Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer
File: 788FLZiSks6xBQkSnI3iA9SfaAQ.cer (raw, json)
Hash identifier: RZGA8Biq9FO3l70A1AjWfbWIiKiPpCiCvtnpXZ9sxsU=
Subject key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0247F5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 May 2025 02:08:38 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 136379
AS: 149448
AS: 150158
IP: 103.138.192.0/23
IP: 2001:df0:5080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149493 (0x247f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 22 02:08:38 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A91EB9C0, serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:eb:b6:a1:bf:12:c4:5a:94:e3:45:9e:e7:e7:
ed:c9:ca:d6:ba:ed:c6:99:b1:ca:ed:9c:4c:21:7c:
1d:79:4d:a0:d0:76:05:95:8c:7c:92:f2:37:45:56:
b1:14:c4:24:74:9b:bc:b6:fb:ac:3e:b1:b5:ca:b6:
bc:71:b0:b5:88:2a:2e:23:a1:54:b3:a6:15:30:86:
97:5b:10:00:c4:95:7a:5a:6c:93:26:30:74:cf:4f:
b5:6c:4b:b8:ec:64:42:ce:ed:2d:ba:f3:7c:a4:8d:
9a:dd:97:39:0f:00:09:06:43:3a:15:9f:c2:66:c9:
52:03:10:d5:e0:73:94:95:e7:0c:db:3e:38:8e:3b:
55:80:c8:24:8d:38:fd:2a:1d:e0:e0:e4:7a:51:9c:
80:1b:0e:3e:69:eb:0c:d7:64:e1:44:bc:34:b0:83:
0d:2e:29:d2:28:89:0c:5f:5a:0f:38:b4:ea:4c:83:
25:91:88:60:ea:e8:d7:e4:2d:4b:2a:c9:da:b9:c8:
56:ad:03:a4:8f:43:8e:4d:19:07:2d:4f:f3:af:a7:
0b:8d:f9:31:be:23:e9:11:79:47:d8:20:75:e1:d7:
a1:a5:bf:7b:97:01:62:04:89:3f:35:65:af:fb:9c:
c0:da:bb:39:3e:7b:5d:86:12:f3:8b:31:f8:74:f2:
b5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136379
149448
150158
sbgp-ipAddrBlock: critical
IPv4:
103.138.192.0/23
IPv6:
2001:df0:5080::/48
Signature Algorithm: sha256WithRSAEncryption
42:57:82:f6:b0:33:5b:72:35:a9:76:ff:49:99:ad:96:57:7b:
c5:bc:3f:0b:bb:db:cf:d1:a3:f9:9d:3a:bd:f8:76:8a:ef:28:
bc:b6:b1:2b:e0:0d:03:43:e2:b2:41:7b:80:31:cb:8d:93:05:
b1:46:a5:b0:0b:86:58:c9:c3:cf:73:00:4b:69:70:d7:86:b7:
ef:c3:fc:93:87:cf:6e:99:a2:45:c3:06:67:08:1b:9e:2d:13:
5a:3f:42:5e:25:c8:89:f8:9f:8b:e3:74:ae:98:36:17:d2:cb:
36:7d:9c:fc:10:2b:2b:34:82:d7:64:2d:04:9e:08:15:dc:0e:
79:82:e8:43:57:31:77:07:04:b7:c0:13:f2:e5:5a:91:0e:79:
d1:be:95:c2:84:06:2c:f2:1f:4d:46:6b:cd:7e:87:f0:33:9e:
86:30:55:3f:af:85:e2:58:0c:cc:d4:80:f4:1b:2b:a0:72:b7:
c5:76:a4:3d:b7:e0:9a:4c:91:0f:a4:af:cb:0c:ef:df:f5:9b:
7d:77:55:5d:0b:aa:48:a6:04:20:05:31:b1:1d:7f:3a:08:b5:
1e:1d:40:84:83:9f:be:8e:40:72:9f:a8:43:eb:94:ea:8d:34:
50:f8:bc:c8:95:b7:e4:65:c8:90:bd:0d:d1:f7:cc:a4:44:47:
3f:a1:14:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 09:41:10 2025 by rpki-client