Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer
File: lX5Qp1--UC844-2_P0qq5mWuFIs.cer (raw, json)
Hash identifier: L5AsohEOgbVMyD3nYPvzGpLXfQXP5BT1w8oqRIECnGs=
Subject key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0255A5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 14 Jul 2025 22:08:08 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 153055
IP: 2401:afe0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Jul 2025 16:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152997 (0x255a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 14 22:08:08 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6f:77:d6:ef:bd:5d:83:f2:8c:3b:7a:51:6c:
7c:94:1e:c6:2f:32:03:71:50:6f:5f:77:7a:74:87:
1b:fd:87:63:1b:30:66:a2:5b:12:3b:07:0b:ec:6e:
bd:3f:61:9a:d7:93:87:f3:de:e1:92:7b:d9:2b:65:
70:8a:49:a6:a1:ca:00:50:57:1d:cd:3b:85:31:c8:
ff:e8:29:e0:0c:51:6f:6c:2f:c4:a2:6c:a1:0f:78:
75:f0:49:b1:9a:5e:05:e0:e0:52:4c:7e:fc:af:aa:
29:ec:48:04:29:e0:82:ad:20:7d:e9:43:3b:5d:36:
23:3e:b2:7e:e8:a3:bb:c9:c1:c0:30:4e:e3:09:e3:
e4:ed:c9:04:20:50:a1:a7:7f:aa:33:06:d3:b6:99:
16:cb:f5:0d:7e:32:c5:4e:8a:f9:d4:34:1c:02:0d:
62:7d:26:9d:83:c2:b4:86:53:b7:43:22:04:61:9b:
bf:07:c7:c8:99:1d:08:a0:a9:25:df:c1:16:18:de:
05:97:18:c5:7c:2d:64:21:82:f9:25:75:20:a0:a3:
36:ad:6e:03:ad:9d:94:a0:f7:e4:bd:f8:34:37:b8:
13:30:4a:c5:57:53:87:2f:28:28:6e:18:c4:90:07:
a1:ed:b3:e2:b2:94:b2:a7:89:70:8a:18:b8:04:99:
a5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153055
sbgp-ipAddrBlock: critical
IPv6:
2401:afe0::/32
Signature Algorithm: sha256WithRSAEncryption
3c:bb:d4:56:86:26:9e:c9:c8:b2:ae:2d:d4:34:f8:b3:aa:75:
1e:82:ee:fb:96:c9:1b:2e:e3:2a:f8:65:a0:20:5c:10:ad:fc:
00:d5:e3:f8:ff:2d:bc:d1:be:3a:fb:19:a0:c3:50:48:a6:b6:
b0:a0:a6:8c:e9:7f:68:2f:94:41:11:7e:61:92:a5:58:2f:d5:
b2:98:25:51:d7:0c:b0:38:7c:96:5c:67:e7:d9:7b:af:aa:fb:
a2:4c:33:97:fd:7b:60:0d:5e:b2:c0:de:86:34:71:60:49:c6:
cb:17:90:12:5f:50:11:1d:25:4d:5a:b9:45:ed:93:17:84:51:
0f:79:63:a4:39:f2:82:d3:ea:6c:04:14:81:3e:0c:c2:b8:d8:
71:1e:d0:bd:9b:a5:99:a6:03:31:be:75:97:0b:1a:d3:33:be:
a7:4d:24:06:1e:82:2a:95:ff:d8:ec:4c:dc:52:8a:15:7c:02:
77:9d:99:3a:bc:23:f0:18:08:01:39:6d:48:6d:03:8c:b8:ab:
24:4d:b2:c9:24:fd:3f:d1:ac:5b:27:c0:ab:62:b1:16:a2:38:
1a:e2:a8:88:d2:ad:23:6d:63:ef:db:bb:7b:9d:83:ef:c3:1b:
2a:eb:34:71:e0:0a:41:50:a8:07:bf:a4:8f:f1:d2:4a:17:a0:
62:ad:53:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 17:41:50 2025 by rpki-client