Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer
File: BQjL6atu5_Yp8eFzhfPg_e-MPTs.cer (raw, json)
Hash identifier: PpiskbJN8mj+fH3aObp14PXfBqfp4X4at+FTXDBbGLM=
Subject key identifier: 05:08:CB:E9:AB:6E:E7:F6:29:F1:E1:73:85:F3:E0:FD:EF:8C:3D:3B
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4B6B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 30 Apr 2025 16:55:48 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 85.113.70.0/23
IP: 91.199.209.0/24
IP: 164.152.166.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 21 May 2025 02:50:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19307 (0x4b6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Apr 30 16:55:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A917E0A8, serialNumber=0508CBE9AB6EE7F629F1E17385F3E0FDEF8C3D3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:13:9d:1f:7d:04:02:ad:69:e3:a9:a2:86:89:
b0:fb:2e:34:c3:63:9a:13:6a:e7:49:3a:49:3c:7e:
8f:99:d2:42:61:51:00:b2:a7:84:23:29:ca:60:8c:
dc:6e:05:20:78:62:60:dc:a3:d9:27:79:04:f3:9a:
ac:45:03:6a:e8:db:71:f9:9b:eb:0a:32:a8:a0:d4:
ea:8b:9c:d3:db:7a:c1:6a:35:b0:38:75:bb:08:92:
d2:d1:75:3c:03:bb:7a:35:7e:62:02:f1:ba:28:63:
4c:45:76:07:df:0d:d8:22:76:97:69:54:21:26:86:
e4:e1:c8:77:8e:98:41:1d:c6:65:eb:2d:73:ad:95:
ff:94:f9:7e:dd:13:60:e0:b8:7f:b3:f5:10:fe:b6:
1a:2d:c1:37:94:84:2c:c1:db:33:56:1d:f2:5c:19:
f5:9f:32:55:2f:82:fc:6c:f3:84:2c:15:1e:80:7c:
d3:a7:8e:10:95:7b:da:a3:07:a4:14:d4:95:24:7d:
70:5c:fa:d5:e1:80:0a:ec:13:62:8e:39:c2:c7:c1:
92:bb:f6:1e:4f:17:39:75:5e:52:17:00:e4:69:97:
7c:51:1b:e6:7b:29:7c:36:e6:60:05:1d:bd:8b:bb:
56:b0:e6:bf:36:da:b9:69:d8:0a:cc:66:b9:81:ad:
a7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:08:CB:E9:AB:6E:E7:F6:29:F1:E1:73:85:F3:E0:FD:EF:8C:3D:3B
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/0C47490AEAB311EB9811A465C4F9AE02/BQjL6atu5_Yp8eFzhfPg_e-MPTs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
85.113.70.0/23
91.199.209.0/24
164.152.166.0/23
Signature Algorithm: sha256WithRSAEncryption
32:9c:1b:77:74:8b:ed:51:68:6e:4f:b7:36:fe:c2:7b:f4:17:
ef:84:41:5c:bc:99:8f:e3:61:5e:20:9c:fa:88:74:d6:04:5a:
26:27:b6:25:bd:c3:c2:78:2d:75:6e:db:b2:eb:e4:1c:fe:9f:
df:17:62:1b:6a:b7:e0:d0:5b:08:39:23:be:50:9d:b9:4a:9b:
76:34:3a:07:ed:ef:fe:4b:3c:36:3f:d2:25:04:ea:4f:90:16:
07:d5:6a:92:5c:70:fb:53:95:7f:29:b6:23:84:f2:71:c1:07:
b4:3a:47:70:38:c6:dc:62:2e:2d:05:39:2e:19:62:7d:b0:77:
5a:7c:62:72:cb:fa:59:c1:53:cf:bd:5a:58:ae:4f:31:7c:f7:
31:92:f0:f2:1d:99:92:ae:0c:58:11:b8:50:cf:2f:91:fa:f1:
a1:4e:70:c8:dd:a5:47:6d:2e:32:51:92:be:e4:8b:b4:b8:b2:
10:3b:89:23:80:a8:d6:7c:1a:6f:01:16:85:6a:dd:15:ff:ac:
5a:94:fd:f3:5c:b3:45:6f:3c:ea:da:88:a6:ae:a1:67:b2:18:
de:3c:05:ec:eb:18:77:9e:f4:c5:ca:46:e0:e9:47:5a:18:39:
4a:22:dd:db:0e:44:3d:10:f6:ec:29:8b:30:82:46:7a:13:21:
fd:99:e9:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 08:27:37 2025 by rpki-client