Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBoPSOpDIx-jND1ZKCHvKejSsxs.cer
File: fBoPSOpDIx-jND1ZKCHvKejSsxs.cer (raw, json)
Hash identifier: MGo5+VA13W0s0BnLu5hHzpU+Pi5wjE+3shocgm/zlRE=
Subject key identifier: 7C:1A:0F:48:EA:43:23:1F:A3:34:3D:59:28:21:EF:29:E8:D2:B3:1B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0261FE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/fBoPSOpDIx-jND1ZKCHvKejSsxs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Sep 2025 22:46:40 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 4761
AS: 17922
AS: 45239
IP: 103.105.24.0/22
IP: 103.108.20.0/22
IP: 114.0.0.0/12
IP: 120.160.0.0/11
IP: 124.195.0.0/17
IP: 202.93.32.0/20
IP: 202.152.160.0/20
IP: 2407::/30
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Sep 2025 08:53:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156158 (0x261fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 1 22:46:40 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91798AD, serialNumber=7C1A0F48EA43231FA3343D592821EF29E8D2B31B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a6:b8:4d:7f:cc:3d:46:ed:07:46:34:f9:64:
af:a3:a9:80:ee:0c:61:4d:7f:e2:e2:72:e6:c7:b2:
47:0c:77:c6:b6:d9:e8:f8:5d:22:51:05:7f:5b:80:
9b:37:8c:ae:04:b7:5c:c9:0f:f9:80:a7:0e:9e:68:
93:5b:bb:48:e3:3a:7a:b8:6d:4a:82:89:c3:ff:bd:
3d:88:74:51:88:d4:ca:d0:73:b7:5b:e5:0d:b3:87:
85:95:0e:38:2d:84:7d:69:69:93:ee:39:ee:67:c4:
64:1a:35:49:93:3e:47:7b:f3:09:af:b1:ca:78:fe:
cf:34:15:31:02:e3:34:45:eb:35:3f:f9:8b:62:b0:
17:64:5d:ee:a5:80:07:94:5d:40:06:6a:96:c9:fb:
15:a3:68:de:94:58:2c:41:4e:f1:a6:d4:e9:3d:ed:
f4:9e:dc:21:e4:ab:ae:14:27:8c:e9:07:1b:34:75:
8e:75:0f:75:6b:c7:a5:72:9f:5c:21:7d:12:55:bc:
59:94:ae:63:2f:8b:f9:e1:52:ad:61:59:47:04:d3:
84:16:f6:23:58:16:1c:76:0f:da:a0:a6:49:20:91:
7f:1b:2d:06:0a:f8:59:04:4f:8b:62:59:8c:7b:42:
e2:be:53:f9:ba:28:f4:65:56:5a:e1:8b:84:e0:d6:
0d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:1A:0F:48:EA:43:23:1F:A3:34:3D:59:28:21:EF:29:E8:D2:B3:1B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91798AD/70EFB4ACFE2A11E68F2C5A13C4F9AE02/fBoPSOpDIx-jND1ZKCHvKejSsxs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4761
17922
45239
sbgp-ipAddrBlock: critical
IPv4:
103.105.24.0/22
103.108.20.0/22
114.0.0.0/12
120.160.0.0/11
124.195.0.0/17
202.93.32.0/20
202.152.160.0/20
IPv6:
2407::/30
Signature Algorithm: sha256WithRSAEncryption
af:93:cd:c5:15:3e:43:b3:31:ef:d9:ae:93:54:77:ec:b2:9d:
50:ca:2b:5f:9e:1d:c1:6f:7f:ca:24:2b:c8:e2:f7:c5:af:9e:
b1:29:c0:6f:c2:ce:fc:d9:72:4b:1c:04:06:b7:ef:e0:ea:e9:
8f:f9:e7:3e:cd:42:93:78:71:60:1f:73:da:b6:9d:51:b8:77:
4a:da:28:37:10:0c:3b:2d:26:cd:0d:72:9c:d2:8b:89:cb:7e:
bf:c8:79:fe:e1:fe:9d:25:33:e0:1f:92:d1:1d:d0:7d:3e:cb:
71:f2:ec:36:0b:13:93:c5:d7:67:3c:07:13:b4:2e:c2:6f:d0:
93:be:1f:23:17:a6:85:f3:e8:ff:56:2e:35:07:08:71:47:f6:
36:85:bf:9d:92:b4:d7:53:f4:68:ae:fc:39:2a:5b:b2:b5:d4:
b2:e0:ab:16:15:52:29:be:58:19:62:c3:bc:a4:d5:59:6f:8f:
86:4b:60:f6:40:36:b4:45:6b:fd:23:e4:26:65:fa:30:60:96:
1f:4f:49:dc:fa:0f:3f:6a:1a:d4:41:0d:3a:7d:69:27:c9:51:
a6:cb:e3:09:a4:bd:61:1d:20:da:e8:5e:63:57:21:c8:34:80:
62:bb:f5:c6:92:4c:30:4e:22:79:b6:ff:ac:67:4c:86:86:98:
4d:d7:3c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 14:14:18 2025 by rpki-client