Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yNpkCWcTSBB928ixg_VavykxJVY.cer
File: yNpkCWcTSBB928ixg_VavykxJVY.cer (raw, json)
Hash identifier: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=
Subject key identifier: C8:DA:64:09:67:13:48:10:7D:DB:C8:B1:83:F5:5A:BF:29:31:25:56
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 46D9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/yNpkCWcTSBB928ixg_VavykxJVY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 May 2025 13:07:32 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 154.8.128.0/17
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 13 Jun 2025 14:50:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18137 (0x46d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: May 16 13:07:32 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9120974, serialNumber=C8DA6409671348107DDBC8B183F55ABF29312556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f9:2b:4f:6f:0f:c3:e3:93:ff:0c:56:c9:48:
68:64:ae:2b:40:a3:71:68:5b:d2:5b:e8:18:67:27:
3d:ae:81:63:39:35:dd:57:bb:e9:ca:73:8e:d5:c2:
ba:d3:ad:1c:7b:10:fe:b3:59:06:b1:4e:0b:b1:ee:
2a:89:fe:bc:02:f3:45:c4:ed:58:a2:17:ec:d9:15:
4f:73:66:f6:a0:68:41:1b:e2:a1:e9:49:5f:ab:bd:
13:83:51:f8:2c:1e:54:04:1b:e1:67:13:fd:fb:30:
a6:bd:78:67:4b:5a:2d:cc:52:e5:57:2f:9e:49:8c:
f8:43:fd:9a:0e:a6:47:82:0a:41:b6:e2:50:ed:67:
96:30:81:f6:44:b0:80:c6:09:f3:15:c0:f0:e8:ab:
fe:8a:0f:cc:d0:bb:3c:da:78:71:25:68:f2:40:36:
e2:a1:3f:ed:50:40:a2:32:96:6c:e5:f4:fe:63:f7:
19:4a:a6:91:4c:2c:7f:1c:3a:92:88:ea:68:ea:3b:
a1:85:ea:82:0a:8f:3f:8f:bb:33:83:d8:3e:c7:0d:
fc:4b:60:98:d4:41:68:a3:4c:8d:d6:98:8e:fa:d9:
a5:43:39:c9:82:90:c8:19:c6:8c:38:86:84:8e:a9:
36:47:5a:3f:2b:0e:9e:2c:d1:31:d9:38:90:e1:fa:
1e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DA:64:09:67:13:48:10:7D:DB:C8:B1:83:F5:5A:BF:29:31:25:56
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9120974/D677D31A3A4911E9940F2D16C4F9AE02/yNpkCWcTSBB928ixg_VavykxJVY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.8.128.0/17
Signature Algorithm: sha256WithRSAEncryption
53:57:02:0b:c6:52:bd:19:01:a0:e0:9e:40:31:4d:15:ee:20:
c9:8e:26:0d:20:85:94:4a:36:3d:51:da:a8:a4:66:3f:12:58:
9c:4c:ca:15:30:14:8e:e2:8b:41:ee:13:48:4f:dd:33:e4:4a:
af:6c:a6:c6:e9:30:cc:86:fa:4b:74:f8:4c:f2:2a:ef:70:84:
59:77:e2:f4:e7:15:1b:8e:2f:ed:50:bb:4d:ad:94:a5:97:17:
fb:7c:26:39:3f:f5:3a:9f:c3:22:51:9b:e5:b5:f2:cd:48:97:
c1:1b:70:e0:dd:24:3b:d4:51:8e:f9:b1:46:2d:cc:41:f5:5c:
87:c2:99:5b:c2:9c:06:2a:b9:b5:0d:a3:e5:0e:a1:a0:7d:2e:
7c:bd:65:7c:0e:d6:43:8f:9b:7a:f0:fc:06:22:d8:d3:46:94:
28:dd:1d:6b:c9:70:ea:85:e4:e1:c5:e9:9c:ef:a1:67:21:59:
d3:e4:75:2d:04:c7:78:2e:6a:ae:02:f1:16:22:4d:ff:bf:ee:
0b:91:98:ce:a8:f1:9d:ed:0a:e2:75:e6:e5:ec:6e:bc:d5:b2:
ae:1d:4b:de:d3:98:66:76:65:75:6d:59:dd:7c:3d:57:52:e6:
81:7c:d7:dc:18:be:d6:01:de:c0:ce:4b:aa:e3:b9:3d:3d:e9:
cc:c8:64:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 17:09:46 2025 by rpki-client