Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer
File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer (raw, json)
Hash identifier: EQKS3QDesg7DOSDWJNs3Jivxfikl/4UzcWUqgR2e5hI=
Subject key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4C3F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Jun 2025 19:23:36 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: IP: 188.95.8.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Jul 2025 02:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19519 (0x4c3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Jun 30 19:23:36 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:36:ea:ff:55:34:87:ef:17:ef:5c:2f:ac:83:
ce:5b:4b:fc:19:ef:5a:69:bc:79:2e:64:cd:46:58:
b9:36:33:82:7c:21:ae:13:54:e7:9c:90:ef:54:fc:
ac:a3:e0:a3:0d:0d:a0:f3:78:10:ba:e7:e6:a4:d5:
cc:e8:24:57:fa:8b:a2:45:04:eb:b4:9e:0f:81:30:
f0:29:44:ee:8f:ec:61:96:dc:3a:94:40:c6:ad:fc:
f1:61:27:de:a9:6f:5a:44:34:e8:e9:73:a4:ea:00:
00:1e:e2:2e:0f:cc:fb:a1:27:eb:15:71:43:53:b5:
73:a8:0f:f3:ae:bb:d2:12:c1:41:e8:34:ea:f6:54:
3f:b8:7c:e3:12:74:b4:bc:ab:71:fa:ec:2f:42:b9:
f3:7b:ff:45:d2:f6:9c:56:c8:df:c2:f0:0b:de:66:
96:dc:97:9e:9c:25:74:10:ee:47:8a:ae:09:7b:91:
8b:c4:76:c4:de:35:0b:b0:26:4d:83:fd:02:59:8f:
7c:8d:a8:a2:38:3f:57:c5:96:c3:ba:2c:50:56:5b:
fc:6e:93:14:f5:af:5a:75:e8:5a:71:f4:3c:a3:1f:
65:57:e8:98:9e:8d:a0:3d:9d:68:7f:f7:38:97:95:
0d:2c:d4:99:d0:90:c2:75:c2:f5:1c:5e:39:00:b6:
d3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
188.95.8.0/22
Signature Algorithm: sha256WithRSAEncryption
d2:88:d5:6a:0d:fc:84:cd:97:06:5d:c1:23:57:b0:f9:85:12:
c3:5d:df:9b:9e:04:94:c0:0f:d7:87:f6:ca:90:99:61:16:72:
b0:bd:cd:a2:23:0e:99:6f:4c:4e:0b:72:29:a0:8b:f8:92:5f:
cc:f8:4c:d0:3d:b4:2a:7c:68:8e:e6:33:04:7d:c8:0a:da:c5:
b2:4d:37:08:6e:de:b6:44:5e:db:6a:07:63:6b:fa:80:d2:61:
5d:0f:75:c6:71:4f:15:d7:f5:f4:ee:8c:64:f2:96:84:6c:c6:
54:31:b9:87:f7:b0:40:ce:e0:36:c7:df:b6:53:30:d2:49:4c:
c2:5c:03:58:4c:c7:a2:9f:aa:39:0a:bd:f0:24:12:62:13:da:
d7:ea:b3:cd:0c:fd:69:10:2f:78:34:ec:42:67:e6:7d:00:05:
c6:b6:90:b0:3b:23:03:a9:a9:14:b0:4a:d7:34:09:87:62:43:
02:a5:ae:66:40:61:48:9a:d0:70:de:b4:cd:76:00:29:39:bb:
66:ea:b4:80:3f:c8:2e:3b:3d:eb:04:29:bd:2a:81:84:09:cc:
7b:e0:32:83:b4:3b:a0:27:7c:e7:4c:72:f7:11:fa:5b:31:a0:
0a:8a:b0:f3:3c:8d:a1:d5:8c:fe:f5:33:b8:0b:18:65:a4:57:
26:69:2e:44
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICTD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjUwNjMwMTkyMzM2WhcNMjYwODMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE4MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5
MDEzRTkwRDVGNTNDNUQwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMs26v9VNIfvF+9cL6yDzltL/BnvWmm8eS5kzUZYuTYzgnwhrhNU55yQ71T8rKPg
ow0NoPN4ELrn5qTVzOgkV/qLokUE67SeD4Ew8ClE7o/sYZbcOpRAxq388WEn3qlv
WkQ06OlzpOoAAB7iLg/M+6En6xVxQ1O1c6gP86670hLBQeg06vZUP7h84xJ0tLyr
cfrsL0K583v/RdL2nFbI38LwC95mltyXnpwldBDuR4quCXuRi8R2xN41C7AmTYP9
AlmPfI2oojg/V8WWw7osUFZb/G6TFPWvWnXoWnH0PKMfZVfomJ6NoD2daH/3OJeV
DSzUmdCQwnXC9RxeOQC206kCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBQkU858QlPb
ssesPSkBPpDV9TxdCTAfBgNVHSMEGDAWgBQM/Od4V/zwHznZmmK0qmLmFZ52+DAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2
MTFFMkEzRjI3RjdDNzJGRDFGRjIvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZn
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9EUHpuZUZmODhCODUyWnBpdEtwaTVoV2VkdmcuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
ODIwQ0MvQkRENEFGM0MwQkQ5MTFGMDhDNjA3Rjg3QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTgyMENDL0JERDRBRjNDMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpU
MjdMSHJEMHBBVDZRMWZVOFhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEArxfCDANBgkqhkiG9w0BAQsFAAOCAQEA0ojVag38hM2XBl3BI1ew
+YUSw13fm54ElMAP14f2ypCZYRZysL3NoiMOmW9MTgtyKaCL+JJfzPhM0D20Knxo
juYzBH3ICtrFsk03CG7etkRe22oHY2v6gNJhXQ91xnFPFdf19O6MZPKWhGzGVDG5
h/ewQM7gNsfftlMw0klMwlwDWEzHop+qOQq98CQSYhPa1+qzzQz9aRAveDTsQmfm
fQAFxraQsDsjA6mpFLBK1zQJh2JDAqWuZkBhSJrQcN60zXYAKTm7Zuq0gD/ILjs9
6wQpvSqBhAnMe+Ayg7Q7oCd850xy9xH6WzGgCoqw8zyNodWM/vUzuAsYZaRXJmku
RA==
-----END CERTIFICATE-----
Generated at Thu Jul 3 09:27:04 2025 by rpki-client