Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgcNjjoV_V7Y6fefFwx8-6aeRD0.cer
File: CgcNjjoV_V7Y6fefFwx8-6aeRD0.cer (raw, json)
Hash identifier: 8BWy2EpSpUxje2HrF7jxYvEm9t6pjnmb7GcStf/sL34=
Subject key identifier: 0A:07:0D:8E:3A:15:FD:5E:D8:E9:F7:9F:17:0C:7C:FB:A6:9E:44:3D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024954
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9182FE1/0375AE6A248111EAB59B5426C4F9AE02/CgcNjjoV_V7Y6fefFwx8-6aeRD0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9182FE1/0375AE6A248111EAB59B5426C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 May 2025 17:41:24 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 135370
AS: 138533
AS: 150346
IP: 2405:4240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 05:39:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149844 (0x24954)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 28 17:41:24 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9182FE1, serialNumber=0A070D8E3A15FD5ED8E9F79F170C7CFBA69E443D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0f:70:f5:11:85:48:86:2d:f6:66:4f:d6:d8:
03:d0:c1:48:3f:12:d7:b7:0b:a7:7d:d1:c2:3e:cf:
60:d1:61:eb:73:e7:55:1c:d2:24:50:ba:2d:a9:f4:
45:66:5f:24:16:2a:78:a3:b2:ba:8c:6c:34:05:7e:
7a:90:e7:d6:f0:17:20:4d:c9:a2:33:5f:bd:4b:6f:
7f:9c:53:d9:cd:0b:97:3d:50:91:8f:8a:7f:73:2b:
e6:e4:ff:81:a0:2c:51:ba:3a:ba:28:63:d5:dc:ed:
55:e2:b2:cc:0a:24:87:6f:84:a2:58:9e:6a:b8:a5:
81:df:92:cd:7e:f3:70:11:c0:25:af:f4:73:13:39:
d1:8a:d0:4a:ac:aa:8f:4f:7c:ab:a7:46:aa:9b:2f:
24:7c:63:25:d4:e9:3e:87:5d:37:40:91:b7:cd:7a:
4d:31:7d:24:1b:10:34:85:98:fc:47:0c:06:1a:b8:
68:35:98:09:6c:ba:3e:c6:d2:db:12:50:50:7e:3a:
0e:9b:a7:a1:49:d8:5d:e4:a3:a9:9a:c8:6b:54:c6:
60:19:d5:3b:d9:31:7b:15:29:42:0a:c7:1b:da:19:
04:7b:39:62:ef:b1:49:dc:f8:bf:1a:ac:72:e2:bc:
96:f3:90:f8:72:29:06:41:8f:2b:19:a7:20:23:1a:
b1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:07:0D:8E:3A:15:FD:5E:D8:E9:F7:9F:17:0C:7C:FB:A6:9E:44:3D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9182FE1/0375AE6A248111EAB59B5426C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9182FE1/0375AE6A248111EAB59B5426C4F9AE02/CgcNjjoV_V7Y6fefFwx8-6aeRD0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135370
138533
150346
sbgp-ipAddrBlock: critical
IPv6:
2405:4240::/32
Signature Algorithm: sha256WithRSAEncryption
11:fe:8c:c4:75:9d:18:1f:bf:2d:1d:ad:3b:dc:30:e2:4d:b0:
70:0e:34:34:df:53:9b:10:de:75:1e:0b:c4:f9:a6:64:c9:e8:
55:05:d5:d7:56:e0:32:ce:38:33:7c:6c:91:c0:25:e0:89:7a:
ef:b2:86:31:45:d6:ab:f8:08:5d:84:5a:30:74:c0:1a:6a:5d:
5d:fb:95:6f:14:2b:61:c9:d0:1a:fb:55:0c:31:89:20:6b:46:
06:b6:b8:39:ee:a0:5b:21:6e:7a:96:9b:ea:61:64:70:06:52:
cc:a6:2f:9d:92:2b:bc:ff:b3:cb:7f:9e:ef:21:e6:16:d0:28:
4e:ee:77:77:e2:fe:a8:ee:4e:83:60:14:a2:b8:22:19:a4:77:
56:c0:b9:64:df:cf:f8:d9:11:cc:20:a4:7a:bb:3e:d2:f1:79:
41:40:1b:f5:e0:f9:8e:49:93:cc:04:09:28:23:7c:42:38:22:
68:0e:7e:fa:17:df:ac:aa:6c:0c:2c:42:26:72:1e:36:2f:f2:
85:65:71:7d:04:a9:ef:bd:f6:0b:5e:e7:f3:c6:f1:70:c6:ea:
d0:f3:c4:37:a6:26:f8:2a:8c:fc:75:d2:58:77:98:ad:a4:ac:
98:25:19:e1:f0:06:cc:24:4f:67:ab:3b:0c:65:7d:a7:a3:89:
ab:c0:dd:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 08:23:08 2025 by rpki-client