Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer
File: AflcxfCmuelnxvjzbH9k1CRLrHI.cer (raw, json)
Hash identifier: G9dXqI3A3YuwbO5ymyG+8wBQH9de/ii3sWfUqilPf78=
Subject key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026627
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Sep 2025 16:08:49 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 150138
IP: 103.16.208.0/23
IP: 2001:df1:ac0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Sep 2025 21:23:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157223 (0x26627)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 18 16:08:49 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:74:5e:0e:28:65:b6:9a:c4:7b:55:97:ae:85:
12:70:5d:0e:e9:ca:bf:67:b4:94:13:2a:c7:9c:33:
18:64:2c:22:5f:30:8a:46:3d:81:47:e1:96:0a:eb:
1f:63:1e:2b:bc:12:04:ae:f5:a8:ac:02:7e:6e:88:
d8:06:21:a8:9a:0f:40:40:66:20:d4:1c:cd:78:8a:
43:ca:05:bb:74:9d:02:db:37:49:1f:80:38:22:6b:
40:34:2b:ce:ef:6c:c6:6e:25:20:19:e4:92:2f:40:
5b:28:fe:b9:d5:f2:ad:06:83:4d:0f:8e:7c:dd:be:
a9:34:a3:f5:a6:13:95:d6:ca:f1:2e:61:59:ec:f0:
a2:52:41:c6:f5:94:fb:ab:47:03:16:31:77:e6:42:
d3:51:fe:11:fe:52:e5:04:8b:13:f4:1b:27:c7:6e:
9e:bf:08:36:1e:de:fb:b2:46:f2:8e:fa:9c:94:0e:
91:9f:88:bb:8e:9f:91:1d:ac:5c:83:ca:3c:e7:95:
cb:13:37:b3:2d:7a:3d:38:18:24:85:3b:09:66:f1:
32:94:77:73:30:aa:30:4b:a6:97:a7:fa:92:ea:64:
fa:27:d8:c9:be:fa:88:b1:c5:4c:4e:45:d7:9e:75:
84:bc:48:b8:81:50:8b:8a:b2:9b:bb:26:f8:dd:86:
92:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150138
sbgp-ipAddrBlock: critical
IPv4:
103.16.208.0/23
IPv6:
2001:df1:ac0::/48
Signature Algorithm: sha256WithRSAEncryption
13:78:fb:1c:e5:ed:12:37:cb:3d:77:0b:24:c9:6b:e1:c0:2b:
ae:e8:c6:67:16:a4:43:93:03:d6:8f:ab:dd:c5:0c:46:dd:63:
2e:b1:d2:32:be:66:21:58:16:e6:47:8b:9b:77:98:6b:c6:b1:
a5:57:14:47:52:c8:03:9a:3b:2d:15:82:1f:99:fb:53:1e:76:
b4:03:e8:4c:37:cb:80:62:56:d7:2e:13:20:a8:cf:e6:cc:9f:
19:2b:0a:d6:72:51:99:20:7f:42:e0:e1:fb:2f:6d:2f:69:1c:
7b:5a:e0:96:ec:bc:5c:b9:41:38:b6:37:15:0f:a7:52:5d:1d:
0e:c7:8e:36:52:60:58:50:97:89:96:57:d9:7e:55:bb:32:74:
96:5f:4b:56:2b:0b:35:2e:36:6a:2a:f0:6a:8b:1b:47:b0:91:
0a:59:e4:50:c0:f0:33:80:b4:37:21:de:6d:ad:d9:7a:18:a0:
4f:2d:24:82:f7:c8:98:98:13:0b:23:74:40:ed:6e:61:5a:ca:
ca:dc:41:fc:9c:f9:7b:79:3d:30:b4:12:9d:10:c7:28:50:2e:
a9:d5:d9:51:43:c1:58:64:10:28:69:17:57:6d:c3:3f:bb:75:
b2:17:9e:8a:11:a9:a1:f1:80:18:49:ea:5b:7a:e5:ae:4e:86:
f4:3a:ea:52
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Sep 18 23:29:08 2025 by rpki-client