Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3eukbMeoktKn_2q2Q3fH7P_Yrbs.cer
File: 3eukbMeoktKn_2q2Q3fH7P_Yrbs.cer (raw, json)
Hash identifier: qnheLpLWRC2vxA/fdzSbPf2ppRsm6yX2zD+6ZptaBK4=
Subject key identifier: DD:EB:A4:6C:C7:A8:92:D2:A7:FF:6A:B6:43:77:C7:EC:FF:D8:AD:BB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025D6A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/3eukbMeoktKn_2q2Q3fH7P_Yrbs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 14 Aug 2025 18:45:04 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 63826
IP: 103.40.82.0/23
IP: 2001:df1:f880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 11:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154986 (0x25d6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 14 18:45:04 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91116D1, serialNumber=DDEBA46CC7A892D2A7FF6AB64377C7ECFFD8ADBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d9:9e:b8:1f:e9:ac:3c:ad:71:21:40:0e:aa:
3c:63:15:3b:4f:38:cb:d2:7e:57:e4:ba:dd:41:65:
71:3d:5f:60:53:4d:1b:0a:75:5f:d7:fd:90:61:81:
ed:4f:f4:57:ce:30:17:34:33:14:e2:5b:1a:f9:2b:
60:0b:10:de:68:8c:81:cf:62:53:cc:ee:01:76:a4:
38:75:ee:85:1f:38:4a:49:3a:3a:a8:3b:3d:84:89:
41:19:5e:dc:0e:8b:79:fa:90:1f:42:d9:65:bf:bc:
d5:29:fd:71:0f:cb:1a:a3:86:e8:de:24:87:9b:b7:
0a:d4:71:07:0a:bf:e0:8c:22:bd:f0:7a:79:85:c4:
9e:a3:18:a0:23:d4:9c:af:ba:e1:ec:90:33:fe:7c:
64:4a:3d:e0:11:2b:63:f2:79:2e:ee:15:b4:e1:3c:
01:d9:7b:fc:9f:1e:af:7c:af:35:bf:cc:e4:30:e2:
82:0b:95:58:70:57:17:92:f0:fc:43:ad:11:b2:4a:
bf:24:51:d4:7f:49:2c:64:40:0d:31:bf:fc:e8:6c:
5c:31:31:51:fa:ad:16:ef:38:3b:71:18:9d:f0:54:
99:54:aa:f1:80:e4:27:8f:59:1b:3b:2b:8d:71:02:
82:f6:68:d8:38:7b:82:a6:70:3c:e9:0d:48:85:0b:
2c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EB:A4:6C:C7:A8:92:D2:A7:FF:6A:B6:43:77:C7:EC:FF:D8:AD:BB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/3eukbMeoktKn_2q2Q3fH7P_Yrbs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63826
sbgp-ipAddrBlock: critical
IPv4:
103.40.82.0/23
IPv6:
2001:df1:f880::/48
Signature Algorithm: sha256WithRSAEncryption
a9:50:4b:36:60:0f:a5:a3:88:e8:ff:b0:fb:a6:7c:d7:2f:cb:
28:66:02:f7:4b:94:70:88:d7:c4:08:c1:09:2a:5e:06:7a:4e:
d7:c8:3d:1e:67:72:43:ec:f0:5c:a8:77:7a:60:eb:3f:8b:fb:
87:6a:ae:8a:9d:1d:1f:ba:dd:3d:c1:28:f7:3d:5a:f1:53:f2:
f9:16:40:31:d9:01:40:ac:8e:12:eb:a7:29:e8:fe:1f:0b:33:
9c:52:71:0b:b8:11:19:c2:4a:0d:53:1b:f7:aa:05:1c:1c:04:
c6:f2:6f:ab:27:27:b2:fe:44:85:50:2d:1d:4d:16:63:14:73:
f5:bf:a2:2d:b7:ff:0f:f7:bc:4d:5f:bf:82:07:34:ed:49:e8:
1a:fb:72:16:fe:2a:48:82:54:6b:71:17:24:e3:9e:95:e4:f9:
23:96:d3:56:b5:c8:d8:57:9a:b6:d1:82:43:66:f7:e1:76:ee:
3f:02:c9:5a:f2:c9:eb:90:7c:ef:56:6c:11:7a:39:51:82:bf:
b9:11:ac:5d:9e:e1:94:e4:06:37:5e:a6:bb:75:47:a2:92:d2:
43:97:28:ed:a2:cb:04:0e:2a:fb:97:9e:04:81:aa:d6:f3:f2:
9b:64:a0:80:7f:f8:29:40:32:93:15:16:6e:b9:93:15:14:1e:
36:c9:91:c9
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Aug 22 14:24:18 2025 by rpki-client