Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.cer
File: 4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.cer (raw, json)
Hash identifier: KWEfW9u+0eZ58yAL0SCRILCMLGXSc/qwsZ3pCqta4I8=
Subject key identifier: E2:E0:43:A9:32:EC:E0:43:9E:2A:8E:F1:DC:40:64:D3:21:4C:27:E6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024859
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 23 May 2025 17:58:18 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 149649
IP: 103.184.94.0/23
IP: 2001:df0:8f40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149593 (0x24859)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 23 17:58:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91BAE1C, serialNumber=E2E043A932ECE0439E2A8EF1DC4064D3214C27E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:08:d1:4c:47:7a:c1:ba:e6:fd:5b:00:4d:aa:
d7:46:41:f2:b4:0d:ce:c0:46:8e:64:ac:e3:0a:bf:
2c:b9:f6:2f:a4:3f:80:90:b9:58:e1:9f:c7:28:8f:
28:76:bf:99:39:3f:79:3f:ed:1f:a1:f9:22:2a:96:
4d:b1:60:11:36:23:dd:a2:3d:c1:a9:10:d4:ea:e4:
52:dd:76:89:b1:20:1b:9d:bc:61:02:cf:2b:37:7c:
99:ba:b9:c1:bc:f9:ac:28:d7:e6:97:5a:77:09:e6:
f7:68:57:8b:77:83:15:6a:03:28:41:bd:1c:a7:0f:
0a:92:ec:33:6e:0d:18:2c:be:2d:53:22:c3:3a:73:
56:7e:38:0c:d7:40:b5:32:11:5d:fe:85:04:6b:0f:
c2:fe:8f:e1:7d:4c:d1:22:33:d3:4c:58:29:67:b4:
13:49:f3:9e:36:1d:1a:07:c9:86:5c:3b:99:f2:dc:
14:1e:c8:60:a5:74:68:d3:9a:83:4f:fe:b5:a1:9b:
42:ad:8f:6d:81:f2:51:9e:2e:ca:09:29:c2:ae:fa:
6d:b7:40:4f:a9:41:8e:8b:6b:c9:58:6a:a1:08:6b:
a2:88:fa:6c:c4:36:0d:0a:3a:a3:1f:67:05:13:1b:
0e:fa:1f:5f:11:5c:8c:36:fb:a9:20:f2:9b:10:52:
77:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E0:43:A9:32:EC:E0:43:9E:2A:8E:F1:DC:40:64:D3:21:4C:27:E6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149649
sbgp-ipAddrBlock: critical
IPv4:
103.184.94.0/23
IPv6:
2001:df0:8f40::/48
Signature Algorithm: sha256WithRSAEncryption
d6:c5:41:0b:35:8f:4a:c8:a3:d8:62:e0:f7:f5:fb:fc:66:36:
fb:73:50:00:f8:a0:2f:98:f9:ed:b5:38:25:42:e2:e6:a8:8e:
4e:27:b4:6b:96:de:e5:e6:3d:0a:92:25:a2:39:57:cf:39:fc:
f5:13:3e:c1:2b:bd:ec:07:58:33:e8:f6:9f:cd:62:4e:86:c4:
53:4f:99:5e:11:1e:70:c2:14:16:6d:2f:58:e0:0d:81:d1:23:
bb:6c:78:fa:03:7a:c4:f6:b1:78:62:85:21:4e:ba:a8:28:ef:
e4:ca:17:47:03:03:be:bc:d2:4a:53:a1:b8:3d:be:d9:99:ec:
6c:64:f0:18:b2:77:9a:6b:2b:9e:cc:02:aa:e8:83:be:7b:2c:
bc:45:87:40:10:c8:ea:e4:8e:be:e7:bd:21:12:22:d2:a5:8a:
52:e7:75:86:dc:e0:9c:b3:31:b6:b1:68:05:5e:78:7c:57:e6:
1f:a6:da:84:26:fa:b7:94:2c:bf:40:94:98:13:91:9c:76:0c:
a8:4b:5a:4f:b7:3a:c5:47:c1:f5:dd:16:5f:d8:f7:01:ed:51:
62:25:74:e3:fd:fe:98:38:73:48:99:31:b4:51:7a:49:e9:87:
18:8e:a0:4f:07:17:fd:cc:a4:f2:78:44:7e:e9:6e:48:4b:20:
88:97:56:79
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 08:48:11 2025 by rpki-client