Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer
File: 1bScAI9ih18VJth200lAoJsOnW0.cer (raw, json)
Hash identifier: ytergRu4iVbkPtGWbMf93JZwgU3qFSGXoehywt/7r7A=
Subject key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0262B1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Sep 2025 16:56:24 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 151647
IP: 103.98.52.0/24
IP: 103.112.101.0/24
IP: 2001:df2:1500::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 15 Sep 2025 20:07:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156337 (0x262b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 2 16:56:24 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:05:a2:dc:0e:4f:9a:0e:11:f4:44:69:46:5d:
e1:65:7a:53:e6:b6:e1:e5:c4:2a:07:50:f5:63:94:
c3:96:08:24:98:2a:a6:93:6c:ab:3d:86:12:b6:4e:
b3:e6:7a:75:a7:e5:0f:4c:e5:dd:55:5d:4c:18:77:
4b:ea:b7:eb:a4:96:f3:56:71:79:47:4d:b6:4f:8d:
08:54:b8:90:2a:d9:cc:f4:76:67:aa:74:e1:40:83:
02:e7:5f:71:f2:f8:9a:46:c5:c2:89:ca:c1:e6:bf:
98:7b:6d:9c:fd:58:3e:d7:5c:00:88:4a:48:50:95:
d4:3c:d6:40:09:e9:87:1c:8d:a7:c5:00:d9:73:1b:
f6:b8:60:02:8f:99:da:9d:55:bc:f2:31:95:58:b2:
65:ff:1a:7e:f1:47:e3:c7:4d:52:d3:3c:63:21:7d:
af:74:14:f7:a1:5f:5f:42:64:9c:93:fe:49:0d:07:
52:a1:d8:d2:b9:33:36:65:22:d4:d5:01:33:f6:e5:
c3:ee:48:a2:7b:df:e8:eb:25:b4:16:b6:6a:27:32:
fd:c5:8d:0e:c7:0d:97:84:4b:16:40:00:41:79:69:
85:39:52:a6:4a:ec:5a:63:c8:90:8d:08:4d:43:56:
1b:b2:6d:fc:db:42:d1:f9:cf:4a:70:da:3e:6f:1f:
00:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151647
sbgp-ipAddrBlock: critical
IPv4:
103.98.52.0/24
103.112.101.0/24
IPv6:
2001:df2:1500::/48
Signature Algorithm: sha256WithRSAEncryption
42:c8:ac:e3:c7:e8:28:55:cf:56:92:7b:f4:3e:a8:1f:c1:cb:
3a:57:59:5c:a0:dc:5e:4d:1d:22:01:3c:b9:f9:8e:7e:e0:90:
f8:4d:45:85:62:a1:fd:1c:b3:ed:e8:1b:be:4b:0b:87:3a:8d:
f4:0a:c5:78:69:bf:1a:3f:80:1c:25:15:db:8e:9c:cc:25:a9:
58:77:5e:96:a7:16:6e:fd:24:c9:c4:81:1a:55:c9:95:dd:de:
23:76:99:00:8e:ef:94:05:bc:ff:35:32:3c:e4:69:7e:38:a5:
c7:75:a0:e1:07:5b:e9:e4:e1:5c:8c:b5:1e:0b:e6:c1:91:e7:
2a:22:c9:b7:9f:c3:13:26:27:4f:67:3f:ef:e9:61:bc:17:69:
ca:c7:5a:9b:ea:83:8c:d2:3d:25:f3:fb:e4:21:d8:05:6d:f6:
88:5b:cd:d6:ba:f7:a2:f7:67:6c:f7:aa:2f:32:04:24:6c:31:
e4:5b:8c:3b:c5:41:a8:e6:5b:ae:e2:68:84:29:36:19:19:58:
96:f1:19:38:9e:de:45:91:f9:a5:82:b0:5b:12:05:32:1d:1f:
10:0b:61:d2:b7:bd:04:f8:d7:15:c4:35:dd:5d:ce:80:8d:cc:
f5:dc:a0:0d:9b:2c:96:39:0e:05:a7:b0:22:ac:3e:1d:1b:37:
cb:a0:1c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 21:54:40 2025 by rpki-client