Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADiahleuCYgERy-OaNcF4u_b18A.cer
File: ADiahleuCYgERy-OaNcF4u_b18A.cer (raw, json)
Hash identifier: v/lE5pArX9IpYPyR/C0qfHjI2sJgtEtngB+Sl7hK/yg=
Subject key identifier: 00:38:9A:86:57:AE:09:88:04:47:2F:8E:68:D7:05:E2:EF:DB:D7:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02417C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Apr 2025 16:37:32 +0000
Certificate not after: Thu 28 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 137496
IP: 2402:8dc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147836 (0x2417c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 28 16:37:32 2025 GMT
Not After : Aug 28 00:00:00 2025 GMT
Subject: CN=A914FA25, serialNumber=00389A8657AE098804472F8E68D705E2EFDBD7C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:01:25:08:30:f4:b1:74:8f:e3:58:81:1e:63:
47:b4:a3:81:16:3d:32:a3:f7:7b:b1:82:68:89:d2:
b7:aa:b8:71:4c:cb:12:59:70:21:cc:27:1b:8b:ab:
9c:47:a3:e4:18:98:e1:b9:5d:b8:15:27:14:f6:7c:
82:8c:26:53:bf:c5:38:fe:17:a5:f8:c1:9b:61:0c:
c3:e4:34:7a:5b:8b:60:24:2f:a6:30:be:4c:d5:d6:
28:6e:f1:8c:d9:a9:ee:58:ce:50:02:41:9f:69:13:
87:b8:e7:df:2b:f1:40:0b:05:5b:d5:9d:59:ff:6b:
a5:2e:35:b3:2a:47:13:38:cb:3f:31:6c:3b:0e:ff:
93:c1:ad:00:82:4e:a8:68:29:b3:8d:69:25:76:9e:
ed:f7:15:2c:60:1b:f3:d4:b4:88:b6:19:22:78:5d:
e8:68:97:38:16:69:f1:22:de:53:96:cf:f3:bc:0d:
8e:11:c6:73:7f:95:c7:c6:9d:43:59:c5:64:04:52:
aa:e7:af:7a:6f:ba:cd:de:c1:67:89:8f:06:9b:26:
22:2f:10:56:4f:4f:2b:44:1a:a9:2d:e4:ef:12:96:
1a:98:60:0e:10:dc:bc:4c:be:6e:f0:13:28:19:37:
46:cf:2f:63:b4:98:0a:84:7c:4b:1f:b7:83:fe:2a:
3c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:38:9A:86:57:AE:09:88:04:47:2F:8E:68:D7:05:E2:EF:DB:D7:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ADiahleuCYgERy-OaNcF4u_b18A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137496
sbgp-ipAddrBlock: critical
IPv6:
2402:8dc0::/32
Signature Algorithm: sha256WithRSAEncryption
78:a9:5e:1b:b9:7c:b9:d3:11:96:74:06:fc:3f:ba:06:51:d4:
51:4e:45:a6:a7:25:d0:b5:a3:0d:73:fa:c9:f2:42:97:69:f7:
ca:20:a5:b0:f5:9a:4b:01:57:17:20:f4:4b:5d:e7:1a:55:c8:
04:c7:22:91:21:0e:ca:35:9e:68:1c:5f:87:10:28:11:75:ec:
d3:2d:d2:85:a4:ff:94:7a:3b:2b:b8:9c:5b:a7:b1:0f:2d:36:
b7:75:c1:bf:f4:ea:57:60:73:02:38:09:e9:3c:77:b8:dc:fc:
0c:4b:64:65:7c:64:e6:93:51:f4:e6:7b:50:08:43:9e:1c:97:
cb:89:73:76:50:db:93:1a:1f:82:6b:00:47:92:97:29:1f:9d:
9d:9b:ad:90:3f:f5:60:e7:7c:4e:8f:32:27:2b:7a:bc:b0:07:
1c:7e:20:d9:4b:33:09:7b:28:b0:1e:d4:eb:b4:01:f1:69:9c:
f2:fe:9c:87:2a:10:9c:d6:96:3c:cb:14:6c:ed:c5:d2:a7:9f:
1d:7f:57:5e:9d:5c:e5:d2:75:52:66:04:bf:cf:c3:61:06:b8:
9c:0f:1b:7a:31:38:24:42:f6:84:cf:97:57:01:61:37:73:54:
1b:7f:05:54:55:07:5d:d5:8e:d6:38:53:e1:c5:c1:b4:1e:61:
d6:cb:33:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 09:34:00 2025 by rpki-client