Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer
File: vsKCSG834xbxe1ILRVKHvDB_ieg.cer (raw, json)
Hash identifier: 3VWI0cTZfLaj9pyVbu2Toy66TYEFFCn0kODMRYWr10M=
Subject key identifier: BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6A54
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Aug 2025 19:39:48 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: IP: 192.190.180.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Sep 2025 07:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27220 (0x6a54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 28 19:39:48 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A918A469, serialNumber=BEC282486F37E316F17B520B455287BC307F89E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:58:db:16:77:9e:51:b3:de:df:bf:5f:42:bf:
89:5e:d4:6a:7c:2d:f4:35:69:94:e0:e6:f9:f5:14:
c0:51:ac:c4:51:8d:9d:21:5e:2e:e0:f5:bf:6c:c0:
4c:2f:db:c1:29:a9:5b:98:6e:69:d6:65:19:d7:e5:
3e:17:7a:3d:4b:7d:21:78:4a:88:02:87:48:28:eb:
d9:56:f1:0c:aa:9d:2a:c5:2d:7b:70:01:90:f3:8b:
69:2a:87:3b:f7:11:08:4f:07:07:e1:3a:11:93:6d:
6c:bb:e1:4a:6b:9d:67:5e:05:25:5e:02:b1:e6:9e:
d4:d4:11:f5:7e:7d:74:45:f4:4f:17:a6:38:24:30:
e9:a0:f4:92:c6:b2:47:b3:11:ea:00:b9:ae:49:97:
6e:e2:6f:93:0d:f7:84:1f:c8:1a:42:54:c2:8f:c0:
e9:87:f4:ef:86:62:f2:fe:f8:4a:67:38:54:66:56:
65:29:40:45:a6:92:e5:3a:6c:12:87:01:85:40:c2:
2e:27:98:52:4f:82:2f:66:c8:0e:9e:3f:4a:01:2e:
9a:74:ce:f1:8a:86:09:02:0e:80:b8:f1:d4:f2:86:
eb:3e:6c:e7:44:2b:70:c2:ea:9c:7d:e2:5c:1e:0d:
d1:65:b9:4f:58:22:11:02:f2:2f:07:4a:ed:fd:27:
91:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.190.180.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:94:e5:70:7a:9e:5e:d8:7c:f5:20:fa:14:c4:a5:dd:63:45:
76:99:58:70:86:17:7e:25:71:a5:45:23:68:00:6a:fc:0c:a9:
a5:78:c6:21:b3:5d:d9:be:2c:d0:ce:83:94:11:55:82:06:bf:
7d:f8:d6:b2:a4:4c:3a:9a:7d:e4:7a:6b:ec:2d:7d:4b:98:59:
9f:4b:54:42:d0:01:05:f0:75:ed:da:34:e6:66:49:6f:8d:42:
28:89:a7:65:5c:f9:6e:bc:2e:9a:c4:ad:06:68:31:f9:a5:84:
cf:98:bd:84:7b:d3:3a:c9:a5:38:ad:32:73:85:b7:08:e5:0a:
bb:3b:1b:1b:eb:ca:c5:f5:4d:66:e3:d9:f4:b3:aa:18:22:dd:
f9:11:e3:25:f8:b0:ff:76:9a:50:99:ce:42:21:ef:b0:5f:1f:
33:52:8f:6f:01:80:37:b0:0c:05:24:ba:3b:40:ae:73:70:ef:
93:33:09:89:98:6d:04:02:8c:97:66:09:b0:42:60:cf:52:4c:
34:a5:86:e8:b9:d7:1b:e3:ed:74:da:55:b4:3d:26:99:5b:cd:
a6:55:82:86:c7:84:47:4f:4f:6a:20:39:1d:d2:a5:20:5e:c8:
12:ca:00:6b:d7:30:bf:89:05:06:9c:68:2c:8d:c2:38:11:86:
02:7d:d3:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 15:28:12 2025 by rpki-client