Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99M_RV7avj1Mtj-5LkygdhGcNKY.cer
File: 99M_RV7avj1Mtj-5LkygdhGcNKY.cer (raw, json)
Hash identifier: ZCypNnTLHW48zGcwixCGdR+zdAhfuawGUNoH2q6flGM=
Subject key identifier: F7:D3:3F:45:5E:DA:BE:3D:4C:B6:3F:B9:2E:4C:A0:76:11:9C:34:A6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0261DF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/99M_RV7avj1Mtj-5LkygdhGcNKY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Sep 2025 18:23:27 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 63528 -- 63529
AS: 136458
IP: 203.159.64.0/23
IP: 203.159.68.0/22
IP: 2001:deb::/48
IP: 2001:df5:b880::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 16 Sep 2025 05:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156127 (0x261df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 1 18:23:27 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A9150845, serialNumber=F7D33F455EDABE3D4CB63FB92E4CA076119C34A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8f:17:6a:22:68:ed:3d:12:09:0a:50:d5:d9:
50:24:b3:b3:53:45:d3:6c:19:98:38:89:b0:03:c2:
a0:d7:c7:53:96:ae:4f:d7:60:4e:98:45:69:f4:a4:
63:0b:fa:bf:e9:f3:44:de:0c:5b:3b:3d:3d:89:5c:
63:62:4a:a1:91:47:e3:26:75:60:d0:4a:69:8c:e8:
6f:ec:48:d7:43:65:b8:8a:8b:1a:1e:00:1d:09:6d:
ee:9a:55:c9:59:4e:d7:9c:f0:ea:ba:f9:77:78:62:
70:de:7e:7a:84:70:9d:25:e3:7c:48:16:70:6f:af:
02:2a:27:7b:68:d2:16:62:5a:6d:f2:f7:2d:1d:7e:
5f:12:15:46:92:5d:e0:24:2c:f0:ea:5f:38:0b:74:
5f:5c:61:5c:5f:af:0a:57:f3:a5:12:af:e1:d5:13:
6a:7a:71:01:4b:9b:2a:04:02:08:be:a4:bc:56:2d:
13:ec:de:c2:b4:4f:07:c0:85:e1:bd:3f:9c:df:04:
05:54:56:37:14:87:e2:6c:7e:6b:69:de:4a:a6:58:
46:d7:b6:79:51:fe:98:1f:0d:93:7a:cf:53:56:7d:
9a:df:15:0e:8c:35:dc:64:a2:b8:43:87:7c:00:c3:
7d:8e:31:8b:22:ab:be:3f:f8:62:52:5b:43:ff:59:
db:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D3:3F:45:5E:DA:BE:3D:4C:B6:3F:B9:2E:4C:A0:76:11:9C:34:A6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/99M_RV7avj1Mtj-5LkygdhGcNKY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63528-63529
136458
sbgp-ipAddrBlock: critical
IPv4:
203.159.64.0/23
203.159.68.0/22
IPv6:
2001:deb::/48
2001:df5:b880::/47
Signature Algorithm: sha256WithRSAEncryption
d0:05:3a:99:82:b3:f8:e3:c6:6b:38:c5:31:68:b6:e1:0b:d9:
8d:a6:66:6e:ef:42:07:22:0d:36:35:77:71:e7:12:22:aa:1b:
b2:ec:a8:7e:ee:f4:90:45:cf:96:f9:2e:a5:83:c0:a0:8d:bf:
2f:74:71:5d:9c:a6:15:24:91:97:a4:d7:56:65:a8:34:aa:f1:
9d:df:67:43:36:c3:1e:da:eb:67:bc:03:e5:11:cf:66:3f:6b:
a9:6d:fe:93:af:6d:3d:ee:08:03:4b:2d:2a:6c:3d:63:50:14:
f0:ea:a2:8e:e6:41:54:5b:8a:e3:81:3b:0e:3c:22:45:ac:58:
ae:2d:ef:f9:e9:29:2a:07:55:29:0a:c4:95:e0:7b:e2:73:ee:
85:e6:d4:2c:b5:4e:72:c0:f4:29:4f:71:e3:0c:0d:c9:8a:c4:
4b:05:64:13:22:3a:d7:52:cb:c9:f7:43:8f:b8:f5:af:d0:29:
8d:ed:df:c8:44:43:d2:c7:22:da:b3:45:ee:66:46:e5:dc:5a:
64:79:b6:a9:22:e4:90:e9:55:8c:04:59:41:18:eb:bf:9a:1c:
fa:6c:17:d3:88:0e:c1:16:b3:0e:74:25:f3:0e:7b:2b:39:25:
b8:e9:c6:ae:18:31:cd:ab:da:f3:af:04:fd:ae:8f:f5:31:c7:
2e:00:a2:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 07:34:17 2025 by rpki-client