Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer
File: yAlz0WzMyeGME6aIAz3E0PDmHEo.cer (raw, json)
Hash identifier: zNeSXVL26CDWYf0g1vpCmHStXFSU3kcz5B7LZvihTjk=
Subject key identifier: C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024F4A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Jun 2025 04:05:12 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 203.56.195.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 06 Jul 2025 06:03:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151370 (0x24f4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 20 04:05:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91657FE, serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f3:6f:b9:0c:db:1b:e7:3f:c5:12:4a:48:20:
7d:2b:12:c1:0f:f9:9d:30:12:a6:27:e6:ff:1b:18:
04:2d:09:c4:0b:37:0d:f6:88:14:a4:a1:7e:0a:3f:
b8:40:26:ef:5f:ed:80:0b:96:cc:ac:31:c5:dc:c2:
5a:9e:8f:e8:d1:79:bf:b7:0f:17:7d:c3:fc:01:99:
d4:09:5f:1a:66:66:d8:eb:4c:09:d0:39:b6:53:88:
12:47:11:ea:33:35:7e:8e:74:66:75:3b:07:c2:e8:
4c:0a:75:2f:7f:ee:f8:e5:33:ff:8a:54:20:0d:4d:
c7:02:64:61:54:05:de:e0:d3:2c:0e:ac:d0:e3:9c:
22:42:58:2f:7d:29:4a:bc:30:8c:65:91:a9:4b:59:
b3:e3:7e:34:1c:36:09:eb:30:a8:e3:e4:97:6a:21:
e7:f1:cb:fa:d1:ed:bc:f5:ba:e8:d5:e5:de:5a:1a:
32:dd:3e:17:8f:a4:f1:9b:8c:a2:10:ff:9a:cc:98:
32:e6:93:a3:10:56:c7:c8:e5:d9:cc:f4:47:b5:d4:
cc:52:ae:1d:bc:e2:5b:12:b7:fb:61:36:79:67:aa:
91:83:a8:dd:19:8e:85:90:85:18:fd:9b:dd:8a:2f:
6e:fe:4b:98:ca:f8:95:fd:da:09:27:23:01:6a:be:
e7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.56.195.0/24
Signature Algorithm: sha256WithRSAEncryption
23:85:e9:87:0b:bb:97:6e:ed:0f:8f:a3:f7:55:29:03:2b:e1:
5a:37:a8:42:e6:17:a4:b9:44:03:c4:0e:bd:92:a5:b8:41:76:
0f:e2:07:8c:fb:e4:5a:61:e3:e9:35:22:06:43:67:8c:97:f2:
8b:b6:c1:42:d6:c7:40:77:b7:e9:8c:c3:48:62:bb:83:2e:84:
18:4c:71:c5:2f:84:4f:2b:f0:96:12:33:c8:2d:9e:51:ac:74:
bf:f6:10:69:c9:ff:5d:64:48:65:3e:1a:c5:de:3d:7f:46:ed:
a3:53:aa:fb:5a:b6:d4:78:06:46:14:c3:42:10:ed:8d:63:12:
af:fb:70:23:1d:79:15:f4:58:29:d5:0f:52:2d:34:49:8e:22:
6e:b6:ee:68:7d:48:21:c9:40:a3:0a:42:c9:2b:98:2c:92:17:
74:94:4a:17:7e:c2:4c:f1:93:9f:2f:6f:26:76:41:5b:dc:ea:
1d:d9:ea:e1:74:37:b5:5b:c7:28:57:5a:24:3c:7c:2e:31:b1:
e6:7d:5b:16:ac:7b:b5:17:76:15:39:85:f1:db:aa:ce:50:41:
4f:de:be:b6:2f:a9:13:f1:75:57:9e:cb:de:b7:a4:ca:5b:c4:
3d:07:6f:a2:5a:e0:6f:c7:bd:66:f9:42:5f:df:80:cf:fa:f0:
45:f3:01:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:33:26 2025 by rpki-client