Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
File: 526yVsD8sH4pB5eDQ-mtndIf4gY.cer (raw, json)
Hash identifier: SfvwmCQ0QzMsA8wU86zDHzC8NL8jL2M/mCSL79RiUi0=
Subject key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025450
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 08 Jul 2025 16:41:32 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 38616
AS: 38710
AS: 55414
IP: 103.246.108.0/22
IP: 111.88.0.0 -- 111.88.143.255
IP: 111.88.160.0 -- 111.88.239.255
IP: 115.186.0.0/17
IP: 117.102.0.0/18
IP: 203.81.212.0/22
IP: 203.81.224.0/20
IP: 2406:7000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Jul 2025 12:43:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152656 (0x25450)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 8 16:41:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:20:c3:78:7c:1c:62:55:e2:dc:96:33:ef:d3:
ef:37:71:9f:7b:68:89:bb:f0:35:40:a8:1b:3c:6b:
e9:ce:69:bd:57:a3:35:40:b1:af:bd:74:c0:a1:e9:
8b:13:d8:e2:f8:28:12:94:a4:54:c3:5a:7a:7d:ae:
12:79:c7:94:ee:d7:58:41:60:1a:60:36:bf:a5:0d:
e3:2c:e5:99:6a:17:36:28:a6:d9:db:b1:83:fc:0d:
90:6c:ac:5f:e7:b5:a3:35:10:ab:f8:2f:a2:14:df:
71:d2:a6:7c:96:6e:40:04:c9:69:78:e1:07:61:14:
f0:14:b0:d6:8d:33:6a:46:0e:4b:03:3f:95:ff:45:
c0:dc:9c:5b:0b:d6:18:0c:ee:d9:fc:5f:12:40:f9:
45:5c:46:8e:7a:a8:3a:5c:4b:66:da:3f:ae:e8:0f:
33:a6:66:b1:03:73:42:ec:6f:e2:40:0e:54:37:54:
30:55:2f:6a:1d:95:fe:df:5b:a6:8d:58:16:9f:b1:
01:1c:4c:db:dc:a7:61:3d:49:04:f5:ff:1b:17:02:
76:6a:69:d0:cb:b8:3b:1b:84:b6:52:4f:e4:bc:1c:
ff:28:39:7d:db:d3:0b:7c:5c:29:f4:c0:8a:96:ae:
cc:7b:30:4e:7b:a4:e7:9f:9a:f6:bb:54:af:aa:dd:
15:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38616
38710
55414
sbgp-ipAddrBlock: critical
IPv4:
103.246.108.0/22
111.88.0.0-111.88.143.255
111.88.160.0-111.88.239.255
115.186.0.0/17
117.102.0.0/18
203.81.212.0/22
203.81.224.0/20
IPv6:
2406:7000::/32
Signature Algorithm: sha256WithRSAEncryption
be:4f:9b:86:ed:b1:45:19:e3:96:64:b9:3e:ba:11:ef:ac:3f:
df:92:69:60:7d:2e:cb:15:f4:14:a2:81:96:b7:f6:12:10:b2:
ad:a8:66:82:be:82:e9:a5:cc:15:8a:92:05:90:71:f0:db:b7:
c8:bd:08:4b:9e:e6:3b:bc:5a:82:04:1f:46:8b:37:ca:7d:e5:
0d:7c:66:68:e8:55:96:04:4e:79:6e:cd:8b:61:18:a2:95:52:
0c:b7:f4:f4:73:6f:54:e7:da:6d:fd:fe:4c:f3:3f:81:0b:04:
57:f5:ec:af:80:08:5b:92:0e:6f:41:76:29:61:73:13:fd:1f:
3e:5e:f2:55:32:cc:85:15:ed:1d:f6:46:78:79:c9:3b:48:a4:
b9:ba:89:ca:19:92:1e:e7:06:0a:80:e2:da:6b:5b:f8:40:ec:
67:dc:fe:7d:fa:ab:27:f5:9e:6f:dc:8a:bd:95:90:49:98:da:
a6:0f:bb:1d:34:f3:02:55:27:9e:ff:9a:f4:81:71:36:33:17:
e8:37:5a:a1:8b:3d:d2:af:d1:c7:90:d8:9d:34:54:b9:8e:4f:
dd:03:20:a7:a9:ac:03:39:dd:28:5f:a1:da:70:93:bf:b0:2d:
fd:ed:16:be:bd:40:2c:d5:5e:e0:0e:78:ea:b8:c8:a8:cb:d8:
1c:e1:95:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 14:22:09 2025 by rpki-client