Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer
File: ez9hV-mX7xfKUH5mEH_Ino4-ORM.cer (raw, json)
Hash identifier: RPwFcOqeQ1stsShb5FOtklDPKLasudWjAt9jTUru/3o=
Subject key identifier: 7B:3F:61:57:E9:97:EF:17:CA:50:7E:66:10:7F:C8:9E:8E:3E:39:13
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024426
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 May 2025 22:08:30 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 152681
IP: 202.36.28.0/24
IP: 2001:df3:a4c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 19 May 2025 21:34:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148518 (0x24426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 5 22:08:30 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9157B93, serialNumber=7B3F6157E997EF17CA507E66107FC89E8E3E3913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:60:98:98:d4:3b:4b:75:8d:cd:54:93:4c:60:
07:6d:b7:51:40:9a:86:2c:8c:ae:97:c0:c7:a7:34:
7a:6a:3d:73:9a:f9:de:a2:36:d4:20:a0:28:db:05:
3f:ec:16:8a:a9:ab:9f:65:14:c6:04:72:bd:4c:05:
02:5d:fe:5c:53:e0:3a:58:8c:d1:fe:61:df:51:9c:
9c:96:3c:24:f9:0a:17:f8:d1:fa:07:4c:ce:bf:25:
7c:02:82:1b:80:92:f8:98:cc:c5:b9:0a:c1:84:7f:
54:f0:de:2c:b1:2f:6b:c0:96:81:6b:10:47:cc:95:
a7:d7:ee:ce:1f:8f:0e:f5:17:03:19:e3:9e:93:3f:
ed:96:37:9d:7e:49:cf:57:97:cd:47:06:df:3e:cd:
0b:23:ad:27:91:2b:6b:b0:78:27:0d:40:c8:ec:1a:
41:b0:ac:be:a2:93:e0:9c:c7:5c:ff:84:7a:24:8a:
ec:05:9b:ee:5e:49:ba:d2:9a:a9:91:40:46:c8:b9:
f2:2f:27:ec:2f:69:59:c7:4c:24:0d:94:a0:05:4c:
7b:1c:fa:45:ca:76:33:93:a8:a2:7c:df:66:f3:80:
a4:43:7a:ca:c6:6d:a0:74:f2:6e:fc:98:5a:b3:be:
ec:af:00:1a:7a:5c:c8:19:88:4a:8c:9f:68:a6:be:
c7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:3F:61:57:E9:97:EF:17:CA:50:7E:66:10:7F:C8:9E:8E:3E:39:13
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9157B93/773DFB7229FD11F0BD552033C4F9AE02/ez9hV-mX7xfKUH5mEH_Ino4-ORM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152681
sbgp-ipAddrBlock: critical
IPv4:
202.36.28.0/24
IPv6:
2001:df3:a4c0::/48
Signature Algorithm: sha256WithRSAEncryption
69:cd:30:88:c6:ff:53:b8:05:ad:9a:bd:26:ac:3e:74:97:e9:
c0:2e:8b:25:ae:a2:c3:52:60:45:db:a6:45:5d:df:9c:e9:67:
03:b7:55:8b:93:d3:8c:0f:56:64:b1:c4:53:a0:42:fb:f2:79:
ea:d3:f8:29:e0:09:73:f3:47:ff:95:42:88:e9:a5:08:e7:44:
ce:e9:16:24:16:8f:0a:55:c9:38:6e:22:11:ea:41:11:f7:2c:
a2:39:19:02:00:52:6f:fe:58:b6:c0:a8:78:32:b4:f7:17:c3:
5c:1c:49:80:04:c2:9d:03:c0:e6:06:1b:c4:50:ef:15:c2:46:
c5:13:db:a2:dd:39:6d:16:1f:90:52:42:a9:46:9a:8a:9d:af:
b8:cc:08:9f:7d:9b:cd:9c:36:b5:ba:e8:31:5e:4c:a6:d2:ff:
d2:d5:ef:9f:b7:6f:c1:7c:f0:15:ce:f3:fd:e5:60:72:e8:6a:
1d:48:ed:7b:24:d7:2f:02:ad:33:c9:8a:ab:44:71:66:e5:cf:
a2:16:42:9c:3d:4f:ac:37:78:76:46:37:f8:89:03:d9:20:79:
e0:1b:12:3e:c5:e5:18:4b:cd:97:9e:b5:f2:dc:db:20:35:f3:
9d:7e:6c:16:8b:de:0a:f1:f0:ac:bb:a5:e7:47:16:91:27:36:
be:e8:5f:e2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue May 13 00:26:52 2025 by rpki-client