Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer
File: UqHEINgnwWzqoEKD3Si2QKMVY00.cer (raw, json)
Hash identifier: TH5DJ3F01OunF+dx5Ff8zv9HIKTO5GFjIUjhzHh/s9Y=
Subject key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6751
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Jul 2025 06:21:03 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: IP: 165.101.100.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Jul 2025 03:15:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26449 (0x6751)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jul 1 06:21:03 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0f:7e:bc:a2:5f:ef:1b:14:36:0a:ff:af:d4:
ef:b7:08:dd:07:fe:3d:e1:d3:44:12:54:2e:f0:3d:
c4:71:30:48:ef:05:6c:61:91:bd:c9:b7:de:f3:b8:
0e:be:b1:d6:20:16:d6:8a:04:50:be:ee:90:f5:38:
b0:1e:eb:45:56:48:5c:a8:f8:d7:94:61:fe:4a:39:
83:80:87:a9:4d:30:50:05:df:d5:40:d4:96:33:1f:
d2:8b:fe:f6:44:ae:ee:59:0b:58:00:e5:73:0f:c9:
1e:d1:83:be:2e:6f:5e:91:80:bd:34:22:7f:54:f5:
d1:cf:a8:de:39:34:ed:ce:7e:fd:2c:6d:2f:14:ed:
a0:c1:20:9f:27:2d:d8:06:bd:b2:b7:01:b1:d9:e1:
ff:cd:b3:8d:e4:ac:7f:0b:49:e8:ab:63:58:fc:5e:
71:9d:7e:3c:81:25:46:21:3e:2e:ae:7f:01:5f:32:
cc:85:44:41:9d:99:05:db:60:ae:51:d0:03:b5:5e:
48:fe:69:6d:6b:a8:e4:c0:ed:c1:af:23:a1:9e:30:
7f:61:00:28:9c:45:41:f6:46:06:b1:47:cf:2e:c5:
49:59:84:21:28:0a:dd:51:71:1b:ec:55:60:45:c7:
66:cb:d5:c1:d6:f5:78:74:d5:8b:f0:81:a8:2b:27:
d8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.101.100.0/23
Signature Algorithm: sha256WithRSAEncryption
44:7b:70:3a:40:2c:69:7f:6b:94:9f:0d:08:6f:4c:82:33:45:
9f:5f:be:1c:e0:64:93:88:e4:b6:63:15:b5:a4:b9:56:03:c1:
fa:8d:a6:bd:4a:bb:14:cb:24:6e:66:70:42:27:fe:2e:aa:23:
fe:80:cd:e5:8e:40:59:89:f6:af:ac:24:a4:16:a1:f2:14:26:
cb:5c:72:92:98:25:33:cb:c9:5d:e4:07:6d:74:5f:b2:b5:67:
a6:3d:ad:77:7e:af:4f:8e:80:ac:cd:76:27:9e:db:f6:ab:3e:
59:64:e6:ea:17:e3:ef:7b:ca:f7:c3:2c:c0:45:33:1e:7d:da:
2c:ce:0a:f3:5e:00:f3:b8:4c:ac:19:e9:7a:76:6b:f4:d7:10:
52:b0:de:bc:8e:5b:61:10:06:94:9a:25:dd:bb:83:31:00:a3:
79:9c:3f:13:01:d2:c0:d8:48:99:bc:9a:c0:18:63:0d:5c:b2:
28:36:0c:b1:55:2d:55:ab:e9:7d:8f:bf:51:52:3d:e8:e0:5c:
0b:1e:c4:fb:8f:0a:7e:b8:4a:51:55:26:62:0b:72:bb:04:ac:
7e:32:e8:3e:88:4b:84:08:e3:68:b0:8c:1a:1f:37:41:47:9a:
b0:d5:6d:6a:ea:fe:90:6d:18:c2:da:3d:d1:53:9f:73:fd:49:
31:f6:fa:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 13:36:57 2025 by rpki-client