Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zRJ9BO7D6O5Bg5GUFP1-852SQ.cer
File: C2zRJ9BO7D6O5Bg5GUFP1-852SQ.cer (raw, json)
Hash identifier: S4IHmOZmwPi/bOtqenAMBKg5aY4OCz9vKTheWonXAMc=
Subject key identifier: 0B:6C:D1:27:D0:4E:EC:3E:8E:E4:18:39:19:41:4F:D7:EF:39:D9:24
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02486D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918EF87/3CBE39A238B311F091418086C4F9AE02/C2zRJ9BO7D6O5Bg5GUFP1-852SQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918EF87/3CBE39A238B311F091418086C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 24 May 2025 15:24:56 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 132475
IP: 2001:df5:9440::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149613 (0x2486d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 24 15:24:56 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A918EF87, serialNumber=0B6CD127D04EEC3E8EE4183919414FD7EF39D924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:99:13:66:46:73:07:95:ec:d8:d6:ae:4d:dc:
dc:5b:f8:e3:29:73:22:c7:0a:7c:0f:9d:4c:02:f4:
30:55:98:34:69:7c:d1:63:3a:28:95:f4:03:42:58:
52:7c:b8:d6:63:b2:89:a5:67:ce:e7:1f:4a:db:59:
24:95:5d:48:9a:fb:1c:1c:f1:fb:4a:25:74:f6:33:
77:e0:26:f6:b8:09:4b:6b:16:4d:2a:ca:52:78:7f:
4d:95:07:28:62:d9:57:92:b3:03:49:bf:84:92:19:
1a:9b:6f:15:ba:ef:9e:36:45:bc:3a:9b:b2:e0:6a:
4a:15:e6:6c:8d:c7:89:a6:75:95:60:f5:cd:e8:b1:
e5:bf:19:e1:e1:fe:8f:b1:6e:21:21:98:12:b2:46:
10:2b:e3:2d:ab:2c:51:47:6c:9b:3d:65:1c:17:f5:
ad:bb:7d:30:6b:0a:5f:95:50:6a:c4:74:3d:c3:57:
2d:64:a5:ab:a2:34:72:78:a7:75:8e:33:d7:92:c8:
09:0e:f7:04:e5:37:38:da:b4:dd:50:12:27:b2:51:
97:4c:9f:f1:b1:72:7a:21:67:18:02:dd:2d:c5:dc:
76:97:47:b2:c2:73:8e:4a:2c:60:11:f0:c0:56:c2:
20:48:4e:69:00:be:6d:69:4b:43:b5:33:ce:2b:4c:
66:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:6C:D1:27:D0:4E:EC:3E:8E:E4:18:39:19:41:4F:D7:EF:39:D9:24
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918EF87/3CBE39A238B311F091418086C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918EF87/3CBE39A238B311F091418086C4F9AE02/C2zRJ9BO7D6O5Bg5GUFP1-852SQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132475
sbgp-ipAddrBlock: critical
IPv6:
2001:df5:9440::/48
Signature Algorithm: sha256WithRSAEncryption
6a:bd:5f:6f:92:4a:59:bd:8d:60:bd:4d:04:da:d2:8b:1a:ab:
98:93:da:0f:93:cf:5f:01:bd:2a:1a:af:09:e3:ef:fa:1d:61:
f8:57:e3:af:a9:25:ca:9e:87:e2:ec:74:1d:44:b2:c4:d8:3e:
89:fc:04:78:dd:67:21:fa:7e:54:16:a5:a3:e3:98:eb:12:e1:
28:29:fc:90:16:83:05:89:07:3c:62:ab:9a:22:cb:37:75:e7:
a4:f7:30:36:9c:2f:67:4c:96:15:12:d9:65:0a:99:80:e9:9c:
6f:29:57:ae:78:2b:f6:72:2b:a7:fb:46:47:e9:1d:cf:fd:8d:
1e:58:83:f7:3a:3e:e6:58:86:b6:80:e6:8a:62:d9:1e:10:05:
e3:fc:3c:54:c2:07:47:e0:79:a9:ea:21:1a:f1:4a:21:9b:6e:
20:b3:51:2a:bd:37:c9:41:e7:7c:d5:97:b4:30:36:76:65:40:
1b:3a:96:47:36:c9:f4:35:86:20:cb:4f:93:d8:15:67:9e:e3:
b8:4d:88:44:b9:e1:88:8c:8e:6d:3e:7b:02:8b:4f:06:ea:22:
a6:a0:eb:dd:ff:62:a8:20:c1:f2:22:42:98:b0:33:8e:ea:e7:
c5:3c:f9:e8:2c:7e:1e:ed:60:47:a9:cc:61:21:ec:06:41:6f:
67:e5:41:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 09:21:27 2025 by rpki-client