Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer
File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer (raw, json)
Hash identifier: viVNENwp5HHN4VDy0Gp+2xG9p6chR5JnHIiargKCIuE=
Subject key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0249B9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 May 2025 01:24:14 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 137570
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149945 (0x249b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 30 01:24:14 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f4:86:18:89:58:9f:90:09:4c:20:78:90:5d:
c4:6f:c6:b7:9d:74:75:2d:15:6e:7c:ec:d9:1f:89:
f1:40:db:33:f2:35:80:7d:f5:ac:3f:d6:ff:92:5f:
71:5b:7c:e8:55:1d:a9:ab:2d:e9:04:48:93:23:a8:
67:dc:94:63:8b:ab:4a:d1:73:b8:30:8b:50:af:98:
a2:94:e2:46:b9:1f:d4:14:0a:e9:bc:15:31:2c:2a:
e2:79:a9:53:05:4e:1c:95:41:f2:ac:5f:9f:cc:d8:
bd:cb:c5:63:02:fe:db:78:59:78:78:1c:91:49:72:
b8:0c:18:92:c8:24:d4:32:e8:d4:09:f0:4a:79:74:
e4:6f:40:16:84:e9:7a:74:34:46:86:cb:a8:d1:f7:
c0:96:5b:4b:fb:34:f6:3b:6e:88:52:c7:22:8b:3e:
cc:cd:05:5a:1e:fc:17:99:fb:02:a2:d4:42:5c:87:
c3:51:8e:d0:0b:e7:28:e9:4e:e1:6d:66:2b:cd:a5:
0b:bc:93:9d:f0:83:01:0f:6d:1e:9b:9c:81:b7:2d:
4e:32:db:03:84:f5:19:88:af:b6:23:ac:c0:1f:56:
1b:58:4d:77:ef:b3:96:5f:8d:32:dc:11:7a:fd:cd:
bf:85:44:19:3e:f3:81:e0:d7:1f:50:da:47:3b:26:
e6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137570
Signature Algorithm: sha256WithRSAEncryption
b1:c0:87:58:7c:6b:c1:f5:be:23:f4:a0:73:23:49:16:79:db:
56:fb:db:34:87:c5:6a:e7:8e:11:b0:8a:68:93:cb:4d:af:4f:
1b:cb:21:99:17:34:ba:e9:d9:41:2e:8b:90:01:3b:db:f0:14:
19:1c:f7:0c:ba:d7:78:d1:a2:86:45:58:2a:2d:ac:20:4a:ef:
6c:8c:1d:c2:13:a8:12:b9:01:86:a3:26:cc:a3:73:e7:81:b8:
55:74:26:20:a7:6e:f8:ed:54:21:07:1c:80:f2:f0:ba:19:96:
a6:7c:b1:65:ce:4f:a4:e2:57:ae:3b:24:dc:78:3c:45:76:65:
f7:d5:63:7f:26:a2:4c:3c:3e:73:fb:d8:89:c1:cc:98:0d:59:
4f:0c:bf:bf:e0:95:a7:86:b9:72:cc:a3:c4:a3:8a:87:28:aa:
19:43:9f:82:84:28:8c:90:7b:d4:22:c0:3a:71:ab:1b:4a:07:
ba:25:8a:cd:12:ef:46:27:75:48:e8:a3:38:9b:dd:9b:83:91:
3b:2f:24:62:41:61:bc:e4:7d:d1:8d:d8:35:5e:2f:c4:cb:22:
9e:b5:a3:d5:45:d9:22:fe:55:19:eb:4b:01:69:62:b5:22:59:
23:43:2b:bc:4c:d0:78:e9:9b:cc:02:9f:0d:50:35:b9:d6:ab:
a7:ad:73:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 08:56:53 2025 by rpki-client