Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer
File: 3qY-MQG_FZkCCkCD-hw9lkshMMA.cer (raw, json)
Hash identifier: V/AFgrCsUb/eE5O/7/hiBzX5Ov2NfQt7BWyEfzhh1k4=
Subject key identifier: DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024986
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 29 May 2025 14:25:43 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 153913
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 07 Jun 2025 14:18:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149894 (0x24986)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 29 14:25:43 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A9161857, serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0c:ed:bf:da:27:8d:76:11:6b:67:59:bb:b7:
46:c6:5f:cc:aa:fe:93:42:4b:4e:da:fb:b3:2a:bf:
15:7f:1a:3a:17:58:8d:2f:c4:d5:cf:c3:2f:8d:5a:
a7:cb:8e:c7:9d:9e:5e:28:87:2d:be:3f:0f:00:b7:
97:8f:3b:51:f5:de:04:88:fd:dc:62:fa:e6:55:1a:
c7:d5:09:8e:5e:19:d2:63:e6:b7:51:5b:68:d6:36:
59:21:78:1f:fb:a6:f8:5f:c8:b0:1e:95:5a:57:36:
a5:d6:81:c1:f9:bd:90:2e:c8:38:65:52:14:57:a7:
6f:ad:58:4c:8d:9a:34:7c:f2:31:6e:48:7b:5b:77:
37:6c:05:4f:5d:a8:d7:c5:43:a0:4e:97:b5:5c:d2:
78:5f:64:59:79:de:ab:99:55:c3:25:57:57:1f:91:
1a:1b:b3:5d:bd:54:5a:cd:e9:31:87:a7:96:29:74:
0b:f2:64:ac:0d:b5:1e:5f:e2:9c:72:c5:88:56:f1:
04:66:96:74:59:b3:d8:ea:84:54:f9:1c:1a:a9:2b:
22:bb:2a:a0:f5:65:e5:17:6f:32:d8:5e:d9:66:3c:
8e:00:26:32:06:d1:b8:f4:36:ae:27:51:93:91:b8:
02:28:90:1e:a3:ef:1f:48:da:57:f9:1b:26:fe:f8:
fe:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153913
Signature Algorithm: sha256WithRSAEncryption
d6:89:39:a1:b3:8d:23:11:1b:d1:62:b9:85:a4:e5:0b:b0:b8:
5f:a7:f5:1a:8e:a9:ac:de:b8:e2:b0:81:ff:a5:9d:78:08:27:
47:6f:e3:aa:61:92:e0:5b:4d:60:05:03:cb:45:55:ec:80:36:
eb:fd:4e:b3:91:e8:93:1c:e2:55:01:01:2f:c7:bc:87:79:4f:
74:95:0c:23:14:60:e4:02:15:4e:a0:30:c2:5b:cb:9a:e4:be:
8e:9c:0f:3d:f4:b8:10:b1:23:fc:8b:51:4b:4d:99:d6:0e:88:
4b:c1:c8:9d:d7:c0:48:04:30:22:7a:4a:06:40:3e:0b:68:c3:
df:28:b3:dc:08:1c:e1:61:85:c6:2e:cd:55:05:a6:dd:ab:7a:
02:6b:6f:8e:4c:65:b5:64:4e:17:22:2b:a6:a9:fa:d2:9a:d7:
2a:a7:ca:8a:68:1e:ca:90:e4:e8:3c:e7:70:7d:37:f4:e7:7b:
9c:25:40:af:be:12:a9:59:10:f7:3d:09:9c:54:d0:ff:dc:24:
0c:d4:31:d1:c1:78:9a:dc:77:34:a4:cf:43:ce:d4:82:f6:db:
e4:0b:3b:48:12:a7:6e:e3:1c:ee:d1:90:9f:82:27:cb:d5:e7:
79:d4:4f:8d:b4:7d:e9:29:81:c5:1c:9c:30:13:a2:c5:84:23:
b7:b4:0c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 31 16:35:54 2025 by rpki-client