Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FGZAd1io17k1aUiW1QJ1KAZ5ryk.cer
File: FGZAd1io17k1aUiW1QJ1KAZ5ryk.cer (raw, json)
Hash identifier: XOKF7LUeqYNoUh07Hu5yt5gbNw2xzmQwt4K8n4jTLZE=
Subject key identifier: 14:66:40:77:58:A8:D7:B9:35:69:48:96:D5:02:75:28:06:79:AF:29
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0261BE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/FGZAd1io17k1aUiW1QJ1KAZ5ryk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Sep 2025 13:40:54 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 103.142.84.0/23
IP: 2001:df1:3780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 16 Sep 2025 03:51:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156094 (0x261be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 1 13:40:54 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A9121188, serialNumber=1466407758A8D7B935694896D50275280679AF29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5f:89:e7:dc:28:fb:2d:16:2c:a0:e3:4f:3c:
22:57:95:1c:90:75:ff:23:9d:9e:26:0f:a7:5d:66:
50:96:7f:c9:cd:93:af:a4:32:15:d6:fb:d0:7c:a5:
d7:9d:df:ee:c3:95:d4:18:e5:f4:54:34:db:81:77:
08:51:c9:69:18:34:53:2d:90:a9:38:26:e0:1f:5f:
19:a8:b2:1f:dd:c2:63:00:94:d0:76:ba:a9:fa:3c:
10:af:0d:88:fe:2a:6b:5c:97:69:51:80:16:21:83:
06:67:7e:c3:93:2a:a2:64:19:0e:5e:59:aa:c2:a4:
86:e2:6c:8f:79:e4:0c:2f:af:77:c0:51:26:d3:c1:
b7:8d:7b:97:be:17:e1:35:f0:4a:37:4b:15:12:80:
53:ca:44:ad:d9:65:fe:99:f2:a0:62:b2:e5:96:c0:
be:99:b3:d6:59:47:54:43:a3:85:91:7e:8d:36:59:
4a:6d:5f:b1:dd:93:fd:53:a7:a1:43:69:eb:5c:e4:
00:a1:74:69:7a:b2:c5:49:33:97:b5:fb:bd:6e:57:
e0:5c:9e:c9:a5:57:70:56:c8:99:1a:51:5f:4d:7a:
e2:8c:7d:e7:ec:39:aa:11:08:a9:51:47:70:cf:39:
1b:3c:10:dd:eb:3e:c7:b8:ea:ba:aa:aa:9e:d4:2d:
93:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:66:40:77:58:A8:D7:B9:35:69:48:96:D5:02:75:28:06:79:AF:29
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9121188/84BAA06C836311EEBC191B1EC4F9AE02/FGZAd1io17k1aUiW1QJ1KAZ5ryk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.84.0/23
IPv6:
2001:df1:3780::/48
Signature Algorithm: sha256WithRSAEncryption
86:ac:1a:2e:bc:8d:c9:70:79:4d:c1:b7:45:47:81:bc:db:31:
21:2d:c1:20:40:0a:bf:e0:17:a4:4e:f5:46:06:9c:8d:c2:2c:
70:af:b2:ce:b0:8e:53:45:22:18:e1:25:7f:e3:b0:59:36:73:
52:8d:26:05:22:33:a5:d9:0e:51:a4:63:9d:a8:d7:3e:e5:ed:
e0:84:90:d2:20:8f:7b:5a:ff:87:e1:9d:3e:27:e4:4e:8c:e6:
b4:b9:10:52:09:75:82:99:fe:f9:ee:04:10:37:ce:35:e0:f7:
6d:1b:31:7c:1a:5e:ef:10:d9:62:78:8f:98:a9:c3:14:4a:c6:
ee:18:3b:5e:a2:b2:c5:39:03:b5:6b:15:15:af:97:00:0f:f3:
02:d9:81:8e:cf:65:ae:89:86:53:c6:df:97:d8:4b:f1:b5:79:
3d:a8:4d:db:fb:a8:ff:49:89:37:18:07:d6:4e:e3:c1:6d:87:
6c:b9:16:1f:b4:57:1c:2b:1c:be:08:78:78:7c:cf:3e:0f:02:
f7:e3:da:7e:b1:63:04:68:90:a8:bd:35:aa:1b:80:9c:25:91:
a3:9e:44:e6:a1:36:9c:6a:78:ec:58:e8:6f:7e:16:66:8c:79:
ff:8c:28:89:4d:16:e9:b5:d8:4d:4c:e1:87:c2:60:d4:6e:ef:
50:fd:7f:34
-----BEGIN CERTIFICATE-----
MIIGDzCCBPegAwIBAgIDAmG+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDkwMTEzNDA1NFoXDTI2MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjExODgxMTAvBgNVBAUTKDE0NjY0MDc3NThBOEQ3QjkzNTY5NDg5
NkQ1MDI3NTI4MDY3OUFGMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDHX4nn3Cj7LRYsoONPPCJXlRyQdf8jnZ4mD6ddZlCWf8nNk6+kMhXW+9B8pded
3+7DldQY5fRUNNuBdwhRyWkYNFMtkKk4JuAfXxmosh/dwmMAlNB2uqn6PBCvDYj+
Kmtcl2lRgBYhgwZnfsOTKqJkGQ5eWarCpIbibI955Awvr3fAUSbTwbeNe5e+F+E1
8Eo3SxUSgFPKRK3ZZf6Z8qBisuWWwL6Zs9ZZR1RDo4WRfo02WUptX7Hdk/1Tp6FD
aetc5AChdGl6ssVJM5e1+71uV+BcnsmlV3BWyJkaUV9NeuKMfefsOaoRCKlRR3DP
ORs8EN3rPse46rqqqp7ULZN1AgMBAAGjggMEMIIDADAdBgNVHQ4EFgQUFGZAd1io
17k1aUiW1QJ1KAZ5rykwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTIxMTg4Lzg0QkFBMDZDODM2MzExRUVCQzE5MUIxRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyMTE4OC84NEJBQTA2QzgzNjMxMUVFQkMxOTFCMUVDNEY5QUUwMi9GR1pBZDFp
bzE3azFhVWlXMVFKMUtBWjVyeWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8EITAf
MAwEAgABMAYDBAFnjlQwDwQCAAIwCQMHACABDfE3gDANBgkqhkiG9w0BAQsFAAOC
AQEAhqwaLryNyXB5TcG3RUeBvNsxIS3BIEAKv+AXpE71RgacjcIscK+yzrCOU0Ui
GOElf+OwWTZzUo0mBSIzpdkOUaRjnajXPuXt4ISQ0iCPe1r/h+GdPifkTozmtLkQ
Ugl1gpn++e4EEDfONeD3bRsxfBpe7xDZYniPmKnDFErG7hg7XqKyxTkDtWsVFa+X
AA/zAtmBjs9lromGU8bfl9hL8bV5PahN2/uo/0mJNxgH1k7jwW2HbLkWH7RXHCsc
vgh4eHzPPg8C9+PafrFjBGiQqL01qhuAnCWRo55E5qE2nGp47Fjob34WZox5/4wo
iU0W6bXYTUzhh8Jg1G7vUP1/NA==
-----END CERTIFICATE-----
Generated at Tue Sep 9 05:00:38 2025 by rpki-client