Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer
File: hPqw1oT6rxaVCqyjjm1lOszyWLw.cer (raw, json)
Hash identifier: uIjZ9uqOkYooirQM1hRxoLq4DXSlTXPAQrc4yqnyJM0=
Subject key identifier: 84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0260C4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Aug 2025 14:03:49 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 24014
IP: 2001:df3:c600::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Sep 2025 21:23:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155844 (0x260c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 29 14:03:49 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A914247C, serialNumber=84FAB0D684FAAF16950AACA38E6D653ACCF258BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0d:4e:1e:31:98:ce:ab:f8:a0:a8:71:ab:38:
a9:13:8d:6a:14:bc:f1:0c:78:0d:66:7b:70:6b:1c:
5d:86:db:ee:fa:e6:2d:77:62:9e:34:fc:e0:0a:93:
04:76:8c:b2:f6:b3:50:56:d1:5e:00:55:40:99:7d:
34:e1:80:a8:ce:b5:70:67:db:fb:c5:15:0c:d7:1d:
75:56:d9:39:8b:d3:aa:38:17:15:f0:3c:f9:f6:c9:
6c:3f:9b:37:e3:e2:99:74:67:39:b7:89:d8:ca:e6:
24:ab:a4:39:8f:f4:78:00:9d:e5:0e:65:ff:e9:bf:
1d:c4:be:48:5f:5e:e1:1a:c5:d1:27:04:42:01:f4:
4a:48:cb:42:b1:be:d6:b7:c0:7e:38:6b:ad:f8:3e:
40:3f:00:f7:07:75:27:a3:78:ef:04:dd:d4:d7:29:
8d:c1:f1:a2:7e:10:4c:66:1e:4e:ed:cb:2d:c1:45:
4c:6f:50:8a:08:e6:26:ba:69:14:df:4b:6f:da:e9:
65:39:22:21:17:f9:56:1d:ab:ea:13:79:89:2e:44:
b1:07:42:12:09:df:ed:f4:c2:62:67:eb:80:08:08:
46:4d:1f:1e:98:6d:95:54:d1:f3:f3:cd:59:f5:a3:
30:09:74:e4:df:5d:85:9e:c1:5f:df:9c:c4:8d:07:
b2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24014
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:c600::/48
Signature Algorithm: sha256WithRSAEncryption
34:ae:23:fb:67:d2:77:c2:fd:1f:90:ff:db:4a:bc:ed:b7:8c:
a5:ad:b1:09:5b:c2:c3:32:73:ae:72:18:15:0c:48:a4:99:d0:
59:a8:65:0f:ce:df:39:0d:5c:54:2d:dc:85:b5:df:1d:79:34:
3a:68:25:ca:03:f1:4d:13:a6:b7:46:af:b4:f4:90:e1:ed:60:
3c:dc:39:a7:f1:62:61:41:39:b9:36:08:be:c2:83:dc:26:8f:
fa:eb:a1:04:e6:b5:03:5c:0f:41:44:00:60:a9:5f:53:52:c3:
a5:c7:78:6b:bb:d1:6c:5d:69:49:23:27:a1:33:55:8e:0e:48:
ea:6a:83:53:0a:fb:6b:12:99:1f:d6:65:ba:13:07:b8:d0:95:
53:c9:c4:e8:93:77:a8:5d:e2:f3:34:bd:e5:f0:9f:5a:7f:d1:
bf:0a:fb:c6:ba:2c:8f:f5:6b:31:47:f9:80:39:15:19:bf:b9:
52:1c:7d:fb:03:38:b7:86:71:33:23:f0:f5:4e:ee:14:2b:b6:
b6:a2:4f:50:24:27:89:28:5b:a4:5a:2d:29:6f:56:22:da:90:
1c:28:1f:9b:43:8b:67:86:0c:5e:82:0d:72:a0:44:ab:61:35:
72:65:db:e7:1e:ce:47:3c:6b:42:f2:8f:62:91:b1:2e:12:f2:
35:5c:1a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 23:09:03 2025 by rpki-client