Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-5HlDq-E-OFVqc8KBuQ41SSN9w.cer
File: T-5HlDq-E-OFVqc8KBuQ41SSN9w.cer (raw, json)
Hash identifier: 9JMaeuXZWQpU6+eSEYjZMGrzDG73QmytxYpRMz+rSzE=
Subject key identifier: 4F:EE:47:94:3A:BE:13:E3:85:56:A7:3C:28:1B:90:E3:54:92:37:DC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0235B4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/T-5HlDq-E-OFVqc8KBuQ41SSN9w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Mar 2025 20:43:57 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 133329
IP: 103.163.208.0/23
IP: 2001:df6:2680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144820 (0x235b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 5 20:43:57 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91BF4A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b9:61:4e:63:0a:4e:86:82:80:d4:c6:7f:22:
eb:34:7d:a5:f3:e2:ba:63:20:20:10:25:ae:41:76:
37:b4:46:b8:53:0b:26:3b:f8:9f:03:d4:18:13:ba:
e7:37:44:3b:6f:f3:b2:98:7a:8e:8b:8b:45:0a:6d:
d2:f8:29:d0:74:3b:48:3e:15:06:70:26:05:81:ab:
20:ff:8b:9e:c8:f2:60:f0:fe:be:b6:f7:fc:8f:3e:
0a:85:0d:d2:8f:70:e8:81:3f:e4:8b:9b:81:3a:3f:
4e:3e:cc:a8:52:37:9b:a1:26:3a:64:6b:ad:99:a4:
87:ba:24:ce:60:fd:d3:b3:36:60:c0:23:63:90:28:
0f:4c:8e:16:49:f6:5f:1f:41:bc:33:cc:74:98:13:
17:24:00:f8:cd:c1:0c:40:ac:9d:46:11:c6:5b:c8:
37:eb:88:e4:a4:ee:ff:57:32:47:2d:4e:1f:9e:ae:
b3:34:ce:82:88:7c:0c:6a:35:49:34:29:98:c8:45:
ce:80:14:70:37:55:0f:9b:7a:ae:65:31:86:c5:7c:
06:0e:be:10:28:1b:8b:92:37:c7:73:b0:d6:ff:2b:
13:f6:ff:fe:8b:c7:43:c2:64:6f:9c:ae:9d:4b:89:
b7:93:7b:4c:e4:2b:a6:1f:76:1e:4e:29:9c:1e:b8:
30:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:EE:47:94:3A:BE:13:E3:85:56:A7:3C:28:1B:90:E3:54:92:37:DC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/T-5HlDq-E-OFVqc8KBuQ41SSN9w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133329
sbgp-ipAddrBlock: critical
IPv4:
103.163.208.0/23
IPv6:
2001:df6:2680::/48
Signature Algorithm: sha256WithRSAEncryption
1b:9c:f3:0f:1b:01:c0:ae:b4:4b:eb:f0:4f:90:e3:17:99:46:
15:9f:4a:54:eb:a7:f6:a9:bf:02:74:c2:98:dd:a2:de:3c:0a:
ca:3b:7c:08:28:d0:e3:9a:e0:e1:ca:3c:55:1e:10:66:88:7d:
8a:f3:ae:e6:d6:53:1d:39:dc:e2:6f:ca:c8:27:c0:2f:a0:92:
38:a8:8e:a9:61:09:3d:81:8b:87:e7:ec:3c:20:f8:68:17:45:
31:cd:d4:b9:0e:16:d7:d9:54:33:08:a2:4c:99:5c:b1:cc:be:
e5:d6:16:09:ca:e2:1c:11:58:d3:fa:b8:0e:31:53:d0:79:1a:
17:7d:45:f5:02:f7:69:50:e4:d4:aa:a2:3d:9d:7f:68:f4:fd:
3a:6a:b5:3b:ec:a4:90:f6:0c:06:a6:41:24:9e:1b:ca:34:91:
01:93:3f:62:2d:44:63:88:25:84:d3:0f:10:d3:6e:a2:4b:a4:
89:56:4a:a9:4d:20:54:fd:f1:97:8f:83:f1:36:f5:08:c9:8a:
d0:62:59:a9:76:97:64:56:c6:c0:9e:45:a6:b8:f1:67:b6:c9:
28:ad:7b:44:4d:b8:01:89:39:ff:cd:a8:9e:0d:1c:7c:92:e5:
dc:15:7c:40:0a:7e:c4:fa:0e:22:84:f0:60:b3:cf:a8:2e:b6:
55:25:52:b2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 11:06:28 2025 by rpki-client