEncryption
14:9c:ad:e9:3e:66:78:e2:f4:54:4d:cc:38:2a:f2:f2:aa:cd:
04:7e:38:0d:d5:82:55:7f:4b:e9:87:c6:dd:ea:2d:78:43:76:
48:e5:dc:05:d9:6d:ca:c2:fa:a7:01:e2:66:3e:ad:02:62:a5:
6f:fe:98:be:a9:e8:2b:7a:55:7b:8e:98:c9:34:5f:af:b9:ac:
f6:6f:56:1e:51:4b:2c:24:60:e2:e1:da:ad:38:02:3b:9e:ea:
34:ab:17:89:ec:5d:ca:13:30:6f:8f:ba:0d:93:6f:98:c2:60:
19:8a:50:6f:f8:f4:63:7d:c5:31:aa:c8:20:d5:d7:0f:34:a2:
4e:f4:f2:6e:c2:12:a5:46:8d:91:72:c8:b3:42:4d:0e:fa:45:
eb:7e:0e:10:ef:dd:6a:84:10:61:5f:e6:c8:d6:52:07:2e:b0:
af:89:6b:6f:a0:b2:69:26:dd:d0:b9:9a:8e:c4:23:01:4c:db:
e6:98:52:a7:b7:75:c8:37:64:00:94:88:f8:57:c2:09:b9:41:
61:03:ec:44:24:63:b3:87:17:34:fe:19:ce:75:05:ac:7c:e7:
64:46:93:6f:b5:ae:49:d7:64:9a:1c:1f:15:99:fc:0e:e4:3d:
de:82:c4:71:d3:74:c3:6e:04:df:a4:02:b9:cc:89:1d:2b:e2:
f2:ff:b8:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 15:24:42 2025 by rpki-client