Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer
File: 4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer (raw, json)
Hash identifier: 8rxEqp9CSAx/2IdDxGqYpD2ma2/Rz56O+xi8N2WSdh0=
Subject key identifier: E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024457
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 May 2025 15:46:18 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 149787
IP: 103.186.86.0/23
IP: 2001:df0:a5c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Jun 2025 15:28:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148567 (0x24457)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 6 15:46:18 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9149B61, serialNumber=E3E100F804013A05F922EE11CB4E0ABEA6C22B98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:51:16:e2:71:9b:cc:4c:6f:36:ea:b3:34:f4:
d9:35:f6:63:3f:9a:3c:97:dd:a3:11:40:e3:33:72:
cf:ac:83:4d:8d:6d:a6:c5:a9:4f:c7:d0:f0:e6:f6:
10:fb:1c:48:b9:41:e2:a6:4b:97:02:48:5a:05:94:
f1:85:5f:6a:57:47:e8:f3:db:16:19:74:26:b6:dc:
02:6e:31:de:03:eb:46:08:35:82:1f:1c:7c:a0:7a:
f0:20:6b:e9:e5:1e:08:a5:85:7d:a8:b2:d1:38:a1:
6b:aa:5a:eb:50:77:e6:10:d0:15:ee:e4:5f:76:87:
ca:b8:85:1f:83:61:ba:81:f3:bf:f4:39:92:d1:2b:
8c:99:33:a8:30:fa:4b:99:e0:a3:4a:27:b3:0e:d3:
5a:89:16:70:d4:db:03:33:1d:4c:46:d2:f0:10:29:
83:a7:4e:ea:8e:ae:08:09:e3:a6:a1:5f:4e:38:e8:
4c:67:97:79:7b:df:e8:f9:53:e4:4a:b0:92:53:78:
d3:04:7c:84:ec:f2:15:35:26:29:63:f6:57:bb:d2:
a3:c5:10:35:39:64:70:93:56:b9:99:11:68:26:d3:
ce:2b:5d:0d:ed:e7:59:dc:77:d7:d7:76:9e:85:77:
d9:8d:b3:55:5c:36:9f:09:cb:b3:12:80:10:2b:b0:
a1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149787
sbgp-ipAddrBlock: critical
IPv4:
103.186.86.0/23
IPv6:
2001:df0:a5c0::/48
Signature Algorithm: sha256WithRSAEncryption
65:37:09:7f:11:69:9c:d9:9f:3e:69:4a:8e:5c:45:77:d0:e4:
f6:10:15:f4:f9:93:8d:70:c3:a8:02:31:ab:63:ea:eb:25:45:
14:c4:c2:d7:1b:a5:d7:8d:4e:a8:4a:a6:41:6a:76:23:0c:af:
d0:0f:9a:c8:a8:77:ed:fa:5e:f3:cf:30:82:bf:8d:5c:d5:37:
c5:c2:dd:a9:02:c3:32:82:c8:5a:bd:b6:8d:da:d4:dd:29:94:
b4:09:07:89:9d:4d:fa:77:b6:f6:8a:c0:23:73:0f:b9:dc:6b:
07:57:ab:70:72:00:c2:d9:75:45:81:cc:45:c3:8a:0e:0a:bd:
24:b5:50:a2:fa:4f:2a:61:71:50:5f:15:c6:ce:6f:a8:25:41:
44:65:91:11:53:e3:b8:ee:51:3d:05:f7:d5:1e:08:a7:65:7c:
67:c9:c0:b8:b0:82:d1:71:5f:61:ab:45:d4:c5:dd:73:95:6b:
1c:58:f0:b7:3d:dc:7a:5b:70:f4:37:10:b0:7f:49:70:5f:ae:
88:11:a6:0e:b0:67:71:cb:86:7c:b2:a7:ac:a4:bd:6f:3f:2f:
07:98:8c:1e:81:31:09:55:d7:80:91:96:c1:fd:d9:44:dc:47:
08:6e:bd:b2:be:2f:a0:05:4e:64:40:b7:62:c3:34:6e:0f:83:
39:b3:41:59
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 7 18:02:55 2025 by rpki-client