Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer
File: -ibzSoM5sd823JwRkSBXw6WD9nM.cer (raw, json)
Hash identifier: Np7OhkvNPLFKulHfkK+G+KiNz/7KQxYFg4RN6nAxi2c=
Subject key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0246B9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 May 2025 14:55:05 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 103.186.82.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149177 (0x246b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 16 14:55:05 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6b:a7:ac:f3:b8:d2:7f:9f:cc:be:4b:43:85:
7d:87:bd:07:d5:a2:fb:1e:8d:e2:08:15:41:fb:e4:
b6:dd:7c:6d:91:cd:ab:63:e2:d5:21:ff:fb:e7:8f:
68:d6:51:75:53:b2:13:46:1c:cc:70:58:ba:fc:87:
7e:ab:70:c0:cc:c0:19:00:2f:8a:70:d6:eb:39:0c:
f8:38:cc:98:9e:c8:97:56:42:4f:69:1e:e9:f9:59:
5a:74:ab:36:6a:17:03:82:d2:21:49:15:c1:3e:5c:
92:7c:7b:c7:2e:fc:02:ae:05:bb:c4:8b:6b:f8:8a:
80:53:6a:fa:1a:54:86:58:43:6a:9b:eb:e9:0e:d6:
66:b5:89:f1:26:73:62:d1:4a:01:fd:f6:7c:a7:7b:
0a:ca:2c:f5:0a:fb:e0:a5:5f:3e:9a:f6:2d:e9:09:
7d:e5:f8:1b:d3:fd:8b:41:59:d6:a4:3f:37:70:3b:
4b:94:38:b4:96:ec:e2:a0:34:c2:03:c7:9e:88:a2:
9f:df:4c:04:35:1e:c1:76:96:fa:ce:d1:c2:53:2d:
a7:2b:0a:3f:29:a8:40:2c:04:19:a1:0e:58:79:11:
1f:c6:8c:f2:68:be:c8:b6:ce:36:94:13:ae:48:f5:
db:51:0e:83:bd:1f:e9:29:96:68:c8:c8:73:fc:7d:
4a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.82.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:53:e2:87:b7:84:31:49:54:08:4b:6a:a0:9d:4e:2d:ee:5d:
e7:13:2c:12:99:9e:6d:87:87:f5:81:97:5c:ef:66:bc:8a:fe:
c9:03:a4:89:29:1c:99:83:f1:13:f3:d6:ca:62:cf:6a:c3:c6:
5a:ff:77:c4:bd:31:df:dd:76:09:4f:88:83:6d:41:1e:ad:de:
52:d2:6f:c1:39:a8:08:22:11:29:3d:4d:90:1a:9c:cb:58:eb:
31:66:09:c4:1c:f1:2d:92:06:d4:cc:cb:13:ec:26:37:1f:fe:
4a:85:d7:a3:5b:f2:da:3f:67:5f:95:25:17:78:cc:87:cf:a6:
da:cc:fd:b7:bb:e1:cd:6c:05:ce:5a:b8:8e:91:35:99:e3:b5:
58:58:e4:f6:49:15:59:25:b2:ee:c3:cd:81:f7:b9:1d:10:27:
4b:71:71:81:58:77:ca:ae:c1:c1:4c:ec:90:17:75:dc:66:5c:
29:15:e6:77:d6:47:c4:29:ce:bd:e4:47:c4:0d:d3:29:cb:d6:
e6:31:5b:5f:db:a1:72:c6:e3:a5:e5:4e:c9:92:64:74:46:7f:
6b:dd:c6:8e:bd:93:51:2d:8e:31:f5:b1:4d:be:a1:a7:a2:82:
0b:ff:89:e1:a5:8c:81:3d:10:2c:1b:58:1e:8c:26:30:c9:ae:
75:5e:c7:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 09:09:53 2025 by rpki-client