Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FiENxlKhYN7k5AFbvLQJ-odyRkA.cer
File: FiENxlKhYN7k5AFbvLQJ-odyRkA.cer (raw, json)
Hash identifier: QBxRJuFup8ItaRmzf4D0OsJBoJZn6mwGj5DZZr1uwM8=
Subject key identifier: 16:21:0D:C6:52:A1:60:DE:E4:E4:01:5B:BC:B4:09:FA:87:72:46:40
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 027233
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/FiENxlKhYN7k5AFbvLQJ-odyRkA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 02 Nov 2025 20:50:45 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 23978
IP: 202.38.178.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Nov 2025 04:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160307 (0x27233)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 20:50:45 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91983BD, serialNumber=16210DC652A160DEE4E4015BBCB409FA87724640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:68:78:79:58:7c:c1:36:fd:67:85:fa:63:21:
27:03:67:fd:b5:06:93:df:ee:bc:a8:86:73:b2:9f:
9b:16:9b:3c:d5:df:41:60:b6:b2:88:0c:a9:73:34:
11:2d:79:43:8a:b7:e8:75:a8:6d:3c:46:41:f2:e2:
0c:f0:9a:e8:67:3a:5e:6c:df:37:af:9c:ad:6b:6d:
8a:c2:34:32:83:7d:f9:99:ca:c9:8a:f9:56:2e:7e:
ad:0c:e3:56:a4:78:b6:bf:87:41:87:bd:ee:5a:6f:
d6:5d:6b:99:f4:c1:e7:9a:49:00:b7:be:77:86:75:
ae:ad:3a:c8:68:01:0d:67:6f:67:0d:1f:a5:f6:d0:
86:b3:b1:24:11:e8:97:97:a7:ba:86:51:b4:7f:28:
33:ae:d1:ca:61:84:77:2b:15:52:db:f8:6f:97:8f:
62:61:7d:4d:29:5b:46:87:48:bd:5e:fc:9b:b8:0f:
4c:35:bc:27:33:09:6f:27:58:f1:9d:2d:b3:60:ae:
96:78:3f:ed:8d:17:0d:b0:0e:18:67:21:85:f1:01:
e7:3b:7d:10:08:dd:5d:22:53:b9:39:cd:17:f2:d8:
5d:3e:fb:b6:ae:36:98:39:ff:a2:ef:9c:15:ce:af:
c6:6d:3c:c5:bc:15:de:6e:cc:ae:43:4e:2a:6d:14:
95:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:21:0D:C6:52:A1:60:DE:E4:E4:01:5B:BC:B4:09:FA:87:72:46:40
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/FiENxlKhYN7k5AFbvLQJ-odyRkA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23978
sbgp-ipAddrBlock: critical
IPv4:
202.38.178.0/23
Signature Algorithm: sha256WithRSAEncryption
07:76:a6:68:07:67:56:bc:59:67:3d:ec:7c:ee:a0:b6:5b:35:
a2:88:4a:84:96:68:96:eb:53:06:84:32:39:1f:59:5d:a8:c9:
05:01:40:10:73:7b:57:bd:36:17:91:36:67:aa:ea:70:2f:3e:
50:1e:db:8a:e1:b5:63:94:ff:bf:c4:00:c6:40:3c:a8:9b:d0:
cc:f8:c5:f8:df:07:e2:38:a0:92:fd:d8:90:2e:3f:4f:db:83:
f6:9c:0a:26:5c:f4:e8:dc:d3:87:08:47:04:6d:f8:8c:54:29:
09:15:a2:f6:04:bd:0c:20:a9:af:c6:de:5e:b3:f8:23:26:4d:
48:17:9f:31:b3:0b:67:6f:a9:82:78:56:5e:65:22:94:2f:82:
ce:9b:a7:c6:26:b9:f8:05:bd:41:92:08:19:aa:a5:a2:9a:11:
dc:8c:1a:23:cd:9c:a1:82:e0:7e:ed:2b:09:50:f8:00:e2:fd:
97:1e:2a:13:2e:65:45:0b:e3:71:b8:ce:b1:2b:b1:73:6b:a7:
c4:b2:35:ee:df:5c:97:f3:23:d7:21:2a:0c:88:de:87:9e:e0:
91:1f:e8:a4:1c:2e:07:e6:97:42:13:82:6c:de:fc:6c:39:86:
64:a0:47:49:9b:90:d4:88:4c:36:29:91:9c:08:5f:d1:64:a3:
10:f3:cd:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:22:55 2025 by rpki-client