Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer
File: 2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer (raw, json)
Hash identifier: DI/RVuqHZAu56TwjS8Uf5VaculQhTLJ62wZbQOlfXNw=
Subject key identifier: DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024511
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 08 May 2025 18:16:36 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 151049
IP: 103.121.64.0/23
IP: 2400:efa0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148753 (0x24511)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 8 18:16:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A918A56A, serialNumber=DA4310B2F0879DF4BD9839A14C8E3FBBB6F1EBF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:72:0b:17:3c:8b:fb:99:df:44:8a:16:da:06:
98:43:c9:8c:50:73:7c:1a:3d:54:7c:7f:74:e0:bc:
c1:a4:f3:a8:d1:16:13:9e:40:c6:8f:39:b4:01:cf:
b5:93:ac:05:03:fd:a0:ce:4d:3e:a0:88:7a:b5:95:
d3:8a:4c:81:73:96:6d:79:32:1f:28:52:47:70:55:
af:49:44:ab:0a:f6:9c:4a:ad:3e:f2:6c:d3:da:5f:
57:6a:74:08:8d:b9:ec:96:f4:25:4f:bf:21:48:34:
79:76:e0:e3:21:97:4c:10:48:76:f7:e5:87:07:c7:
e0:54:54:1e:e9:4e:83:7f:cf:04:61:9c:ca:9b:12:
e4:e7:4d:b5:d0:74:8e:e9:87:9b:86:bd:87:bc:90:
86:9e:fc:0e:9e:1f:7e:cf:cc:9b:1f:d0:4f:97:93:
4f:d0:53:f4:c0:5b:91:12:00:40:f5:39:49:33:03:
70:89:b0:8e:ff:8c:4b:0d:89:ad:03:5d:3f:42:ff:
54:9d:82:c9:85:fd:5c:ae:bb:9e:b4:8f:26:e1:b1:
4d:85:b2:dd:a9:a9:c9:d1:9d:76:fe:fa:63:5c:67:
9b:4d:99:8c:5a:7d:3e:25:a6:e5:c9:db:27:65:64:
10:9c:5f:60:42:ef:d8:07:6d:47:f1:13:69:e3:07:
af:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151049
sbgp-ipAddrBlock: critical
IPv4:
103.121.64.0/23
IPv6:
2400:efa0::/32
Signature Algorithm: sha256WithRSAEncryption
09:3e:1a:db:49:e7:d4:eb:eb:60:a9:1e:55:99:67:51:f7:fd:
a0:c0:43:a8:5f:0f:3d:86:f2:4a:9e:63:00:29:78:2b:d9:00:
98:3a:1d:56:32:dc:21:14:94:fa:cd:9e:6f:84:17:57:d2:3e:
fe:27:e3:ca:4e:09:74:d0:0f:59:a6:6d:41:96:e6:c4:55:16:
3b:13:c4:b2:4c:4d:7e:e7:05:64:7f:54:f1:bb:b8:7b:06:15:
23:31:ce:8c:77:40:86:de:11:30:5e:78:7d:03:f7:77:da:47:
3c:8b:c5:a2:d4:c3:6f:87:1c:95:f7:31:4e:e7:18:25:71:93:
ac:58:a6:4e:69:3f:26:69:8a:19:0e:ec:90:7c:de:16:58:d9:
d8:73:1f:f4:00:e8:2a:73:9d:c9:87:80:85:b4:cf:02:d2:fa:
73:6a:6b:38:7a:a1:c6:d6:a4:30:30:3f:61:6e:15:d1:89:54:
41:e6:f2:25:7c:24:48:08:5d:1d:4f:54:9b:52:0d:42:87:ed:
60:96:68:39:a3:63:62:55:38:5a:f7:be:42:44:4d:31:2c:bc:
80:33:6f:3a:9a:63:41:59:1c:ca:33:e7:ad:dd:03:e8:3d:a7:
da:54:d9:25:0e:aa:82:fe:9d:65:8b:2f:18:a8:09:97:f1:40:
9d:9b:d1:19
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAkURMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDUwODE4MTYzNloXDTI2MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOEE1NkExMTAvBgNVBAUTKERBNDMxMEIyRjA4NzlERjRCRDk4MzlB
MTRDOEUzRkJCQjZGMUVCRjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCecgsXPIv7md9EihbaBphDyYxQc3waPVR8f3TgvMGk86jRFhOeQMaPObQBz7WT
rAUD/aDOTT6giHq1ldOKTIFzlm15Mh8oUkdwVa9JRKsK9pxKrT7ybNPaX1dqdAiN
ueyW9CVPvyFINHl24OMhl0wQSHb35YcHx+BUVB7pToN/zwRhnMqbEuTnTbXQdI7p
h5uGvYe8kIae/A6eH37PzJsf0E+Xk0/QU/TAW5ESAED1OUkzA3CJsI7/jEsNia0D
XT9C/1SdgsmF/Vyuu560jybhsU2Fst2pqcnRnXb++mNcZ5tNmYxafT4lpuXJ2ydl
ZBCcX2BC79gHbUfxE2njB6/VAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQU2kMQsvCH
nfS9mDmhTI4/u7bx6/EwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThBNTZBLzI2RkExODE4NzcyNDExRUVBMTY3NEUxRkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4QTU2QS8yNkZBMTgxODc3MjQxMUVFQTE2NzRFMUZDNEY5QUUwMi8ya01Rc3ZD
SG5mUzltRG1oVEk0X3U3Yng2X0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAk4JMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ3lAMA0EAgAC
MAcDBQAkAO+gMA0GCSqGSIb3DQEBCwUAA4IBAQAJPhrbSefU6+tgqR5VmWdR9/2g
wEOoXw89hvJKnmMAKXgr2QCYOh1WMtwhFJT6zZ5vhBdX0j7+J+PKTgl00A9Zpm1B
lubEVRY7E8SyTE1+5wVkf1Txu7h7BhUjMc6Md0CG3hEwXnh9A/d32kc8i8Wi1MNv
hxyV9zFO5xglcZOsWKZOaT8maYoZDuyQfN4WWNnYcx/0AOgqc53Jh4CFtM8C0vpz
ams4eqHG1qQwMD9hbhXRiVRB5vIlfCRICF0dT1SbUg1Ch+1glmg5o2NiVTha975C
RE0xLLyAM286mmNBWRzKM+et3QPoPafaVNklDqqC/p1liy8YqAmX8UCdm9EZ
-----END CERTIFICATE-----
Generated at Fri May 30 09:24:08 2025 by rpki-client