Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7N0mV0PpIRvOCq3LsCLObzO-CwY.cer
File: 7N0mV0PpIRvOCq3LsCLObzO-CwY.cer (raw, json)
Hash identifier: vS4JAnw3zGX7BgavvwP809rdksuLVa5D5zxT2Rg0hH4=
Subject key identifier: EC:DD:26:57:43:E9:21:1B:CE:0A:AD:CB:B0:22:CE:6F:33:BE:0B:06
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0271C5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/7N0mV0PpIRvOCq3LsCLObzO-CwY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 01 Nov 2025 20:59:10 +0000
Certificate not after: Sun 01 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 58701
IP: 103.20.89.0/24
IP: 2406:e9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160197 (0x271c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 1 20:59:10 2025 GMT
Not After : Mar 1 00:00:00 2026 GMT
Subject: CN=A91C1710, serialNumber=ECDD265743E9211BCE0AADCBB022CE6F33BE0B06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:de:34:dd:79:e0:40:da:e7:35:b8:8e:3d:62:
93:1a:93:bd:f2:eb:f8:e7:ab:19:15:92:dc:f7:5f:
72:52:9e:a2:7b:63:c5:46:94:c3:0b:dc:1c:15:f3:
ad:7d:11:c4:74:40:36:96:05:18:ea:cf:1e:fa:b5:
6c:ae:05:cb:8e:3f:51:f1:63:2c:96:2c:b3:54:88:
cb:d6:1b:02:6e:73:b1:48:6d:20:54:b8:32:fb:13:
0b:39:60:b3:42:c2:1c:ca:38:66:1e:3e:f5:d9:41:
19:c6:2a:00:71:17:46:62:0e:d2:ac:54:7a:41:24:
f1:49:e4:70:29:42:bb:8a:2e:9e:ce:16:44:e2:c7:
32:e9:f6:d4:8e:14:f9:61:b8:e5:d1:fa:b5:04:77:
1a:1b:b4:9d:17:4a:24:8f:66:15:32:9d:93:c6:bb:
51:af:94:29:d8:38:7a:21:e4:b3:b4:b5:60:b8:bd:
64:1d:3f:9f:d2:19:fb:0f:16:00:3e:96:0f:eb:03:
de:21:72:cc:fa:7b:87:c1:a4:8c:3d:88:b6:ec:60:
27:62:da:e2:7b:b7:5d:8c:c6:b2:3a:ae:f7:77:23:
7b:28:08:df:4d:7b:eb:a8:54:3e:e6:ca:2a:83:89:
1a:17:b8:92:ee:bf:be:0c:30:8b:c3:b3:93:cc:c4:
cc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DD:26:57:43:E9:21:1B:CE:0A:AD:CB:B0:22:CE:6F:33:BE:0B:06
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/7N0mV0PpIRvOCq3LsCLObzO-CwY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58701
sbgp-ipAddrBlock: critical
IPv4:
103.20.89.0/24
IPv6:
2406:e9c0::/32
Signature Algorithm: sha256WithRSAEncryption
1a:6d:97:2c:d8:e6:ee:f1:75:3c:de:c1:1f:96:ee:b5:88:59:
f2:29:f0:76:b5:c1:39:8a:2e:74:48:84:56:82:30:e9:76:10:
1a:dc:46:5f:57:da:56:3e:65:8d:a4:e8:c8:db:76:59:e2:bd:
fc:a7:24:42:bc:9b:31:d3:10:f1:37:ec:c2:1b:20:25:0f:df:
8d:7d:54:71:10:4a:68:df:7c:15:07:28:38:e7:eb:6e:55:b7:
6c:3b:45:96:16:55:2e:e7:b9:eb:72:ad:46:62:a5:9b:6b:fd:
4e:d0:cb:da:a8:a5:68:8f:4c:24:20:ff:0a:95:2a:a2:4a:b2:
89:1b:6a:19:72:49:1d:f0:52:b0:1b:c7:12:06:bd:e9:b9:b8:
12:36:ee:2a:c1:9c:1c:56:ca:40:f7:63:7c:78:ff:98:db:1c:
84:af:31:94:e0:0c:9f:7f:3e:b0:30:2e:47:a6:19:fd:f1:68:
5c:65:e1:81:3d:72:4e:e9:d1:e4:3f:02:7f:40:20:0c:26:d6:
62:4f:7b:0d:0f:67:d0:11:91:73:c6:6f:51:61:85:5a:1d:ba:
a4:97:94:7a:fb:36:37:17:63:c4:55:24:15:00:28:68:0d:1c:
87:0e:7a:0f:90:37:76:93:02:c6:b4:49:16:41:0d:bf:d6:18:
f1:ad:14:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 11:17:30 2025 by rpki-client