Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BPN69UikmPRj0A_RCF4UlVUbMQ.cer
File: 1BPN69UikmPRj0A_RCF4UlVUbMQ.cer (raw, json)
Hash identifier: QuvfkoEiAaYy/xY745UJfD9UQ2Q3f1qJiwNlHjisif0=
Subject key identifier: D4:13:CD:EB:D5:22:92:63:D1:8F:40:3F:44:21:78:52:55:54:6C:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026F83
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/1BPN69UikmPRj0A_RCF4UlVUbMQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 27 Oct 2025 17:22:00 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 133099
IP: 103.173.36.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 16:23:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159619 (0x26f83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 27 17:22:00 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91A4F53, serialNumber=D413CDEBD5229263D18F403F4421785255546CC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:06:cf:4e:71:6d:4b:be:d4:7b:39:af:82:fa:
a3:2f:78:5b:70:5b:b4:e9:95:a4:4b:54:8e:9b:d5:
25:1b:b8:11:ea:0a:7b:95:8d:19:af:ac:44:6a:e9:
ae:60:a7:fa:bd:a8:06:03:ae:8b:d3:63:ba:54:04:
8e:64:f8:a3:c7:b6:d2:9d:66:bb:63:61:b6:80:e9:
c2:25:a3:99:39:f4:6b:db:40:b3:a5:79:04:ea:ff:
2b:ce:a0:27:e5:83:f6:f8:66:7a:7f:70:ee:8f:a6:
92:f5:4f:bf:ee:fd:09:80:1e:63:a4:ca:3b:ce:8d:
f5:6c:57:ce:71:f9:15:81:a3:9b:2a:de:2b:a1:a4:
21:13:af:78:8b:39:da:1f:27:8a:9b:4a:a7:6d:59:
4d:ee:61:0f:73:58:6a:c3:79:7a:76:39:fb:f6:cf:
53:7b:b8:6e:56:eb:8c:1b:20:4e:32:45:84:7f:9a:
b1:00:e0:45:a1:a3:69:c3:cb:46:ac:1b:05:2f:14:
f6:32:54:bc:80:da:b7:9c:f1:0c:41:09:02:87:73:
60:f1:d2:11:40:54:ed:a7:f4:88:81:1c:49:bd:da:
7e:5c:44:28:6e:22:4f:8b:95:be:46:d2:35:05:30:
3f:29:ad:6c:dc:81:ee:61:7c:b9:6b:f9:2e:fb:bb:
5d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:13:CD:EB:D5:22:92:63:D1:8F:40:3F:44:21:78:52:55:54:6C:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/1BPN69UikmPRj0A_RCF4UlVUbMQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133099
sbgp-ipAddrBlock: critical
IPv4:
103.173.36.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:dd:ff:4c:f7:ee:47:a3:97:90:ee:d4:40:32:4a:15:b3:98:
ea:8c:4b:84:8f:76:22:0a:33:dd:91:61:2d:04:14:68:38:b5:
3f:3f:97:dd:5a:0e:c6:d5:aa:79:32:09:3b:eb:84:c7:fa:45:
31:2a:60:49:91:c8:09:a4:e3:ec:c1:9e:f7:9f:69:12:d3:80:
06:c0:4d:7b:83:f6:ea:4d:cc:4f:8b:1d:62:b7:c2:25:5b:ab:
1c:10:45:32:4c:b8:60:54:55:c1:62:e1:26:de:f7:78:34:57:
a2:1c:9a:1a:e1:e0:aa:85:a6:7f:67:2e:94:f1:0b:00:1a:73:
b3:bb:1c:38:6b:cc:bd:4c:02:b5:2d:d7:68:82:ca:bf:8c:1b:
db:a3:91:c0:ec:68:00:30:b9:e6:fe:5a:43:72:6d:1e:91:3d:
7a:4e:c4:c6:0c:8e:7d:cf:b0:71:b9:42:fd:2a:b6:26:d7:94:
cb:c7:7b:4e:bc:df:a7:34:81:16:8b:93:61:5c:6b:55:7e:22:
1a:96:b0:a1:6a:33:18:44:90:ba:8d:44:b9:bb:6d:7c:79:85:
62:a5:95:73:1f:bc:18:e9:32:53:0e:11:07:44:5e:5b:3a:43:
8b:e8:8d:0b:47:29:1c:5b:6c:e3:59:4e:e7:22:3b:34:ac:7c:
8c:31:b1:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 18:08:25 2025 by rpki-client