Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer
File: aFlbmOTCezC6ozHOqscmF2fLkus.cer (raw, json)
Hash identifier: n55o8bHQ7XFWZVrdRBBnMsXgWu78GfTa134Yu8eYZXM=
Subject key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024EDE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 18 Jun 2025 12:32:32 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 24541
AS: 58740
IP: 27.54.128.0/20
IP: 202.164.16.0/21
IP: 203.30.44.0/22
IP: 203.82.208.0/21
IP: 2402:8000::/32
IP: 2402:9f00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 06 Jul 2025 06:03:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151262 (0x24ede)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 18 12:32:32 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:81:e6:9d:5b:6f:60:99:13:1e:be:d6:a4:94:
3f:9e:19:88:5f:45:dd:70:d5:34:da:06:6a:6f:6f:
70:c2:ef:cb:f1:58:35:fb:f4:ab:f3:bb:64:f4:e5:
53:04:55:7c:e3:12:30:9f:f2:a0:d3:a0:94:b1:49:
87:19:c5:08:39:a1:ac:18:be:a7:51:67:df:41:7e:
6b:74:e5:25:76:81:7a:30:84:e5:f7:fc:63:cf:8b:
6e:5b:12:ed:be:2d:39:24:0e:19:30:2e:d0:b3:2f:
00:ab:3e:3e:5b:33:84:ef:b2:6e:82:2c:ff:5d:ae:
67:75:1b:c6:9b:75:56:43:82:97:2c:27:9a:e5:4c:
9a:58:97:5b:bd:d7:b7:6e:72:13:96:74:44:7c:98:
c3:de:5a:3b:a0:66:77:58:c6:04:b7:8b:fa:30:e4:
ac:74:4b:7c:ee:6c:db:d8:37:b5:ff:48:35:67:d6:
27:ee:23:21:38:f3:7d:9b:ac:80:b3:83:67:8a:5a:
4b:08:b9:9e:cd:c9:5d:7b:23:67:30:3b:67:b6:84:
d2:e1:fa:55:06:23:a3:ce:93:a6:c8:b6:7b:9e:7c:
d3:1e:86:b6:f1:54:85:a4:31:05:71:15:87:cc:e3:
4b:0f:07:c3:70:77:a4:08:be:a5:b9:0a:04:4a:a5:
05:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24541
58740
sbgp-ipAddrBlock: critical
IPv4:
27.54.128.0/20
202.164.16.0/21
203.30.44.0/22
203.82.208.0/21
IPv6:
2402:8000::/32
2402:9f00::/32
Signature Algorithm: sha256WithRSAEncryption
bd:e8:36:39:e0:11:55:62:5f:6a:eb:f3:ee:a9:ca:35:24:75:
c5:5c:73:c9:0b:38:52:f7:26:92:c5:39:be:c4:ab:92:8d:42:
b0:77:8c:0b:eb:78:d7:4b:10:bc:88:c9:0b:dd:18:f8:94:ae:
46:e8:56:c5:5c:eb:ac:ee:0e:ff:73:8a:b7:2a:33:29:87:32:
7f:66:31:54:e6:92:f9:df:38:c4:2f:22:92:e7:48:dc:41:5e:
c5:83:5d:36:b2:de:a4:a7:58:64:17:0b:ca:4c:90:75:f3:33:
e6:ed:3c:90:bc:ac:68:88:6f:81:ec:d7:a6:4f:02:a0:64:1c:
33:6a:77:b3:fb:15:4d:80:28:7a:00:a7:c1:36:4b:df:d1:d3:
0c:60:60:c4:8f:71:e2:3c:74:b8:0f:5d:11:b2:8a:27:29:7b:
6f:ed:64:58:a9:62:7a:06:c4:a3:5b:df:b2:7f:55:2c:ba:e1:
93:9c:f3:96:74:2b:2b:0f:50:32:0a:6e:39:c2:c6:31:22:bd:
01:9a:f2:77:7c:86:da:8c:d4:b4:0f:1f:e5:73:cb:fc:d2:d8:
42:b0:6c:74:88:01:ec:38:1c:68:e2:ba:0c:45:77:46:1f:40:
6f:c5:06:bb:46:d4:07:bb:22:14:0a:ca:c2:71:23:2c:a8:a8:
6e:98:f0:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:31:26 2025 by rpki-client