Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wsll5Qz-u1kUeTfcNNgf0wK2unM.cer
File: Wsll5Qz-u1kUeTfcNNgf0wK2unM.cer (raw, json)
Hash identifier: P0GxKHii5I36UnaDQOLw8TR1L7m5V+kLI1qiRr40Te4=
Subject key identifier: 5A:C9:65:E5:0C:FE:BB:59:14:79:37:DC:34:D8:1F:D3:02:B6:BA:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023A64
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B6D5/BC4BFB76741A11EBB8974E62C4F9AE02/Wsll5Qz-u1kUeTfcNNgf0wK2unM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B6D5/BC4BFB76741A11EBB8974E62C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 28 Mar 2025 13:41:55 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 132800
IP: 103.162.230.0/23
IP: 2001:df6:280::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Apr 2025 21:39:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146020 (0x23a64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 28 13:41:55 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A913B6D5, serialNumber=5AC965E50CFEBB59147937DC34D81FD302B6BA73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2d:4f:54:9c:fb:a0:de:63:26:35:a7:37:ea:
a8:fd:fa:6b:f0:e1:75:84:d1:a7:e1:5a:38:20:76:
bd:c3:cc:5c:fe:a0:cc:d7:e7:ab:ed:48:f4:7b:25:
89:5c:5d:e2:15:e7:65:a5:62:77:92:7c:3d:8c:cc:
cd:e0:83:ab:aa:44:29:06:f9:80:9c:c1:58:69:c8:
1a:6e:7b:fd:ed:c9:73:90:11:42:26:e3:68:55:3a:
97:ff:62:d3:da:b3:72:af:bc:54:61:48:a8:2a:8a:
79:48:24:d4:57:01:75:65:1f:f6:41:2e:19:32:b7:
02:d8:e4:ff:d4:b4:98:4b:43:a8:14:0f:cf:07:40:
99:86:5f:1a:02:ca:48:06:25:a6:a3:ff:d5:62:21:
fe:a7:a4:f7:85:89:ee:8f:0b:37:34:ba:8a:9e:97:
a5:ce:f7:9b:90:29:e7:63:51:15:4c:72:1e:00:bd:
a3:48:dc:92:54:41:a2:3d:2a:70:cb:2c:f1:71:12:
a4:4b:7c:33:bc:b8:6f:76:69:d1:df:b4:89:5f:7d:
42:6b:bc:96:13:da:69:d0:f5:11:1f:08:f7:a4:a3:
07:cf:f5:c5:50:ed:24:46:36:52:72:4a:23:c5:3d:
eb:3c:41:c0:37:c6:dc:0d:04:ee:50:51:f8:f5:07:
04:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C9:65:E5:0C:FE:BB:59:14:79:37:DC:34:D8:1F:D3:02:B6:BA:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B6D5/BC4BFB76741A11EBB8974E62C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B6D5/BC4BFB76741A11EBB8974E62C4F9AE02/Wsll5Qz-u1kUeTfcNNgf0wK2unM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132800
sbgp-ipAddrBlock: critical
IPv4:
103.162.230.0/23
IPv6:
2001:df6:280::/48
Signature Algorithm: sha256WithRSAEncryption
a1:52:6c:d2:17:10:87:cb:b5:b6:58:32:8b:00:2b:c0:36:73:
16:6e:3b:76:56:32:54:a5:8d:e7:3f:68:5e:4e:dd:cc:9f:4d:
78:dc:a9:34:81:bc:64:9a:4c:87:09:8f:8f:83:8c:2d:81:64:
16:c3:38:f2:6a:16:8b:ae:9b:bb:1c:68:6c:fa:21:eb:90:41:
d7:8f:a6:5c:6a:63:7e:8b:10:b9:e9:3c:1d:1c:45:49:da:d0:
44:9a:74:ec:70:a7:14:8a:15:2b:1b:39:04:ca:f4:f4:07:a4:
57:ca:00:59:ab:4a:c6:12:c0:72:28:73:44:67:cc:bb:99:65:
69:0c:32:4e:54:67:bd:66:2e:99:1c:78:d9:a2:e9:5d:b8:8e:
34:73:4e:9f:8c:88:6d:c2:26:77:06:72:9f:7c:ad:17:8d:d6:
9b:31:e9:0c:83:62:99:17:4e:64:54:74:f0:ce:b5:7d:f8:72:
68:4b:c1:50:be:2e:23:11:00:75:84:be:a3:05:d4:df:8a:42:
f6:c0:74:f0:61:7a:22:40:0f:35:fe:b1:d4:44:01:37:50:83:
c0:e6:90:31:61:50:61:0a:34:8d:8c:d8:36:a7:5b:e6:7c:81:
18:4e:90:d5:dd:16:35:d1:25:9e:eb:97:7c:4a:62:7b:34:90:
90:21:0a:61
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 22 02:33:08 2025 by rpki-client