Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer
File: KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer (raw, json)
Hash identifier: FpMPQASAcmH33uIKqv79qJlxKo1KVJk8oiDFzYBj66U=
Subject key identifier: 28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02564F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 17 Jul 2025 18:14:32 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: IP: 103.27.160.0 -- 103.27.162.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 29 Jul 2025 09:59:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153167 (0x2564f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 17 18:14:32 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A91A308F, serialNumber=28682EC723CCE336185B33302013FF0060DDE09A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6c:ef:c6:c6:1f:d4:a1:cb:c4:41:b2:87:c9:
86:26:95:28:2f:e4:5f:b6:80:c8:11:2b:74:40:0a:
91:d1:78:c8:99:36:06:6e:d3:52:75:8f:21:40:48:
1a:44:09:1d:5c:d2:aa:bb:98:20:cf:9e:50:47:aa:
5d:31:e8:fe:ff:62:32:89:07:16:d8:7f:67:c1:2f:
37:12:55:61:12:03:b8:83:92:59:d3:8d:09:7b:bd:
4b:17:19:9c:b0:cb:8b:b2:35:1e:a8:ae:8a:f1:6e:
a5:36:37:16:56:b9:0e:fc:fe:7e:a1:c4:53:1b:e1:
94:6b:a8:c7:8c:a6:3d:2a:87:67:61:db:e3:4c:ae:
e8:1c:26:cc:dc:b5:04:47:5d:93:ae:c4:98:75:37:
3d:5f:bb:c8:e3:a3:2d:3c:2a:89:98:4f:ad:f0:0e:
5b:3b:9d:aa:65:93:23:61:e5:68:4b:c8:a6:b5:44:
81:75:c8:ce:f0:65:63:2e:4d:29:a8:04:49:ac:c0:
a5:b7:bf:14:d8:08:bc:6f:7c:12:f7:86:fc:41:b1:
42:fd:7e:42:df:2a:1e:bc:ef:67:41:ef:1b:3e:6a:
c6:26:57:6d:5a:a7:38:fc:34:4f:dc:a4:50:3f:d8:
11:c7:3f:df:38:07:97:69:a0:8a:76:b2:18:c0:1f:
2f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.27.160.0-103.27.162.255
Signature Algorithm: sha256WithRSAEncryption
3e:e9:ac:f7:7d:d8:73:dc:48:2c:1f:12:8d:97:b8:2a:0a:6a:
9a:12:6c:67:09:7f:6e:56:5e:85:d9:5a:33:54:5e:f8:c4:8a:
3c:a1:de:34:4c:11:f6:14:fe:b6:26:b9:5f:49:9e:90:99:ef:
a3:c5:5e:91:d6:9d:55:e5:8d:15:b5:1d:b3:5b:99:71:6f:a2:
d6:53:28:82:c3:45:c7:1b:eb:7b:53:91:e0:e5:23:5d:1e:de:
a9:6e:1f:9b:64:26:b4:51:f4:44:64:3c:f6:cf:a7:8e:be:dd:
6e:0f:62:ef:a2:36:0c:0c:b6:5e:91:68:a3:cf:cb:f9:05:98:
39:07:6d:cd:36:99:f8:ce:b3:e5:f4:3d:fd:78:60:c2:8d:3e:
3c:b3:56:ed:8b:27:e9:f0:db:e9:eb:67:bb:5e:c5:1f:9f:4b:
7f:fe:31:62:d9:bd:c1:27:1f:ef:f2:bd:bd:4e:cc:86:1c:28:
0b:e5:bf:b1:f1:86:50:b9:dd:62:47:e5:b4:ae:b5:e5:1f:70:
3d:90:8b:a6:43:10:b0:e7:20:d1:4a:63:e5:04:d8:71:b7:b1:
d0:ad:c4:81:99:63:82:ee:3b:c6:23:56:7d:f4:b3:c3:b3:b5:
65:d3:c2:cc:84:15:4b:eb:70:d9:2f:02:1c:e2:e0:b0:c3:38:
bf:10:b8:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 11:53:00 2025 by rpki-client