Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IdrUasrF3RAzUxM0uTwpZjgOBw.cer
File: 6IdrUasrF3RAzUxM0uTwpZjgOBw.cer (raw, json)
Hash identifier: L6lM+Td23XdyF+gRvgOJ6YjvZoPxpubTrwdiGm1dib0=
Subject key identifier: E8:87:6B:51:AB:2B:17:74:40:CD:4C:4C:D2:E4:F0:A5:98:E0:38:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0263FE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 Sep 2025 13:41:33 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 138933
IP: 2401:a820::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Sep 2025 17:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156670 (0x263fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 8 13:41:33 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A913AE23, serialNumber=E8876B51AB2B177440CD4C4CD2E4F0A598E0381C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fd:4b:9e:78:eb:35:bc:64:da:61:5e:0e:81:
b2:17:a1:78:ea:33:0c:67:c9:35:ce:a0:76:b7:f4:
4c:af:43:e8:62:87:77:42:0f:5c:e6:7d:b4:48:a8:
a1:cb:b9:60:07:65:a1:20:21:50:36:aa:f2:7f:d3:
fc:b2:5e:76:50:e6:2a:9e:79:b5:d1:80:f1:cf:05:
30:e7:cc:5e:e7:55:35:50:39:3e:5d:2a:a5:21:75:
91:90:33:8f:72:3a:47:71:ef:c7:90:90:c2:f4:64:
f9:f6:a8:07:5b:22:2d:a2:7d:6b:d9:91:f9:99:52:
bd:a8:24:ba:cd:93:bd:50:0b:bf:46:13:a8:7f:b3:
9d:7f:64:2b:de:05:7e:d9:cc:31:d3:b3:82:10:93:
db:c9:a2:bd:32:c2:a9:04:15:2d:f7:c8:99:b8:67:
72:39:9d:5a:8b:d9:72:d2:2b:eb:f1:78:56:dc:fb:
08:85:d9:47:8d:e2:06:80:67:66:d4:8e:fa:29:17:
f5:e6:29:fd:01:6a:26:f0:90:d2:8a:9b:18:74:2a:
d2:62:bc:fe:5d:25:f0:60:74:95:29:f1:b9:bf:86:
22:a0:87:91:4f:fe:74:34:11:e0:3e:d9:36:27:86:
8c:22:4b:32:72:24:83:bb:35:67:df:61:89:eb:f6:
0d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:87:6B:51:AB:2B:17:74:40:CD:4C:4C:D2:E4:F0:A5:98:E0:38:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913AE23/3A72ABFA2C6C11EFA346942DC4F9AE02/6IdrUasrF3RAzUxM0uTwpZjgOBw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138933
sbgp-ipAddrBlock: critical
IPv6:
2401:a820::/32
Signature Algorithm: sha256WithRSAEncryption
10:8a:3c:e2:23:6d:ce:1a:7a:bd:17:7b:16:4b:d3:db:01:1c:
0e:33:08:f3:f0:f1:a2:7b:81:11:f2:9d:ac:9f:ed:c1:cd:61:
18:bc:91:08:b9:16:b3:06:7a:b1:6b:5d:9e:ce:c0:b9:11:97:
1a:ce:d6:fc:c2:b3:8c:b1:90:e2:e2:24:cf:5d:0d:78:cb:10:
a9:d9:af:87:96:b9:3a:05:98:e2:5a:4b:90:dd:28:67:b5:61:
4d:06:cd:cc:b1:ac:b1:34:0c:2e:df:c3:a7:21:c8:0f:63:35:
6b:6a:d1:c8:65:30:ae:8c:c1:23:2b:cc:5d:38:36:9a:79:d8:
aa:56:18:0b:d8:a2:0d:ca:a2:52:08:a9:9a:e9:ac:8c:62:21:
8e:92:48:40:eb:05:3b:b6:cf:ed:a4:42:ac:2d:45:52:71:d8:
f8:ed:d0:6e:2a:6d:a7:6b:73:66:35:d6:44:22:e3:c4:a0:3d:
10:75:3c:6d:b8:ca:31:13:50:15:2a:c5:90:35:ae:0e:f9:77:
60:ff:d0:19:c7:26:26:d1:ae:6f:37:c9:3c:ac:e0:e5:8d:3c:
fb:ff:c3:4e:e0:bd:dc:7e:7b:c3:2e:d7:93:1c:06:d8:5a:cd:
c3:ca:c2:51:9b:0b:3b:46:fc:af:cc:16:fc:b2:da:2a:50:4a:
d8:73:2e:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 18:58:47 2025 by rpki-client