Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer
File: 0zOneHph_4bHRbR0CWr2muMaz_E.cer (raw, json)
Hash identifier: gHKf/ZpI7Ovfxz6LHan5LzjhUheww6WT4L8AJI70mT4=
Subject key identifier: D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0247B9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 May 2025 12:25:08 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 142146
IP: 103.166.232.0/23
IP: 2001:df6:9c80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149433 (0x247b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 21 12:25:08 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A911309C, serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c2:be:2b:26:0e:bf:32:16:03:01:e1:87:3b:
3f:d3:14:93:f4:31:9a:15:c8:3a:74:6e:09:c7:7a:
3b:73:c0:2c:a0:9b:33:10:8a:86:ae:f6:22:cc:56:
08:8e:e4:c6:5c:d4:24:88:37:a4:1e:34:ea:ba:27:
76:f9:82:7c:f0:92:75:81:60:f2:db:29:c3:63:76:
30:0c:44:40:a1:e0:84:19:07:c0:95:2e:23:49:33:
88:f3:54:13:01:bc:95:dc:70:ae:e2:ed:06:39:fa:
a4:e2:14:89:9f:bb:19:71:91:80:46:0f:08:90:90:
49:98:07:0a:61:92:88:97:bc:c6:bb:1f:bb:a6:93:
fe:17:df:3e:67:41:eb:1e:0d:8d:15:9d:43:4e:a6:
52:ef:ef:8e:0a:8c:40:ad:a8:3e:d1:94:d4:17:bd:
ea:31:30:f7:38:67:04:b2:dc:92:f2:45:bb:4a:52:
35:d0:63:a3:46:f2:d5:2d:8f:8c:0f:f0:c8:d0:f7:
c1:c5:01:48:9f:9e:18:99:b4:fd:62:28:67:e2:e6:
b8:59:94:46:2a:4a:42:c9:34:93:d6:79:4f:d4:ca:
cb:8f:16:f2:df:72:52:1e:b9:65:31:56:e0:07:eb:
dd:0e:c3:5e:8f:5d:16:1a:4b:eb:48:a6:b1:1c:80:
62:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142146
sbgp-ipAddrBlock: critical
IPv4:
103.166.232.0/23
IPv6:
2001:df6:9c80::/48
Signature Algorithm: sha256WithRSAEncryption
ba:2e:8b:00:a5:dd:44:41:8b:3b:4d:21:c3:6c:ae:01:e3:fa:
16:21:8b:98:5f:6c:90:e1:36:4c:8e:ec:fa:ce:a9:5f:e0:c7:
29:f2:16:10:f0:2f:6e:ec:2a:db:28:27:5d:fe:b6:3d:2d:57:
06:81:52:c7:09:55:95:3d:0e:52:7c:72:2d:5c:b3:07:47:ab:
42:8d:9c:f0:33:4e:8a:c8:ca:74:af:14:8e:fc:7f:7f:d3:35:
6a:10:65:23:d3:2d:f3:1d:58:ab:70:f3:90:83:b4:2d:da:69:
56:8d:1f:da:41:a3:12:8e:c6:3e:be:bb:20:9f:75:06:c1:c2:
e0:d5:c4:c9:6b:a8:e6:f3:7a:f6:35:42:7a:65:f1:e3:1a:09:
21:18:7f:bd:e8:a5:08:01:25:dd:47:a3:9e:58:8f:44:5f:59:
9e:74:ee:71:b6:26:eb:89:e0:25:5f:70:a7:bd:5b:35:90:fc:
d7:e7:b8:ff:c6:1b:c4:1e:ce:fc:93:08:fb:55:09:fb:16:2c:
5b:71:78:0a:2f:c7:1e:f0:fb:4c:a4:bb:c8:32:3a:2e:9b:40:
8e:24:0f:70:b6:dc:f3:98:8a:28:96:fd:bf:59:80:23:6a:07:
35:ca:ab:2f:79:93:63:38:9f:59:bd:f5:5a:5d:0a:97:6b:4b:
c5:46:1e:4e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 08:49:12 2025 by rpki-client