Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer
File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer (raw, json)
Hash identifier: ScGbAPpKa0ThWcsLBlgNAqZUnOCjuecfqiefpAu7ejw=
Subject key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02411E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 26 Apr 2025 18:34:27 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 202.36.70.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 05 May 2025 20:45:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147742 (0x2411e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 26 18:34:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fb:a8:62:f0:8e:d6:ce:d4:51:ce:e4:cc:2b:
08:90:6e:77:d2:f2:5a:d2:83:27:c3:14:b6:f9:b5:
c4:cf:a1:59:a3:38:53:37:67:e8:40:90:b1:e8:59:
c3:79:a6:c6:c9:f7:70:53:1e:c5:6e:fc:0b:4a:a4:
80:51:1c:b7:68:1a:dd:bd:90:40:94:be:82:d8:58:
66:70:3e:d5:a5:21:74:ff:69:46:5b:3c:44:8f:9f:
89:4c:d7:b3:13:3a:79:d1:6f:4d:17:12:0b:62:da:
8f:ec:ae:d7:05:fb:27:31:6e:ca:5a:07:01:bd:3a:
70:e7:1e:3f:be:c4:01:a4:7b:d0:4b:28:e2:00:30:
6c:a1:77:6a:7d:1a:02:ef:76:c2:13:4f:98:c8:84:
57:bb:72:fb:8f:2d:6e:33:0d:50:11:4d:37:af:fd:
78:c4:a2:f1:3c:52:2a:7b:9f:31:0b:cd:36:4c:60:
f9:83:dc:5b:b8:cc:d6:e1:39:1b:32:8f:69:52:e0:
0c:47:a5:04:80:b8:aa:83:ce:83:d2:7a:18:50:ea:
3d:21:be:e5:41:96:78:a0:94:e6:c5:5f:41:75:1e:
d8:3c:e9:73:25:8e:29:32:49:71:a7:d1:c2:76:4e:
01:56:bf:a6:54:43:0c:85:89:ff:91:04:1b:54:5d:
2f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.36.70.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:18:22:71:c2:03:90:14:4c:62:62:25:be:66:49:40:d7:65:
b8:28:27:94:55:6c:97:0d:95:fd:74:14:33:0c:d7:25:4b:b5:
83:0c:d4:95:ee:6b:68:d8:ec:a2:17:8c:d6:84:16:56:96:2f:
9f:68:8f:c2:42:d5:66:f1:75:09:4f:2a:6d:cc:66:3d:5a:5d:
17:c6:be:57:47:cd:72:a1:db:8b:4d:6b:55:f5:c5:cb:62:df:
b0:be:6a:64:68:49:9f:b6:0b:fb:ad:d0:13:f5:24:10:36:d7:
1b:d5:a8:2e:3a:3d:2c:f6:b1:3a:2b:51:e3:60:5c:89:3d:01:
89:66:fd:24:24:f2:06:72:27:6b:f9:5d:8f:4e:65:ce:ed:b2:
68:04:89:1b:ff:ab:d2:70:1e:e5:04:2a:b5:4e:04:ef:11:32:
c7:3a:3b:9c:9f:48:5f:43:74:0b:48:b5:00:07:cf:a3:25:e1:
34:96:20:81:b7:f2:dd:7d:eb:b6:69:5b:20:c1:e3:37:8b:c1:
37:41:ef:52:10:ee:9c:11:e7:9c:42:17:37:71:0b:a4:3d:98:
a4:f6:83:c8:f5:37:20:f9:e8:ed:9e:03:ee:3b:f7:81:2f:69:
b4:10:53:3b:bc:08:33:ba:3c:f1:ce:f9:7a:9c:a1:97:f5:ae:
99:f2:a8:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:07:53 2025 by rpki-client on console.sobornost.net