Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer
File: punLpSnAWpYkymA1SKPjFJF1jys.cer (raw, json)
Hash identifier: MIkquOe1ySAdUAcIwyP2ImhHUKr/nhf13r1n8tcmCgE=
Subject key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6B6C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 Sep 2025 06:13:18 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 160.30.176.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 27 Oct 2025 16:20:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27500 (0x6b6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Sep 25 06:13:18 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4f:f4:bb:bd:32:a8:aa:69:e1:de:0b:26:c0:
ee:e0:01:8d:e5:65:54:81:d3:c2:d9:05:70:75:19:
6e:b1:02:7d:93:4b:1b:9a:6d:35:9b:83:d1:cc:e5:
dd:d7:dc:63:b5:ca:9e:6d:92:0d:6b:cf:e1:5e:e4:
2c:0c:b7:22:19:92:83:88:db:be:66:13:eb:2e:df:
bd:29:ef:36:f7:d4:88:c2:5b:8a:02:47:e3:75:14:
25:8e:50:72:9c:fe:9f:c2:08:2e:ef:e2:a3:5a:2d:
41:ef:22:c6:41:d8:10:c7:ca:0d:e4:62:2b:6e:cf:
b4:74:8b:4a:0c:6b:04:01:a0:70:be:86:1f:a9:d7:
76:12:fa:6f:2d:3e:24:e3:54:6e:8b:9f:3d:35:f1:
51:25:bc:fb:3c:cf:07:37:3c:58:ad:40:df:55:1f:
db:dd:fd:ab:e0:d9:18:1f:d3:12:f4:64:3f:6b:79:
b3:5e:01:68:6a:2e:c4:3e:61:ee:58:37:c3:2a:1e:
3e:4e:96:bb:38:52:3d:93:70:a0:e0:6c:e8:e6:da:
a9:8e:75:a8:f0:32:e4:f0:a1:79:8a:30:53:ca:27:
ba:aa:76:6c:76:b2:b9:87:d8:6b:86:a0:b9:9f:b6:
ae:47:e9:f5:50:49:23:9b:72:86:b1:90:d4:86:42:
1a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.176.0/23
Signature Algorithm: sha256WithRSAEncryption
89:7c:d6:f8:34:4f:44:7c:63:9b:72:10:ff:bd:1e:c1:a7:30:
56:76:dd:ac:63:99:7a:7d:c1:f4:8a:81:66:1e:00:71:63:e8:
36:2b:be:5f:54:e0:c7:08:bb:d3:13:27:3a:b2:f7:50:df:3a:
bf:69:47:71:1e:7a:44:b2:ff:29:47:dc:cf:27:4f:67:16:96:
7b:d2:cd:7d:d3:90:fd:95:20:34:1a:e3:60:1a:e1:ff:76:7e:
fe:25:48:a6:43:5d:15:97:65:14:50:f8:80:1f:4c:cd:dc:45:
68:f5:e1:c8:4d:33:7c:25:8b:bf:45:52:ab:ce:9d:bf:46:29:
7a:c1:7b:09:9b:08:6b:4d:15:46:a6:d7:d1:fe:c8:85:13:97:
f9:30:a9:55:7a:4f:4f:96:e3:5b:fa:45:f8:75:d0:a8:c0:62:
3d:d9:b3:b0:c1:5a:ae:4a:32:4b:cc:1b:44:77:90:7f:4d:90:
ed:e5:d6:fb:ed:3d:73:28:e1:94:ec:db:b5:79:cc:70:65:27:
c3:68:21:a9:0d:00:28:6e:51:e7:e8:c6:3c:dd:38:cf:4b:42:
37:e2:78:60:c6:51:09:04:ae:c2:37:fc:ab:e9:71:70:40:a0:
24:38:ef:3f:f5:6a:65:8d:ba:45:7f:6e:12:58:5e:09:5d:71:
2d:76:49:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 17:55:13 2025 by rpki-client