Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer
File: 64sK0sB2YghSy8N4kOZK1Aa0ieg.cer (raw, json)
Hash identifier: DrgaIWfIMwWzj7esAxsjuPvDxyvQ+cQe/T9TZiYf9A8=
Subject key identifier: EB:8B:0A:D2:C0:76:62:08:52:CB:C3:78:90:E6:4A:D4:06:B4:89:E8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0270A6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Oct 2025 17:57:41 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 139675
IP: 103.143.126.0/23
IP: 2001:df1:8680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159910 (0x270a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 30 17:57:41 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91C72B1, serialNumber=EB8B0AD2C076620852CBC37890E64AD406B489E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:85:4c:0a:ec:3c:a1:50:5e:da:56:a0:e2:d9:
a2:a3:5f:6d:ef:1c:9f:10:3d:ca:69:95:2f:08:2d:
33:7d:c3:3c:5b:36:c0:8a:1c:5a:f5:13:c5:af:84:
39:43:de:84:a6:14:62:cd:cc:fb:fa:d7:57:7e:9c:
89:69:ef:28:34:64:ac:07:0a:09:fa:f1:14:3e:11:
a0:90:30:1b:b9:46:99:a6:79:8a:a6:3e:f1:83:80:
1b:9f:2b:9c:fc:af:9f:6a:0b:81:66:ba:a3:e5:c1:
4f:15:8f:c0:b9:b3:c9:3a:c6:6e:68:83:5e:eb:9e:
f4:13:48:4e:a0:3b:a0:e4:3b:d2:37:54:6f:fb:e4:
2d:26:71:a0:70:e0:1e:46:fa:89:0e:31:bc:48:4a:
a5:3f:be:e4:cd:d5:36:06:78:8e:87:05:cb:3e:5c:
c7:eb:ba:eb:00:3a:df:12:52:f9:e5:bd:f8:37:19:
b7:d6:b1:35:de:f1:83:9d:4d:a7:39:6a:93:f1:89:
b5:12:eb:12:71:d8:c5:3a:10:8f:71:4a:65:60:2f:
0b:8b:27:38:0e:54:a9:a3:1b:7f:68:2d:cb:34:ac:
1a:da:5c:52:a0:0b:50:e8:e2:77:72:95:19:07:a1:
01:ed:f3:ff:ff:0e:eb:0c:5e:25:c4:a8:ee:1b:d6:
09:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:8B:0A:D2:C0:76:62:08:52:CB:C3:78:90:E6:4A:D4:06:B4:89:E8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139675
sbgp-ipAddrBlock: critical
IPv4:
103.143.126.0/23
IPv6:
2001:df1:8680::/48
Signature Algorithm: sha256WithRSAEncryption
05:da:d0:d2:fd:06:ea:fa:69:35:88:7a:e3:b4:9f:e6:21:80:
f2:d9:54:a5:e4:7c:7e:8d:be:80:5f:ca:4f:e3:1a:f8:79:21:
b2:ba:5f:63:a1:5c:2e:47:d0:b5:66:87:c8:8f:5f:0b:f4:57:
78:c7:74:64:4a:33:6b:56:0c:24:23:e7:b6:85:8b:9c:d4:df:
9f:e4:38:f7:25:e7:5a:09:db:fc:79:ea:5c:b0:11:81:be:d6:
31:02:40:f7:f4:05:6a:a7:c5:6d:71:96:12:ac:7c:53:b9:b1:
fe:63:9a:97:5e:32:4f:79:37:e0:1b:84:73:31:61:62:f3:b2:
d6:9a:08:cd:d5:ac:61:fa:3a:10:6b:33:8b:a7:8f:7f:58:cf:
7f:c2:4f:34:bf:67:09:19:ac:26:0f:68:cb:3f:12:e5:aa:16:
bb:38:4b:de:71:92:07:7a:e7:b3:73:ce:55:8b:b6:d6:40:db:
14:3d:41:4c:56:30:be:0f:6e:3a:15:a4:f7:7c:e9:78:56:a2:
3c:0d:b6:c9:e1:9e:e5:98:9f:35:17:de:1b:80:45:95:74:25:
a6:e2:07:b1:74:1c:42:2a:54:4a:9f:53:4e:36:9a:2d:8a:64:
a7:72:7b:10:40:36:49:d1:c1:cf:c4:27:bf:63:b4:2c:04:5b:
db:f7:7a:d8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Nov 3 11:13:56 2025 by rpki-client