Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer
File: 9ouGJos33oELlo2481f3c-mDv20.cer (raw, json)
Hash identifier: SwItpUflLb8JpfbE6I1WkL3Cy/BnPzbYkQtt+2rlQwk=
Subject key identifier: F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024598
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 12 May 2025 14:42:22 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 136992
IP: 103.149.43.0/24
IP: 2001:df3:1080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148888 (0x24598)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 12 14:42:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91755F6, serialNumber=F68B86268B37DE810B968DB8F357F773E983BF6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e5:48:ad:86:9f:30:b5:fd:62:65:82:4c:7c:
87:06:e6:a5:1e:41:68:64:3e:b0:d9:58:30:3d:90:
e5:12:76:96:84:08:89:41:d9:3f:a5:9e:f1:ff:ac:
49:34:1b:b6:18:8c:3a:1f:fa:11:ff:ca:ea:c9:8d:
ae:ea:47:6a:8d:9a:23:f0:1d:a9:0e:04:10:e9:fa:
b9:1f:be:6b:b5:9e:0e:ae:13:6f:4c:79:70:2a:79:
63:45:75:65:84:33:b0:85:1b:44:05:3d:ad:25:71:
5a:4f:90:4c:62:ee:49:5e:d9:9c:60:0b:57:85:c6:
ba:bf:4b:c7:fe:27:a5:9a:81:5f:a0:28:7c:e0:49:
3d:0c:03:80:6f:25:11:b3:38:fe:3b:b8:af:5f:ef:
39:71:cd:c9:46:60:86:6b:01:14:46:ae:6e:e1:1f:
41:3e:67:0e:3e:ef:b8:08:f1:58:7b:74:cb:6e:f9:
2e:c1:6a:20:b7:a4:11:56:55:cb:20:a0:70:c9:14:
b6:b4:b8:b9:a8:74:f3:d0:23:89:3f:84:55:65:9c:
ff:64:0f:b4:c4:ef:f2:37:27:25:a1:51:f2:60:42:
df:dc:3b:25:1a:c3:14:d2:d3:cb:47:fd:48:9a:43:
19:07:b3:fc:df:63:db:e6:23:6f:31:4f:28:22:6c:
97:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136992
sbgp-ipAddrBlock: critical
IPv4:
103.149.43.0/24
IPv6:
2001:df3:1080::/48
Signature Algorithm: sha256WithRSAEncryption
14:f3:05:2e:b6:05:8f:ac:f6:ea:29:1c:da:1c:34:c8:99:c9:
29:74:fa:32:62:6e:97:e0:96:3a:25:b3:bb:99:49:a8:24:58:
54:85:fc:cb:ed:e2:2d:d6:ca:e3:70:e5:27:23:41:f2:f0:83:
2d:25:ce:69:17:20:ba:0e:62:57:16:2c:1f:c4:c8:8a:1e:99:
b6:cc:13:36:9b:fd:6d:39:da:2e:25:82:48:fb:aa:ac:8d:7a:
01:a0:41:fc:23:0b:49:32:83:52:c2:32:a4:ae:5e:e8:18:80:
c4:33:22:10:48:b4:a6:f4:55:40:1a:e7:27:63:75:99:42:83:
8a:d1:5e:75:d7:cd:d9:88:35:54:5d:f5:06:52:94:e3:c2:3c:
69:7b:a5:94:4a:7a:23:c4:0f:a5:8e:47:7e:95:2d:5b:c6:94:
4d:7a:f1:d4:b9:09:b9:e6:11:95:b3:e1:9c:1c:b7:19:4f:66:
29:c5:07:27:93:ce:ac:b6:2a:5a:fe:74:7f:f1:b7:f5:83:96:
b1:40:99:b8:57:8d:a0:4b:07:f8:bf:a7:60:a0:d8:5e:b4:41:
29:de:64:1f:ac:84:a1:26:a7:93:53:2c:ed:74:d1:ec:fc:79:
5c:00:6c:ff:aa:38:d5:15:e1:9d:be:d3:92:e7:ee:5c:ba:fe:
21:4f:8d:75
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 09:02:59 2025 by rpki-client