Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQIPvxAg_WO-V9oblwSwqoEDREo.cer
File: BQIPvxAg_WO-V9oblwSwqoEDREo.cer (raw, json)
Hash identifier: Ya0SFslQF+masDMnJFsBJzRI4k+63bTKV/kr5qo8INQ=
Subject key identifier: 05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026312
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Sep 2025 15:26:43 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 63526
IP: 45.125.220.0/22
IP: 103.239.252.0/22
IP: 2404:4580::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 16 Sep 2025 07:46:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156434 (0x26312)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 3 15:26:43 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A914A140, serialNumber=05020FBF1020FD63BE57DA1B9704B0AA8103444A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:02:6f:79:ec:f8:5e:50:23:60:aa:59:9f:ad:
f4:12:62:e8:cb:43:c3:45:8a:99:4b:a8:d4:ee:b4:
79:f5:7b:08:0a:fe:0a:cd:94:ee:fe:a0:c2:28:2e:
d8:dc:eb:77:34:0f:01:2d:b6:98:e6:99:2d:a4:e2:
4e:e9:a6:10:b7:e7:0a:c3:bc:fc:4d:e3:7d:71:41:
4b:74:c7:83:ca:f7:28:a8:ba:c9:de:f8:1d:1a:99:
96:a3:5c:61:3a:08:4f:5c:ea:f3:c9:aa:5f:27:43:
d2:ad:24:7d:a3:65:14:a9:a3:fa:ee:51:a2:95:72:
e8:c7:c4:31:ed:e7:81:a6:14:b9:82:4d:fb:1f:48:
d2:6b:9b:65:fd:24:b5:df:44:76:cf:b4:c8:55:21:
06:33:23:c1:28:70:a9:08:ca:fd:5a:01:a7:ac:d8:
19:4f:a5:97:bf:4e:c4:1e:dd:8c:a1:ec:65:42:81:
95:ee:d2:e9:16:55:15:19:8e:12:d4:e0:df:ef:af:
9d:45:1c:38:a6:81:16:d0:67:a6:cb:7c:51:d7:3f:
77:e7:95:fe:84:72:31:85:7d:21:52:b9:94:ce:7d:
b3:03:78:f7:15:c3:b6:92:d4:ac:84:90:f4:ec:ef:
b4:c4:9c:5d:b4:ad:2b:7d:33:fc:91:a6:ac:55:81:
a7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:02:0F:BF:10:20:FD:63:BE:57:DA:1B:97:04:B0:AA:81:03:44:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914A140/CC1DCCE8C77411E69816B068C4F9AE02/BQIPvxAg_WO-V9oblwSwqoEDREo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63526
sbgp-ipAddrBlock: critical
IPv4:
45.125.220.0/22
103.239.252.0/22
IPv6:
2404:4580::/32
Signature Algorithm: sha256WithRSAEncryption
4c:ca:e8:eb:80:fd:87:44:a5:7c:b6:35:d6:48:61:51:ce:ba:
0a:7e:dd:3f:67:21:cc:cc:5c:38:5f:eb:5a:4c:98:5b:31:9c:
52:6d:9c:32:4a:d6:41:42:65:15:f1:57:59:79:0b:e8:ae:35:
fd:72:56:eb:8b:ff:75:44:57:9d:d9:f8:7e:73:dd:49:d1:a0:
93:29:21:8b:d2:bc:6e:7e:9c:e8:bd:9c:08:d8:b8:b7:63:46:
ab:2f:63:4d:f2:f5:5a:d9:bc:93:be:62:a7:72:fc:e9:bf:48:
de:4e:e9:87:9c:be:13:0b:8f:58:d9:7c:24:3a:43:8c:a6:d5:
1c:44:9f:e4:2f:5b:6f:74:39:06:24:62:5c:7e:25:37:8e:42:
b4:c4:70:58:5e:e9:70:ea:79:1b:8a:80:79:5e:d5:ab:ae:9d:
a6:53:aa:f0:46:c8:7f:90:7b:93:a9:83:6d:9b:a5:1b:98:df:
26:19:dd:40:a2:5e:52:cb:27:89:4e:78:2e:71:b6:ce:b6:55:
82:77:65:e1:29:bd:70:42:84:8d:9e:7d:dc:53:17:48:5b:4e:
a9:39:1c:80:73:b1:fa:84:4e:97:ac:57:6b:bd:1c:39:5c:82:
09:73:87:82:0f:bb:28:1e:97:a0:b6:ce:7b:06:dc:71:ad:d0:
f6:9c:9f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 13:08:44 2025 by rpki-client