Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer
File: LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer (raw, json)
Hash identifier: G3HHz/b3k5DzMSa7N68Br0fI56Azi0R9Fl2Td9ANt90=
Subject key identifier: 2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024576
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 10 May 2025 12:39:03 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 114.141.120.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148854 (0x24576)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 10 12:39:03 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A91203EB, serialNumber=2F265B0C802473094926890A85124E21B109DA3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2d:6b:cb:2f:cc:19:0d:ae:cf:43:c5:35:ef:
74:05:1e:be:02:0c:df:f7:ce:f5:3d:a7:c4:c4:04:
56:e5:40:24:89:0c:df:ef:8a:24:7f:eb:02:3a:77:
64:b6:f9:dd:e0:03:d4:d9:f5:ab:3f:db:70:1c:46:
62:eb:c7:d7:de:56:c3:07:2a:70:ce:a5:5b:11:f9:
41:f6:b8:92:1c:bd:21:ba:5b:4e:be:e2:c3:9c:39:
27:77:10:8e:17:85:cf:fc:64:c9:c5:a5:14:0e:29:
9b:5d:57:4d:c4:bf:0c:f5:33:f5:d6:6a:09:f0:8b:
cc:25:59:4e:af:cb:bb:34:5d:a5:19:19:d1:52:20:
e2:c7:f0:2f:42:97:b0:69:01:92:fc:e5:de:92:b4:
fb:e6:85:c8:f1:00:eb:95:a3:30:e1:27:c9:32:fe:
5b:d0:91:f7:74:1e:60:11:e6:3a:1b:9a:2a:45:4d:
21:51:2f:94:5e:8f:03:eb:72:68:87:cc:32:f6:fa:
f6:38:28:63:bb:27:a1:81:3e:26:32:fb:6a:9b:9a:
a1:b0:47:6c:71:2b:49:6c:54:7f:9c:3a:24:33:1a:
04:bc:ec:16:6b:0a:81:a7:33:e0:84:cd:a3:60:55:
51:fc:45:10:31:4f:fa:87:36:4d:84:0b:a7:b7:35:
0f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
114.141.120.0/21
Signature Algorithm: sha256WithRSAEncryption
b1:b8:f9:d4:fe:92:84:7f:24:6b:bb:75:b6:51:c2:f1:26:5e:
5a:6f:7a:db:93:b3:59:78:7f:dc:6c:a7:70:b1:25:51:72:5d:
e4:9f:66:7e:49:67:a6:6f:b2:d0:01:25:55:46:30:e9:fc:c8:
69:c3:66:de:51:e4:56:97:e1:a2:50:c0:95:e5:2c:28:3f:d8:
64:93:82:90:c0:73:a8:0a:b4:5b:be:b1:22:63:e5:9b:78:8f:
0a:59:43:cd:7f:90:f4:87:79:39:05:51:20:2a:07:18:60:c2:
a1:e6:21:04:4d:99:37:46:3f:5c:71:08:95:97:b5:6d:38:14:
4c:31:ea:12:46:25:14:07:11:00:a4:b3:b9:69:e5:d0:1c:28:
9c:a7:7b:45:33:a1:89:9e:27:cd:4b:3a:92:c5:c7:57:bf:d4:
59:9d:8d:fc:1b:27:24:2a:1d:52:49:3f:59:f4:a1:50:96:5e:
46:ac:89:08:23:bb:ed:82:57:77:54:ee:f4:de:b7:a3:12:e2:
e6:38:3a:40:4d:71:f0:33:aa:b3:75:f2:4d:05:b3:fd:20:3c:
04:84:b5:f9:a3:6f:2a:bf:47:e5:6a:85:be:ae:98:b7:f9:58:
10:8d:14:6b:7d:eb:42:aa:1e:61:a2:b4:be:fd:14:d2:6c:4f:
d1:12:97:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 08:48:08 2025 by rpki-client