Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer
File: rbmJeP11H5nZqOsq5y08DFUEU6Q.cer (raw, json)
Hash identifier: wak2gdGRgcfl4wlOVcWT1+Ke8fmqXgc0HK9FSiDRA6Q=
Subject key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4D79
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 22 Sep 2025 16:25:04 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 213.170.156.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 26 Oct 2025 19:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19833 (0x4d79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Sep 22 16:25:04 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A91DCD09, serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:78:88:48:de:f3:9c:b7:ef:cc:30:8c:72:c7:
6e:fc:8d:2c:84:54:06:55:cc:e2:54:08:a0:84:5c:
95:38:a9:4e:7a:28:ef:b5:96:db:bf:e5:ec:fb:06:
24:96:bc:4f:43:f4:67:f2:54:68:a0:62:99:22:cc:
ea:e6:19:32:e7:86:ef:d8:33:0d:15:1f:b5:a4:2e:
43:91:b9:9a:e6:b6:f9:ae:61:b4:75:f8:37:01:f3:
c8:13:24:49:49:8d:7d:d7:b1:e3:4a:67:3a:fc:59:
ed:b0:0e:6f:9d:70:47:d8:46:3f:45:37:c9:2b:d2:
51:71:44:03:93:bd:4d:5c:d9:77:c4:e6:3d:57:34:
1d:ac:f9:fc:77:58:81:3e:37:ad:21:23:36:93:80:
7a:5d:ed:9f:16:67:af:47:0c:fd:55:4c:2b:d6:57:
35:9f:24:4a:09:44:8f:62:8c:73:96:52:d1:7d:41:
7a:33:b9:b7:d1:ac:19:99:9c:4c:e0:1c:80:c8:f0:
61:8f:28:4e:e2:fe:c9:87:f2:3a:59:c1:50:47:d6:
60:95:19:11:23:e9:3e:0a:1e:08:3f:f0:9e:87:31:
e8:f8:c2:9a:b7:de:8d:24:c0:e5:7e:bc:7f:46:31:
06:00:84:3a:ef:33:95:a3:17:05:bb:0e:25:e0:e7:
bf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
213.170.156.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:5a:a6:a0:28:62:39:15:fc:0e:60:ae:e7:88:42:cc:ac:c5:
66:bd:fc:c2:cd:87:9d:59:4d:14:8a:9c:f9:28:60:31:7b:c4:
8e:6d:61:74:ba:73:16:52:a1:f5:b0:2f:b1:63:b8:cd:f1:32:
10:98:a2:1d:6e:b4:7f:f4:b4:14:9d:9d:f3:02:14:3f:f1:4b:
ee:6e:c6:47:3d:2a:2f:33:8e:54:11:5b:3c:77:2d:b2:c1:44:
68:3e:04:85:c0:eb:b3:e6:65:33:9e:6b:5d:cd:0e:51:60:f9:
30:95:b2:c2:e3:71:0e:60:36:89:4c:14:e9:b5:22:6c:d9:b5:
e5:43:41:9e:11:52:04:7f:5a:d2:9a:d4:6c:5d:7a:f6:3b:5b:
c7:a7:8d:f1:a4:cc:ab:5f:8c:89:e4:6a:de:fc:63:e3:d5:f3:
ea:56:c7:a3:71:88:19:43:17:b2:9f:0b:35:b3:aa:7b:99:b6:
db:a3:f8:69:da:c8:6a:1a:76:3c:43:bd:5c:67:a5:be:8b:c6:
b4:fc:ec:d4:83:49:2b:91:4e:ca:44:f4:34:e0:4e:94:a9:21:
31:43:1a:d2:f5:57:9d:60:ae:d9:ee:8a:59:fc:eb:90:ae:1a:
ab:d0:d0:cc:a4:0e:a5:c7:24:02:02:5b:bf:3d:f9:82:40:a6:
bf:cc:16:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:21:40 2025 by rpki-client