Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer
File: DOpooCxSn4h1LGQt4NL--fXXoUo.cer (raw, json)
Hash identifier: RoCI1areSafmlOX+c1TJA2QK3xu26416zxKk1o+CTuI=
Subject key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 027275
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 03 Nov 2025 13:07:41 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 45.127.112.0/22
IP: 103.196.36.0/22
IP: 2402:e580::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 16:23:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160373 (0x27275)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 3 13:07:41 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A913025C, serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1d:d5:28:c6:49:2c:93:6b:32:d8:5a:90:ce:
46:3f:c9:41:cb:c1:a3:d0:1a:a5:1f:e7:ac:d1:59:
91:81:e6:1c:ae:dd:5a:61:28:37:3d:75:1e:9a:4e:
f4:e8:1d:8e:6e:58:af:9d:aa:fe:38:4a:7f:9e:0f:
95:23:35:aa:e2:66:01:b0:0d:3b:08:2f:8a:3c:9c:
a9:aa:e0:64:8d:73:20:5b:c7:0b:1f:95:b1:ca:c4:
6c:10:73:4e:f8:09:fa:de:19:fc:32:a0:0d:15:f6:
ae:49:68:46:7a:4d:56:74:28:6b:a7:a7:78:cc:6e:
0a:5e:20:0b:3f:5b:76:63:c2:29:7e:32:a6:38:30:
fc:98:04:19:ad:aa:d2:ad:4f:2e:4e:7f:26:51:a0:
dc:a4:38:c7:b8:19:52:6a:28:ab:49:d9:95:0a:28:
18:36:84:6d:b2:27:61:dd:4e:c8:d5:38:8a:c0:e3:
42:e9:b9:8f:a3:2a:fb:eb:a2:e3:f7:ca:17:83:ec:
80:d9:93:6e:f6:a7:d7:66:b7:cd:35:91:9e:90:b7:
e1:a4:c3:09:48:3a:8f:b7:c3:59:ae:fd:0b:6e:0e:
f7:00:2c:12:05:fc:c1:56:23:9e:54:42:ef:2d:e5:
8e:38:15:f4:81:14:3c:81:04:34:64:41:3a:54:25:
bb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.127.112.0/22
103.196.36.0/22
IPv6:
2402:e580::/32
Signature Algorithm: sha256WithRSAEncryption
60:56:29:67:85:c7:8e:ea:5a:13:aa:43:a4:2f:dd:57:c0:ba:
11:a3:86:a8:30:5b:7f:11:fb:90:a1:d6:13:1c:5a:b3:c0:b4:
5a:12:45:ac:fc:c4:ea:b0:e4:8c:08:07:ec:24:c1:f9:93:70:
25:9e:83:7d:4d:f3:96:9d:25:66:8a:3c:40:77:fe:fb:aa:fc:
48:12:a6:2a:47:a1:64:9a:67:ad:2c:df:b5:a5:fa:3b:e9:f3:
68:10:a1:75:ec:c9:c0:07:10:c1:a5:56:c3:94:2a:e6:30:5f:
83:a9:c0:c5:60:2c:38:76:36:e3:a4:8c:ab:62:b5:bf:f7:b4:
ff:cb:ea:04:6d:4f:1c:de:9c:06:84:90:f4:3f:63:8b:e6:d9:
4d:7d:53:d8:be:ce:6f:2f:8b:6e:46:7e:ec:4a:d2:6f:8e:8f:
81:3d:aa:0d:de:ff:13:10:b0:b5:2c:f6:47:02:07:4d:26:66:
86:63:c3:a8:7d:7a:99:67:2d:c2:d0:c1:5c:d5:84:d8:31:9b:
a7:8c:56:4e:25:19:81:e3:de:b3:59:a7:32:f8:38:ba:57:43:
0b:80:8b:1c:ae:3c:1f:a9:44:1a:4a:09:6c:4e:94:45:14:cb:
49:60:c2:50:d3:89:b9:62:b5:1a:3e:08:c1:44:33:b4:25:71:
14:c3:c7:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 18:05:45 2025 by rpki-client