Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer
File: v1g_8H2jVv3igoGfR7zuJHUTEZo.cer (raw, json)
Hash identifier: c2xJNhqARFFDpjfP2g38M/QhZceBGS2zldqb57/jMxo=
Subject key identifier: BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025340
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Jul 2025 13:24:22 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 10076
IP: 202.5.192.0/20
IP: 2404:ec80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 02 Aug 2025 13:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152384 (0x25340)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 13:24:22 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A912142C, serialNumber=BF583FF07DA356FDE282819F47BCEE247513119A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:fe:b5:73:95:75:52:dc:cf:ac:bb:db:01:fc:
ca:00:86:e9:54:b1:c5:47:0f:b5:34:ad:67:0b:c0:
ea:fa:86:61:a3:60:94:30:12:8c:d1:63:3b:87:0a:
6d:67:bf:08:ed:91:ed:4b:77:83:15:82:7b:9a:6b:
92:03:1a:c6:c2:9d:73:4a:88:6e:2a:ce:a2:9c:64:
7c:f1:32:60:2f:fd:cd:a4:bf:8a:9d:7e:9e:ea:30:
fe:d1:95:3b:ea:83:47:81:3c:e9:01:f2:18:22:10:
1a:a9:cd:aa:2d:90:ce:ee:8e:77:dc:97:0d:a6:80:
04:20:46:ac:0e:4f:53:e0:d9:82:ff:c2:fd:21:ff:
5d:b3:5d:76:61:0f:d8:66:98:87:23:01:a7:44:a4:
15:ca:cd:26:a9:e5:03:91:88:29:25:da:3f:b4:6b:
fa:6e:0a:a4:f5:f0:5f:1b:51:2f:4d:49:b1:43:76:
1f:cb:c8:27:ba:ef:ef:a7:b8:0c:77:db:16:0c:ce:
4a:74:b8:18:06:d2:a9:e5:86:1c:b8:b8:ac:30:1d:
77:1e:33:0e:a9:3c:fa:27:2c:be:99:7d:51:18:97:
6a:57:0f:cd:f2:fd:3d:82:a6:a5:10:fe:87:71:87:
5d:bf:41:dd:82:78:12:74:df:21:fa:c5:bf:63:40:
a7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10076
sbgp-ipAddrBlock: critical
IPv4:
202.5.192.0/20
IPv6:
2404:ec80::/32
Signature Algorithm: sha256WithRSAEncryption
c1:2e:80:75:20:67:9a:7e:14:e3:66:89:8f:51:da:40:46:8f:
25:7b:77:c0:08:c9:b5:b5:33:cf:15:f2:09:f7:1d:f0:b2:f9:
2e:46:cc:8d:47:be:29:31:95:16:f4:2a:ac:dd:ed:a5:7e:c3:
c7:82:7a:9b:a3:d3:4a:06:d1:26:63:8e:a7:75:ce:8d:13:7c:
2e:4d:ad:27:9c:c1:27:fd:22:f8:46:f9:2a:5b:84:4b:5b:3a:
8e:31:eb:bd:a0:69:22:27:b7:4e:cd:8b:b6:f1:8f:fc:bb:59:
63:5d:65:44:84:b6:cf:13:39:fe:35:99:a3:a0:fd:47:97:e0:
90:a4:27:05:90:d8:d7:43:ef:6d:70:d3:2d:0c:19:1b:bd:60:
f4:44:8e:8b:f1:8a:aa:a5:ae:64:51:23:e3:18:13:d3:9e:c0:
b5:3c:82:61:26:73:c6:4d:2d:b1:0f:26:1a:9c:5e:3d:ca:cf:
d6:ca:e0:1a:44:a9:3c:0d:69:d8:ff:e2:71:77:87:e6:c1:b6:
b5:11:fa:3b:6a:64:3f:0b:ab:8b:b0:db:18:40:5b:41:11:d3:
ee:1d:bd:c5:a5:96:d0:0a:35:e3:77:3e:90:15:0e:a8:69:1e:
5b:82:23:53:6a:69:e3:80:8a:65:d5:18:07:50:6b:ac:44:0c:
9a:8d:4d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 14:55:45 2025 by rpki-client