Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer
File: 9FwPT0Z84VduXunkHlV28DSMRqc.cer (raw, json)
Hash identifier: aW0yQCQpZXQ9OoBP6nkWKlqPLJaJArwVySL6SJ9zhaI=
Subject key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024896
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 May 2025 13:29:09 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 9513
AS: 9908
AS: 142115
IP: 61.10.0.0/16
IP: 61.15.0.0/16
IP: 61.18.0.0/16
IP: 125.59.0.0/16
IP: 203.83.64.0/18
IP: 203.168.128.0/21
IP: 203.168.192.0 -- 203.168.215.255
IP: 203.168.220.0 -- 203.168.255.255
IP: 218.252.0.0 -- 218.253.63.255
IP: 222.166.0.0 -- 222.167.95.255
IP: 222.167.128.0/17
IP: 2400:8d00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149654 (0x24896)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 26 13:29:09 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:28:c7:65:28:23:0d:7c:cb:b3:2e:9f:96:6b:
b5:d9:f3:16:c2:92:74:2a:46:10:d2:cc:8d:dc:5e:
6d:01:49:82:f8:ee:e3:20:d0:e7:98:2c:33:1a:65:
fd:d9:d8:8a:87:c9:2a:0d:a2:4b:00:07:e6:75:15:
63:86:2f:3e:93:2f:72:17:7d:fe:51:0b:f3:26:48:
2b:9a:b5:76:e9:2e:53:44:f3:02:3a:5f:40:b1:46:
7b:64:81:60:92:3e:0b:c4:3b:3b:3f:65:05:9b:0c:
af:d3:82:5b:f0:35:9e:f1:62:ed:bf:81:bc:d4:d6:
2d:89:39:3c:f6:c9:d0:21:40:ca:e0:92:ea:77:52:
3e:3a:cf:e3:c2:b4:0e:91:54:a9:1f:31:bc:ca:ba:
a0:d5:41:ad:70:45:5f:e4:8b:c5:fc:63:f0:8d:b5:
5b:a5:97:44:eb:b8:ae:df:49:15:c8:07:68:01:05:
03:34:47:f9:74:68:b5:f7:7a:dc:af:11:c2:3c:68:
68:52:fc:60:a8:da:80:4f:09:66:07:16:fe:51:4d:
7e:1b:47:bd:72:2b:a8:1e:4e:bf:b6:94:cc:1c:86:
86:eb:ca:ea:71:06:ab:2f:e3:5a:1d:d1:f2:e8:35:
5c:fb:fe:13:4c:37:83:20:e2:26:2a:0b:c2:2f:19:
de:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9513
9908
142115
sbgp-ipAddrBlock: critical
IPv4:
61.10.0.0/16
61.15.0.0/16
61.18.0.0/16
125.59.0.0/16
203.83.64.0/18
203.168.128.0/21
203.168.192.0-203.168.215.255
203.168.220.0-203.168.255.255
218.252.0.0-218.253.63.255
222.166.0.0-222.167.95.255
222.167.128.0/17
IPv6:
2400:8d00::/32
Signature Algorithm: sha256WithRSAEncryption
66:d8:b0:e2:9f:c1:b3:c6:0d:01:a6:48:77:aa:9b:10:0a:40:
b4:dd:13:07:73:72:61:ab:a7:96:07:cc:70:41:85:67:92:8f:
0d:6e:b9:2a:95:4d:0d:89:e5:a7:1b:af:35:cb:bd:d3:0e:e9:
cf:f9:b9:9e:33:61:94:15:1d:2e:a5:d5:c9:52:8b:5b:8b:4e:
20:8a:d1:42:27:15:96:01:e2:41:90:98:8e:20:dc:1a:89:33:
b5:b6:07:44:c6:2d:b9:91:19:6c:22:00:d6:ce:7a:ae:75:b7:
16:b9:de:5a:61:eb:ec:c6:b8:99:a6:12:a7:79:91:f6:fe:28:
bc:e1:6f:17:6f:9c:b8:ff:27:0c:fd:cd:22:a0:a6:c1:f4:95:
4a:65:f7:57:5c:29:18:f7:c9:86:f8:f9:08:7f:9f:69:49:5c:
57:72:8b:8a:45:0f:c5:de:4e:e2:a6:0a:ff:8f:01:85:c7:ac:
c3:f9:cc:b4:18:68:4e:24:6f:8a:f5:dd:76:34:53:87:40:cc:
be:22:78:e0:38:ce:ff:69:19:b2:cf:81:97:b9:ca:0a:64:aa:
3b:6e:2a:33:cf:cf:60:05:34:28:6d:b9:c4:c5:17:39:4b:d1:
7e:ae:a0:c2:39:64:57:94:d1:fb:59:2c:d8:7d:07:3e:a1:b4:
24:3c:4a:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 08:55:35 2025 by rpki-client