Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer
File: 433E2CR2A-hIwAZsRFuc2NpzUNY.cer (raw, json)
Hash identifier: AeNZSy5fnRGcnAcDU36IzP7iahDXlUdNLKC8wRNIwoQ=
Subject key identifier: E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02524F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Jul 2025 21:55:58 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 134244
IP: 103.245.172.0/22
IP: 2406:1700::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Jul 2025 03:15:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152143 (0x2524f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 1 21:55:58 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A916C8F2, serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8c:22:77:b8:66:c3:9a:0d:bb:87:d3:cd:49:
b0:cc:a3:f1:a6:cc:57:e9:31:f6:49:cf:e0:58:c9:
ab:77:fd:f9:fc:f6:35:4d:0f:43:5a:04:f2:3a:1c:
6b:80:c0:55:77:f5:b6:36:25:5e:4b:d8:93:f6:51:
8d:f0:40:0d:38:24:b7:a5:6e:d4:74:ae:5f:0b:cd:
e8:91:02:dd:0d:5e:b5:2f:ba:52:08:d0:1c:21:02:
61:c2:ef:1f:63:91:07:b5:98:a3:b9:38:f3:95:41:
73:c0:d1:75:69:60:1d:9f:8c:77:94:42:a9:e4:11:
a6:be:38:b5:d8:41:9b:18:27:80:c9:e9:76:e1:63:
8a:36:b6:d6:52:ec:05:99:28:08:18:fa:46:a5:cf:
79:73:ad:20:a2:15:49:51:70:22:27:01:65:a7:94:
b7:14:3f:36:af:93:5a:09:dc:a2:4b:11:87:9d:44:
79:12:41:5d:88:19:5a:4b:0e:01:83:dc:9b:8e:98:
6d:a5:27:db:d2:26:16:d0:8a:4c:11:62:08:dd:ea:
4e:72:43:9b:8e:91:e8:ab:e0:2b:4b:aa:31:77:9d:
bf:2c:1b:7a:a4:7b:35:2b:c5:3d:99:91:a3:8f:22:
f0:40:a4:d1:cc:8b:58:54:16:6a:23:d2:36:05:b6:
2f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134244
sbgp-ipAddrBlock: critical
IPv4:
103.245.172.0/22
IPv6:
2406:1700::/32
Signature Algorithm: sha256WithRSAEncryption
d7:7b:86:2b:99:00:ed:16:de:ce:e1:ea:74:ce:e4:bb:f8:19:
6f:00:3b:d3:ca:a5:d8:3c:f9:3b:a5:44:b6:0d:e5:bd:17:88:
6d:59:e5:82:b3:79:93:a7:3d:c9:ca:82:1a:41:d9:b2:ac:51:
0e:d9:ed:a1:f1:98:e4:03:b1:b5:e9:23:e3:3d:12:e6:50:90:
11:d2:f9:5d:59:55:d8:04:e2:49:46:51:56:a2:f2:0b:39:10:
48:7b:32:f7:42:3d:b2:66:b7:89:b5:87:1f:da:1d:a2:1b:f1:
8d:20:75:74:54:24:de:6b:b8:7e:65:1d:e3:83:e1:2b:7e:a4:
01:4d:9e:db:97:f4:03:21:3a:cb:3b:c0:15:ea:ce:71:a4:1d:
90:12:73:a0:53:99:ce:05:9f:87:5d:d7:13:8f:65:88:84:9d:
5e:65:27:1e:82:c1:14:8a:f1:8a:9a:cc:3a:6b:55:08:c2:98:
31:e0:55:27:9a:e6:c9:98:02:b2:10:ba:0a:e4:ef:a2:e6:89:
cf:20:bd:7a:5e:c7:90:59:5b:82:ec:8d:cf:4c:02:a1:ee:be:
c0:ed:5d:a0:03:41:f6:e9:b9:9a:d2:0c:b8:17:54:99:93:ba:
b3:c3:42:e4:15:27:d5:e9:e7:81:12:61:cd:56:c7:54:fa:7f:
70:0b:a7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 7 03:54:27 2025 by rpki-client