Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer
File: ICB51sn-B78YYiHRqZgny_axIq4.cer (raw, json)
Hash identifier: YcGlciZi9R6+xoM7mtE1m4ocFpckECN0u4cPoEZ6Xus=
Subject key identifier: 20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024509
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 08 May 2025 16:56:37 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 45.115.24.0/22
IP: 103.55.8.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148745 (0x24509)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 8 16:56:37 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9178B2B, serialNumber=202079D6C9FE07BF186221D1A99827CBF6B122AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5d:40:a3:22:3b:27:f6:dc:8c:16:0f:07:8a:
50:3a:2e:10:ab:b8:ba:78:f5:25:3b:28:43:56:29:
da:8b:23:e3:03:16:65:e6:69:50:fa:5d:51:d7:64:
29:88:67:f5:54:84:3d:00:96:77:08:1a:e4:ae:8d:
01:ed:1e:6d:df:28:1d:f0:63:23:18:05:51:95:44:
da:a1:d8:b6:c4:4d:98:03:75:ef:74:af:f0:2a:b4:
ff:dc:bb:9c:e8:5f:40:04:f9:8d:79:b1:20:66:2b:
3c:fb:ee:00:a5:4c:52:0f:03:eb:d4:43:42:c9:99:
ea:3d:4e:9d:28:ac:77:42:83:dd:65:03:6f:23:5d:
e7:b4:46:ac:7c:ac:93:59:e6:1e:5c:d3:2c:2d:cf:
55:0d:a2:b3:ff:d7:cf:36:28:b6:b4:d0:87:84:1a:
ac:0f:1c:8b:5c:6e:5d:94:8f:05:51:4b:3b:4a:89:
e0:86:47:c5:30:18:6d:a1:8e:c4:58:d1:e8:a6:a1:
ab:1d:19:c5:13:dc:10:b2:f9:8e:5d:e6:f4:09:d1:
5f:c8:d8:7b:eb:1c:57:52:7a:bc:40:98:cf:85:42:
26:90:ed:f4:a8:7e:99:09:9f:39:bb:1f:eb:54:ee:
c3:1d:f8:d3:1d:f5:54:40:66:66:aa:aa:3a:a4:51:
1d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.115.24.0/22
103.55.8.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:e7:8b:48:0a:cc:b9:6e:b9:ed:d3:41:1f:68:4d:1b:72:1d:
d9:4f:3b:66:96:7b:ab:f3:12:89:54:6e:73:58:a0:c3:5a:d3:
55:5d:35:b2:16:3f:73:39:ab:e3:65:b1:91:11:47:db:4b:eb:
83:ed:ab:82:fd:d4:85:4d:54:f4:c4:04:c3:01:c8:68:50:9a:
cf:2d:ab:90:42:2f:06:08:61:e4:07:05:e7:3e:76:db:42:96:
f6:6c:08:c8:85:07:7a:2d:56:43:a1:e6:28:e0:fc:b9:c2:39:
f8:ba:12:05:9a:3f:7f:bb:a8:d6:7d:38:cf:c4:8d:6e:e2:da:
2f:85:44:62:bc:8c:2d:8d:ae:62:9a:73:be:d1:75:e6:af:16:
60:02:da:74:d4:83:23:83:9a:8e:4d:5a:ec:a5:df:60:1d:39:
ba:a5:a4:14:32:c2:4b:f5:4f:ac:77:d7:ea:38:7a:99:20:f0:
4c:b7:7f:af:bd:cc:97:02:01:39:9d:34:83:f2:48:48:3b:1c:
24:d9:50:c2:98:2b:3a:ea:d3:5f:76:f8:cf:8b:2a:9a:bf:42:
26:5f:43:78:a3:aa:71:3d:30:3d:e6:2e:9c:8e:ab:84:83:e4:
56:04:18:05:4a:43:82:04:86:14:c5:2b:89:b0:c5:25:d0:fa:
ac:d3:12:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 09:45:22 2025 by rpki-client