Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer
File: XPuiiRbqwHsjWQlIVdieFqCBS6w.cer (raw, json)
Hash identifier: 6X4a1ZtcymXwBIlpwvoPvb4ITyavdSGdRvxqOWSorCw=
Subject key identifier: 5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02425F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 29 Apr 2025 18:46:38 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 55497
IP: 59.153.40.0/22
IP: 103.4.114.0/23
IP: 103.198.32.0/23
IP: 202.9.66.0/23
IP: 2401:ef00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 11 May 2025 18:51:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148063 (0x2425f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 29 18:46:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A918E843, serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:da:7d:99:8a:d9:ec:16:e6:bb:20:44:80:2c:
72:0d:22:69:a3:7f:59:d0:7b:ba:91:a4:a2:6e:f8:
29:68:5f:81:0d:db:06:14:14:31:bb:e7:aa:5c:dc:
b8:de:6e:8f:7c:83:2d:41:fc:c2:78:15:c6:c1:35:
15:86:d4:7f:11:03:00:81:36:33:92:3d:52:f7:ed:
99:f0:48:41:dc:a4:6e:62:2e:fe:70:ce:6d:e2:ff:
81:4a:cb:e0:ce:8a:4b:07:f3:65:8b:04:ce:b4:3b:
6b:b6:1e:43:b4:ab:ad:72:bc:74:4a:8c:4e:0e:27:
4a:0e:24:88:8d:01:40:bc:71:d0:80:13:9b:6f:34:
d3:47:f7:bf:1c:e6:0d:f6:df:1d:71:e2:5c:e1:e7:
fb:36:d8:ed:8b:38:12:88:2c:ec:0c:9c:49:43:bf:
f1:80:b8:51:68:77:e0:34:a1:59:3c:46:f1:2c:4e:
cb:c0:09:d4:05:51:be:3f:e1:98:2a:ce:2c:31:8d:
75:39:58:70:10:6f:e7:98:c2:6e:94:e7:11:c0:30:
23:78:3a:a2:5b:e7:e0:44:b5:f8:7a:35:8e:d4:39:
f3:95:bf:69:04:89:76:b0:0b:6b:f3:7e:34:6d:1a:
af:6f:de:fc:4a:02:90:1b:0b:a0:c8:00:17:8f:f5:
24:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55497
sbgp-ipAddrBlock: critical
IPv4:
59.153.40.0/22
103.4.114.0/23
103.198.32.0/23
202.9.66.0/23
IPv6:
2401:ef00::/32
Signature Algorithm: sha256WithRSAEncryption
c9:66:86:a8:e9:70:37:d4:5d:df:b3:26:88:76:90:1b:0b:41:
7f:f6:8b:2d:38:9f:cb:d2:e6:2a:cc:02:0a:06:ee:53:0e:6d:
c5:6d:29:89:ec:ca:f8:92:d4:c6:a2:8a:8b:61:08:ca:f2:cc:
9a:08:fb:38:49:62:4a:b3:fb:f8:d5:ed:d2:a4:dd:8d:90:41:
ba:8f:ec:2d:69:96:24:f9:be:61:42:09:e0:81:47:29:06:ce:
bc:f1:64:30:d0:c3:62:04:7a:16:94:2b:45:7c:21:1f:40:be:
ba:08:3e:4e:08:4a:0d:96:72:b3:50:48:68:64:f6:fb:a6:06:
5b:f8:66:5e:3c:3f:55:48:6c:36:ff:e6:6b:fd:91:d7:cf:6e:
d5:c5:7b:d7:ea:7f:ef:31:99:0b:78:f8:29:1b:aa:fb:62:3e:
c3:96:f0:9f:c5:c2:08:f0:2c:83:62:53:10:70:6b:1e:6a:7d:
1b:73:3b:be:22:fd:52:35:53:40:f2:b0:de:9b:ea:01:c1:c5:
8b:bf:be:82:ba:c8:c5:ae:16:33:2f:13:f5:e3:4f:41:fa:e9:
2d:44:e8:f3:32:cd:f6:e9:63:36:ea:ea:18:fe:a4:5e:3b:26:
23:1a:bd:9b:11:46:45:67:c4:e2:39:73:57:76:4b:5b:9f:23:
2b:90:fa:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 21:55:47 2025 by rpki-client