
Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer
File: m2fIchTtmWVAcRkL688LjZ-hr04.cer (raw, json)
Hash identifier: n8fBMArPVpPRYd6cFgw3Spu7CQXD6dU3CAmRQmalLwM=
Subject key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025B9F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Aug 2025 18:58:22 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 134552
IP: 2404:4680::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 11:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154527 (0x25b9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 6 18:58:22 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:62:0b:af:2c:d1:17:9a:58:40:70:ac:ea:d8:
45:31:d9:b0:45:c0:80:e3:f5:64:70:58:2c:61:25:
8c:4a:98:2d:24:e3:da:45:c1:0b:21:21:7f:de:cc:
bb:44:68:d6:8b:0a:f2:df:57:aa:fc:1a:bb:fd:a3:
a5:a1:75:ce:e8:a8:f8:b0:af:c2:f5:78:5f:71:f4:
17:33:a0:15:2e:28:c9:11:92:15:43:0c:36:07:b0:
97:9b:70:d8:1a:30:a0:74:1b:dd:95:7a:ac:1c:dd:
7c:9b:33:12:bb:eb:75:a0:f5:0f:d4:b6:1a:96:76:
ae:52:ba:21:0d:01:11:99:bc:70:bb:53:ff:d9:13:
69:7a:23:93:64:e3:4c:77:b1:77:3f:d2:84:d3:a7:
ea:01:3b:3e:9e:c6:ff:d6:f6:83:a3:56:c1:07:e4:
75:90:15:ce:f5:2f:61:66:9e:70:0e:7b:11:fb:70:
74:af:d8:9c:c8:ae:63:f5:41:0d:41:9a:ad:4f:7e:
c0:a7:a3:57:d7:96:b9:50:39:5a:1b:1c:84:ca:94:
bc:46:e7:5a:92:61:c8:2f:27:44:45:0e:7f:34:66:
d1:6c:27:7f:1e:e9:40:9f:31:46:40:3c:4d:0f:80:
05:be:01:f5:11:6f:bd:9d:1e:2e:bc:f1:b1:43:5c:
cc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134552
sbgp-ipAddrBlock: critical
IPv6:
2404:4680::/32
Signature Algorithm: sha256WithRSAEncryption
bc:36:2a:59:6e:72:b6:60:70:a7:85:4c:54:f7:be:f6:2c:31:
e6:f0:dc:dd:0a:d8:99:36:61:f9:27:81:be:92:24:da:f9:b9:
df:18:0d:fe:00:bb:a4:35:2b:42:1b:8d:c5:6a:d0:fc:dd:82:
92:0c:b1:92:f1:99:a9:d3:06:a5:5e:4a:e9:ab:3e:6f:85:00:
1a:a6:b0:6d:72:f9:8a:aa:63:10:76:56:91:b2:98:58:a1:02:
24:fb:54:b9:b2:73:51:e6:d0:fe:cb:8c:a2:3f:b8:be:ae:a8:
3f:fe:42:af:80:cd:9c:7c:e0:b5:a4:9d:cf:d8:4c:23:85:fc:
8f:e5:cf:f4:8a:6a:b7:a5:08:b5:2e:6c:c2:c9:49:32:a3:f6:
79:3c:6c:6a:9f:7e:1d:29:0f:2a:f0:b8:ad:9c:b8:5d:9e:01:
73:73:a5:d8:f1:f4:98:4b:85:87:56:56:35:5f:81:79:de:da:
b5:58:cf:6d:96:78:86:7b:a2:8c:cb:e6:db:4d:83:4c:e4:ea:
07:94:1b:60:d8:53:18:e2:67:c4:ff:37:e0:d2:7f:be:98:64:
59:60:7d:55:42:c8:8a:18:b5:c7:f3:06:01:fa:5d:4b:23:03:
66:0f:2b:66:53:82:73:24:46:9e:77:81:a7:97:cc:b4:ea:86:
7f:86:06:ea
-----BEGIN CERTIFICATE-----
MIIGGzCCBQOgAwIBAgIDAlufMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDgwNjE4NTgyMloXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkw
QkVCQ0YwQjhEOUZBMUFGNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDgYguvLNEXmlhAcKzq2EUx2bBFwIDj9WRwWCxhJYxKmC0k49pFwQshIX/ezLtE
aNaLCvLfV6r8Grv9o6Whdc7oqPiwr8L1eF9x9BczoBUuKMkRkhVDDDYHsJebcNga
MKB0G92Veqwc3XybMxK763Wg9Q/UthqWdq5SuiENARGZvHC7U//ZE2l6I5Nk40x3
sXc/0oTTp+oBOz6exv/W9oOjVsEH5HWQFc71L2FmnnAOexH7cHSv2JzIrmP1QQ1B
mq1PfsCno1fXlrlQOVobHITKlLxG51qSYcgvJ0RFDn80ZtFsJ38e6UCfMUZAPE0P
gAW+AfURb72dHi688bFDXMzpAgMBAAGjggMQMIIDDDAdBgNVHQ4EFgQUm2fIchTt
mWVAcRkL688LjZ+hr04wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNCREM4LzY2OTc2M0YwMThFMDExRUFBMEMzOEU3QkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDQkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hU
dG1XVkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg2YMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJARGgDANBgkq
hkiG9w0BAQsFAAOCAQEAvDYqWW5ytmBwp4VMVPe+9iwx5vDc3QrYmTZh+SeBvpIk
2vm53xgN/gC7pDUrQhuNxWrQ/N2CkgyxkvGZqdMGpV5K6as+b4UAGqawbXL5iqpj
EHZWkbKYWKECJPtUubJzUebQ/suMoj+4vq6oP/5Cr4DNnHzgtaSdz9hMI4X8j+XP
9Ipqt6UItS5swslJMqP2eTxsap9+HSkPKvC4rZy4XZ4Bc3Ol2PH0mEuFh1ZWNV+B
ed7atVjPbZZ4hnuijMvm202DTOTqB5QbYNhTGOJnxP834NJ/vphkWWB9VULIihi1
x/MGAfpdSyMDZg8rZlOCcyRGnneBp5fMtOqGf4YG6g==
-----END CERTIFICATE-----
Generated at Fri Aug 22 14:16:07 2025 by rpki-client