Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer
File: kXkVGVyXGrRB_d7eb_PNNy51TLU.cer (raw, json)
Hash identifier: Rfm3V8BLAvQgH+cnfgcNzHE99tCXFV3nFXeShIhvgsw=
Subject key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4B7F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 May 2025 18:26:01 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 194.233.64.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 23 May 2025 02:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19327 (0x4b7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: May 6 18:26:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:de:56:6f:2b:48:0f:84:d8:d6:18:6e:bd:24:
36:1b:39:7d:08:5c:83:6e:35:b5:e8:aa:bd:b3:da:
ec:89:77:80:7c:86:99:65:6c:8d:2e:3f:0d:d6:35:
86:5a:6b:21:fb:bd:d7:d1:9b:19:c2:a4:4f:e8:20:
5e:10:ad:7d:b6:0b:91:bc:c7:d4:54:22:f7:58:5e:
61:9e:20:f4:78:dc:56:a6:3f:78:a0:32:08:d7:7c:
2b:d0:f4:5b:d8:ba:01:ce:de:b2:2f:a9:6b:a3:92:
8a:8c:7a:c1:af:c9:6e:bb:81:86:cb:13:06:f4:7e:
2f:b1:6d:06:37:0a:b2:8a:24:b4:41:f0:11:ff:d2:
16:da:96:8d:84:63:4e:ec:f8:f1:10:72:0c:81:09:
24:9b:b1:b2:24:6a:b5:64:a0:29:0b:e6:b6:53:23:
5e:01:ff:3a:0b:a7:4e:1c:69:75:3d:45:e5:ab:14:
59:df:1d:33:08:e7:da:97:ea:9c:f2:bb:ba:b2:9f:
b2:e0:7a:15:59:d6:9b:e2:de:7f:bf:43:49:06:3e:
6f:c5:d2:b5:1f:48:fa:10:da:99:90:f8:45:f3:e4:
9a:c7:ce:82:9b:e0:03:97:62:1d:ef:34:56:cf:c7:
09:26:1e:30:46:91:3c:1e:0a:c9:6c:ce:ef:a0:30:
55:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
194.233.64.0/19
Signature Algorithm: sha256WithRSAEncryption
cb:28:c5:be:cb:b7:fb:2f:ec:ca:5f:53:a1:a9:2a:90:37:a0:
ce:59:61:9f:8a:24:9e:84:9c:65:87:ca:48:8d:d6:9e:13:51:
67:e0:b8:65:ec:c2:74:96:41:32:d0:07:5d:82:f4:fd:fd:a9:
5b:60:9e:24:49:cf:a8:28:84:69:e6:49:de:84:9a:9c:ed:22:
ac:c5:3b:32:21:ab:86:bd:ea:a6:3c:09:5b:c0:61:60:94:5c:
cb:aa:25:79:2f:1b:9c:df:a7:5d:96:5f:a8:81:6e:96:3f:38:
2d:f0:88:98:a3:6a:5a:da:b1:ba:d7:b0:dc:a2:75:89:05:ed:
a8:a2:d7:b6:bc:6e:bf:b0:8b:63:30:a0:88:7b:09:d9:09:08:
31:42:79:6a:0b:23:af:20:2a:b6:8b:16:60:92:b2:1f:59:9d:
1e:1f:57:d3:1c:e9:a6:1d:b0:7b:98:0d:d7:c0:9e:63:59:83:
d9:89:f9:bd:a1:4e:2b:bd:e3:91:99:8f:1d:8a:10:09:eb:e3:
e3:8e:d8:d7:40:2e:c6:10:dd:b6:eb:a8:7b:b5:3e:83:91:95:
58:40:3c:7f:25:b4:5a:0e:fb:2b:a7:b8:9a:0d:94:53:bc:97:
dd:ef:cc:ac:94:2a:6b:1e:8f:30:89:6f:37:91:7f:22:a6:af:
b3:8c:ea:0e
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICS38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjUwNTA2MTgyNjAxWhcNMjYwNzAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE3OTVDQTExMC8GA1UEBRMoOTE3OTE1MTk1Qzk3MUFCNDQxRkRERURF
NkZGM0NEMzcyRTc1NENCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AKXeVm8rSA+E2NYYbr0kNhs5fQhcg241teiqvbPa7Il3gHyGmWVsjS4/DdY1hlpr
Ifu919GbGcKkT+ggXhCtfbYLkbzH1FQi91heYZ4g9HjcVqY/eKAyCNd8K9D0W9i6
Ac7esi+pa6OSiox6wa/JbruBhssTBvR+L7FtBjcKsooktEHwEf/SFtqWjYRjTuz4
8RByDIEJJJuxsiRqtWSgKQvmtlMjXgH/OgunThxpdT1F5asUWd8dMwjn2pfqnPK7
urKfsuB6FVnWm+Lef79DSQY+b8XStR9I+hDamZD4RfPkmsfOgpvgA5diHe80Vs/H
CSYeMEaRPB4KyWzO76AwVcsCAwEAAaOCAvMwggLvMB0GA1UdDgQWBBSReRUZXJca
tEH93t5v8803LnVMtTAfBgNVHSMEGDAWgBQM/Od4V/zwHznZmmK0qmLmFZ52+DAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2
MTFFMkEzRjI3RjdDNzJGRDFGRjIvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZn
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9EUHpuZUZmODhCODUyWnBpdEtwaTVoV2VkdmcuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Nzk1Q0EvNjM0NzM3NTY5ODA2MTFFQkE4N0UyNzY1QzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc5NUNBLzYzNDczNzU2OTgwNjExRUJBODdFMjc2NUM0RjlBRTAyL2tYa1ZHVnlY
R3JSQl9kN2ViX1BOTnk1MVRMVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEBcLpQDANBgkqhkiG9w0BAQsFAAOCAQEAyyjFvsu3+y/syl9Toakq
kDegzllhn4oknoScZYfKSI3WnhNRZ+C4ZezCdJZBMtAHXYL0/f2pW2CeJEnPqCiE
aeZJ3oSanO0irMU7MiGrhr3qpjwJW8BhYJRcy6oleS8bnN+nXZZfqIFulj84LfCI
mKNqWtqxutew3KJ1iQXtqKLXtrxuv7CLYzCgiHsJ2QkIMUJ5agsjryAqtosWYJKy
H1mdHh9X0xzpph2we5gN18CeY1mD2Yn5vaFOK73jkZmPHYoQCevj447Y10AuxhDd
tuuoe7U+g5GVWEA8fyW0Wg77K6e4mg2UU7yX3e/MrJQqax6PMIlvN5F/Iqavs4zq
Dg==
-----END CERTIFICATE-----
Generated at Fri May 16 09:55:10 2025 by rpki-client