Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGWA927TklN9X8ollpTPkmFBfEE.cer
File: YGWA927TklN9X8ollpTPkmFBfEE.cer (raw, json)
Hash identifier: 9A/nsZYQAex7Hm4yeGH9KepUr3jVBsj0/7SxQdVIXqI=
Subject key identifier: 60:65:80:F7:6E:D3:92:53:7D:5F:CA:25:96:94:CF:92:61:41:7C:41
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0256AC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/YGWA927TklN9X8ollpTPkmFBfEE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 20 Jul 2025 12:43:53 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 142430
IP: 103.168.66.0/23
IP: 2001:df6:d080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Jul 2025 08:49:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153260 (0x256ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 20 12:43:53 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A911F1E6, serialNumber=606580F76ED392537D5FCA259694CF9261417C41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f8:14:10:6f:8f:95:d6:34:f9:9b:21:05:e3:
56:b6:fb:36:4c:27:30:0f:3f:34:e6:b2:cf:c6:53:
b6:1d:49:49:d1:75:38:a7:41:43:63:33:35:b1:d1:
ec:cf:73:5e:5c:38:2b:2a:f0:af:27:1a:96:4f:3b:
4c:12:f5:7d:0a:10:08:67:c0:fd:8b:da:5a:35:b7:
81:4f:e5:ad:df:f2:05:91:bb:b0:1d:45:3f:04:bc:
82:a4:ab:e4:ca:96:47:d2:a4:a3:d4:6f:80:20:00:
d8:c4:99:f2:27:46:5b:f5:8c:2c:b2:ba:20:19:23:
65:39:16:75:0a:1e:c8:f0:3d:e3:dd:4e:43:cb:65:
16:39:26:57:ed:2a:d2:fe:64:b8:59:c4:ac:c7:3b:
de:01:6a:17:64:57:0f:0c:00:a1:fb:f6:9e:a3:3a:
83:51:6c:4a:5d:af:e5:e0:08:74:31:67:cb:be:bb:
6b:f5:f5:4e:d1:ce:74:b9:64:05:24:54:1e:23:b8:
6a:f5:7c:37:8a:0a:c7:2f:2b:f9:f5:d5:8c:f6:e2:
e7:56:fc:54:c6:ae:80:04:b9:34:4e:e3:fb:69:a0:
fd:b7:e3:38:1b:8f:1b:27:23:58:22:4f:57:92:09:
61:09:58:98:95:28:e4:c3:fe:1a:80:9e:d6:85:a7:
7f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:65:80:F7:6E:D3:92:53:7D:5F:CA:25:96:94:CF:92:61:41:7C:41
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/YGWA927TklN9X8ollpTPkmFBfEE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142430
sbgp-ipAddrBlock: critical
IPv4:
103.168.66.0/23
IPv6:
2001:df6:d080::/48
Signature Algorithm: sha256WithRSAEncryption
12:42:ca:5b:32:8e:d0:2c:3e:f8:7d:d8:c9:9b:fe:57:ab:98:
c2:8f:f4:5a:b9:9a:7f:ef:b5:81:53:e5:d6:b9:0c:ce:4f:64:
fa:fa:b8:b0:15:d5:76:d0:59:dd:d0:53:27:d2:65:91:dd:6d:
9d:a2:82:32:c1:a3:cf:2a:2d:9e:fe:09:66:2c:71:57:14:77:
14:30:31:f5:29:bd:47:d1:fa:1d:81:30:24:00:7d:02:71:14:
fa:b1:ca:62:2e:df:cf:0a:d2:5a:db:c4:19:7a:3b:45:1b:6d:
ab:20:24:13:3b:af:dc:7e:1d:98:2f:ae:19:c1:d3:21:66:f6:
58:7c:ae:c9:72:7d:70:41:d1:3c:8d:a9:b6:bb:01:ee:3c:9d:
79:bc:53:61:44:c5:89:5c:89:ed:80:5d:a8:4c:2c:53:46:d3:
40:49:57:a2:e6:dd:44:a8:86:e9:b9:ac:74:f9:0a:a7:25:91:
ab:37:b3:36:bd:3f:86:d3:3f:e5:cb:b6:e3:bb:96:c3:38:00:
54:24:bd:84:7c:bf:2f:32:26:67:90:90:7d:67:cb:16:9f:0f:
37:21:8d:0b:a1:76:4d:a5:35:e8:cb:44:85:ba:3e:f3:06:5f:
d0:02:aa:70:2e:97:9a:39:58:62:8d:72:b6:f4:a3:d7:a8:9b:
cc:5e:24:3b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 23 12:48:14 2025 by rpki-client