Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer
File: i99RGJodvfloQ0tec2qpq_1FVhw.cer (raw, json)
Hash identifier: oekye0wZgJfEdiYUJ7Rbk16DLNDIbFweYY/iqyvRRr4=
Subject key identifier: 8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024FF3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Jun 2025 12:58:40 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: IP: 43.242.240.0/22
IP: 103.26.192.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 08 Jul 2025 08:36:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151539 (0x24ff3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 24 12:58:40 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A9119510, serialNumber=8BDF51189A1DBDF968434B5E736AA9ABFD45561C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:28:7d:78:b5:ed:6a:d3:03:1f:f4:dc:43:da:
a1:b7:8c:b7:f2:da:8d:62:7c:e0:9b:17:39:48:6e:
ef:50:8b:f8:61:52:f0:6c:65:d0:c5:e5:68:07:d5:
69:43:34:3a:47:5f:95:28:9a:a0:27:d9:20:d3:e1:
4f:6f:cc:b8:10:7c:e0:da:f9:37:e3:40:83:45:06:
a1:21:66:9c:b8:f3:44:10:10:26:61:46:19:2a:3a:
15:81:e4:0d:f5:72:7f:eb:8b:3d:61:4e:70:86:7d:
39:54:bb:65:ed:f0:5d:72:cf:a0:b9:26:30:a0:07:
25:ea:6a:09:ac:d8:06:83:46:5c:fd:64:d0:43:d4:
55:d9:00:21:d7:ec:ca:b8:71:61:de:5e:da:c4:5a:
3d:b0:87:32:e6:de:44:18:4d:d7:0a:ef:d4:0b:9e:
54:d6:22:8f:6f:e6:02:dc:11:e8:e5:b0:4a:c6:a3:
3f:e4:46:7a:c0:e4:be:44:71:a6:09:38:12:bd:2d:
be:83:61:a6:17:d8:35:aa:2a:fe:c3:5a:f1:10:8c:
c9:15:8c:18:e7:47:bb:cd:8a:42:e2:66:9b:96:02:
2c:2a:f3:52:03:e0:91:bf:0a:9e:77:1b:92:99:84:
60:76:26:40:24:72:bf:ee:63:23:6f:5b:d6:49:35:
66:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.242.240.0/22
103.26.192.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:04:4b:88:e7:d1:48:bf:30:75:d7:2a:fc:a0:1d:c9:bc:33:
19:3d:3e:23:fc:7a:b0:f3:e3:62:af:f5:d7:49:67:8b:f4:be:
f3:90:e9:ec:b3:56:7c:1c:5d:21:95:34:83:97:0f:5c:30:5b:
b8:25:06:da:e4:fc:4e:16:c7:ae:55:47:aa:c1:a2:f7:09:19:
a8:be:dd:de:1a:d4:2a:13:fa:41:b0:d9:73:5b:6f:75:56:c2:
92:72:5a:96:e2:d4:8e:5d:5b:1d:a0:3b:c2:63:4d:23:cb:59:
ef:eb:1b:1c:8e:e4:59:ff:41:aa:62:2a:17:86:0c:73:23:d5:
36:7f:d5:5b:87:c6:03:b7:ea:cd:d8:51:6a:cd:dc:1a:5c:6e:
b0:22:2f:a0:c1:29:6a:6d:1b:56:ca:66:d4:91:2c:49:8b:97:
5b:96:f6:40:0e:24:cc:df:a4:2c:ff:bd:d8:11:32:f5:b3:77:
74:1b:7f:00:dc:0b:49:82:e5:f9:60:8f:f2:70:17:3e:32:ee:
2e:b2:04:3e:1c:20:02:94:33:44:39:12:69:f6:d0:f1:3e:2f:
7f:4f:ef:1d:3c:0b:44:3b:43:8e:fe:d1:69:6b:dd:54:58:30:
ce:f2:c6:e7:53:07:ad:97:74:14:d3:9f:da:0c:b8:c0:6e:55:
b4:9c:b6:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 13:14:58 2025 by rpki-client