Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer
File: DAsd1farZExXB4GkKeRIBQIY6es.cer (raw, json)
Hash identifier: em9GFI4R+EycN17RMokhEg3zvtPReGBmH0i7Ue37848=
Subject key identifier: 0C:0B:1D:D5:F6:AB:64:4C:57:07:81:A4:29:E4:48:05:02:18:E9:EB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026283
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Sep 2025 14:00:29 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 142610
IP: 103.170.189.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Sep 2025 19:44:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156291 (0x26283)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 2 14:00:29 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A9134C3E, serialNumber=0C0B1DD5F6AB644C570781A429E448050218E9EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9f:01:f8:97:c4:93:a3:d7:13:70:9e:54:ce:
ef:8e:5e:2b:6b:8b:09:68:7d:94:6f:24:fa:e1:eb:
d4:07:2e:f9:da:47:1f:ec:01:10:9f:61:39:8b:25:
f5:83:8c:72:a2:82:02:c2:2e:77:52:91:9d:e4:a0:
7d:06:50:4b:5e:f9:1f:51:9c:9b:de:2b:12:bc:6d:
97:cc:78:c6:6f:63:70:13:af:d7:2a:2e:d8:b7:6c:
ee:d5:85:ab:29:71:1c:1a:7a:ad:37:8a:bf:bd:68:
45:39:9f:46:8a:13:c3:b2:c5:4a:5d:53:81:14:c4:
b3:71:19:1b:cf:7c:79:50:36:fc:63:1b:a6:84:f5:
f5:ac:11:93:83:f8:e5:d8:12:cb:b4:a1:bf:2b:bb:
a5:f0:0c:54:79:76:52:a9:7b:dd:b4:aa:3c:1d:25:
c6:7f:4c:0b:60:e3:b5:34:26:05:ec:94:54:8a:81:
e5:87:e2:c8:55:ae:75:b3:68:f8:ba:07:c2:b9:9f:
b5:60:b4:16:84:a3:c4:cd:be:7f:41:3c:77:cc:4d:
19:36:8e:e0:74:d0:9b:7a:dd:2b:2d:5f:3c:d9:c7:
dc:60:ab:c9:12:11:59:b3:1a:c6:75:3b:73:a7:3b:
46:ea:5c:1a:0a:e2:78:be:09:e4:fd:4f:bb:dc:19:
bd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:0B:1D:D5:F6:AB:64:4C:57:07:81:A4:29:E4:48:05:02:18:E9:EB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142610
sbgp-ipAddrBlock: critical
IPv4:
103.170.189.0/24
Signature Algorithm: sha256WithRSAEncryption
24:e0:db:83:c9:a0:2c:d7:04:7f:f0:0e:71:e9:83:f1:a5:05:
b9:cb:64:f5:67:cd:8f:09:ec:31:b4:d1:32:a1:1c:f8:d1:5e:
76:61:b6:72:a5:4e:d6:24:0b:aa:de:84:cb:34:77:c2:e4:c9:
fe:79:06:32:78:5b:30:d6:77:43:1b:80:6e:0e:0d:ad:d8:d7:
d3:e8:ba:40:6a:c5:69:ad:db:8e:33:09:1f:53:55:5f:af:66:
58:88:86:c6:df:cb:d3:21:18:49:68:e7:4b:ad:f8:8b:1d:e5:
80:96:8b:cf:da:7c:be:56:ea:77:e1:79:01:40:ec:a2:5f:b1:
a8:b9:a1:4e:43:e7:fa:4e:92:fa:59:98:eb:4a:9e:6b:86:19:
79:cd:dd:65:79:a7:58:6f:e3:ba:a3:dc:32:92:6d:03:78:2a:
38:3e:14:c8:b1:e4:69:96:a0:ae:57:81:4c:f2:6c:ee:f5:df:
0f:e9:79:24:1e:74:6b:c0:77:e2:7b:3b:08:b0:69:51:b6:f2:
c3:1b:16:04:e5:aa:5c:58:87:b8:2c:36:73:6a:14:aa:1f:38:
b1:3b:b4:a7:1a:7d:a1:4d:f4:8f:e2:9c:46:72:05:cc:fe:f8:
a9:31:5f:81:0b:85:67:72:3c:7c:8e:26:9a:dc:90:fc:f7:24:
da:df:0f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 21:35:45 2025 by rpki-client