Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b0XbXSi7uaZT-C0c94J6WYN2RfM.cer
File: b0XbXSi7uaZT-C0c94J6WYN2RfM.cer (raw, json)
Hash identifier: 8HEFSSJYOaExuJXgOccoTIcWIh/tonMTIXrAt798kWc=
Subject key identifier: 6F:45:DB:5D:28:BB:B9:A6:53:F8:2D:1C:F7:82:7A:59:83:76:45:F3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0255B5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9159309/A27B8BFC613D11F0B036B836C4F9AE02/b0XbXSi7uaZT-C0c94J6WYN2RfM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9159309/A27B8BFC613D11F0B036B836C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 15 Jul 2025 05:36:25 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 154019
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Jul 2025 08:49:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153013 (0x255b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 15 05:36:25 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A9159309, serialNumber=6F45DB5D28BBB9A653F82D1CF7827A59837645F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3f:ea:8a:00:12:3b:07:42:e8:c0:e3:6e:1f:
dd:d7:be:27:08:e3:c0:71:ad:60:b6:3f:38:d6:1b:
90:72:2e:aa:76:bd:56:21:7b:96:ea:7c:78:17:eb:
b4:13:b0:bb:24:f3:f7:33:9f:fd:1f:f0:79:c5:e0:
65:84:0a:10:49:00:b4:56:ef:62:a3:11:dd:d4:33:
5c:c3:ef:16:f3:e7:18:5c:95:a6:2a:74:e4:41:52:
48:3f:dc:a8:96:7d:cb:25:59:05:d4:cd:95:60:a0:
40:1d:a4:76:35:a8:5d:8b:37:57:e5:00:86:f8:0b:
1a:a2:98:da:d8:d6:ec:6c:2a:04:e6:45:36:94:f9:
71:3d:d0:56:15:40:0a:eb:57:c3:5b:b1:bb:57:aa:
51:e1:0c:8d:ad:40:2f:af:9b:dd:d8:ad:bd:1c:46:
71:67:38:01:bf:b1:ee:81:d2:15:dd:bc:ba:58:7f:
45:8b:0e:d2:42:87:61:4f:20:36:fe:2c:3a:09:31:
ca:46:b7:86:49:85:40:19:de:83:61:e1:66:1e:6f:
89:9c:06:db:f8:0c:55:1b:bf:6f:97:1e:ef:52:72:
01:db:8c:68:1f:dc:3c:2e:ad:67:0f:58:e0:b7:9b:
ad:2f:27:00:2e:a7:82:61:c1:de:20:1f:39:6f:1e:
fb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:45:DB:5D:28:BB:B9:A6:53:F8:2D:1C:F7:82:7A:59:83:76:45:F3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9159309/A27B8BFC613D11F0B036B836C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9159309/A27B8BFC613D11F0B036B836C4F9AE02/b0XbXSi7uaZT-C0c94J6WYN2RfM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
154019
Signature Algorithm: sha256WithRSAEncryption
6b:f3:79:33:64:53:f3:04:ca:37:78:a4:48:02:d6:a7:e5:af:
46:6b:f7:f1:49:bc:9c:0a:3b:39:1e:f6:5f:d4:b0:17:44:27:
ec:28:b5:86:a8:e3:05:b6:8e:fc:31:cd:7f:7d:31:86:ec:bd:
de:f5:58:5e:98:22:03:59:4b:30:91:86:9f:76:6e:cc:9f:b1:
7e:47:48:82:95:0b:01:f8:e7:44:ca:f1:fd:31:3f:08:8f:3f:
a2:00:83:40:ae:2a:e1:89:3f:64:ed:05:0c:c3:f2:5f:b5:be:
45:00:72:4a:4a:68:38:4b:fc:39:70:82:18:91:a0:3e:6a:b5:
40:8f:fc:cc:bd:d7:7e:ed:44:2b:1b:9f:29:14:f7:75:0d:12:
de:7a:ad:19:c2:34:3d:12:0f:0c:aa:f8:6d:e1:21:e7:cd:f6:
3e:77:4b:45:30:a5:32:23:fa:d5:c8:22:ea:8c:a0:84:cf:60:
09:6a:f6:35:20:87:09:93:b7:c8:9a:fd:c4:21:8a:c2:15:92:
70:c7:65:c3:65:62:15:f7:02:97:af:f0:62:2b:4f:7e:4f:e8:
2d:48:d0:f4:3c:6f:b5:e9:bd:31:d5:94:25:4c:02:4f:e1:6d:
28:05:ae:ac:bc:ca:98:07:6e:f5:cf:17:53:ad:fa:c4:de:ef:
a3:b8:15:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 12:48:46 2025 by rpki-client