Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GbtVMGL5Nj1g2muUaB8a1gSD1bc.cer
File: GbtVMGL5Nj1g2muUaB8a1gSD1bc.cer (raw, json)
Hash identifier: dJy+dugB8b1GGTLvMyEt0C1sn8H+AslSxeaMB2nzpm0=
Subject key identifier: 19:BB:55:30:62:F9:36:3D:60:DA:6B:94:68:1F:1A:D6:04:83:D5:B7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025E76
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916C2B9/398E8A26C2A211EE91D9535CC4F9AE02/GbtVMGL5Nj1g2muUaB8a1gSD1bc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916C2B9/398E8A26C2A211EE91D9535CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Aug 2025 00:33:23 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 152455
IP: 2001:df6:1c0::/48
IP: 2402:24e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 11:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155254 (0x25e76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 20 00:33:23 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A916C2B9, serialNumber=19BB553062F9363D60DA6B94681F1AD60483D5B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3d:51:61:9c:9a:13:32:9a:c0:dd:78:23:80:
97:0d:81:cb:89:aa:39:5a:f7:6c:1a:1f:e2:70:18:
60:b9:27:bc:af:5c:7c:08:90:fd:e3:c4:55:4a:9b:
3a:d5:9b:61:64:2e:78:76:b5:32:df:6c:0b:b0:98:
3c:9c:25:db:83:42:b6:91:2f:8b:d1:ae:0c:67:ff:
87:0d:c8:32:79:fe:4c:e6:a5:ea:10:90:a3:6e:6a:
c2:1e:31:cb:cd:55:f8:dd:3b:88:2a:88:57:6f:d9:
1b:ca:cf:56:56:35:e6:e3:9e:5d:73:3c:ff:54:a8:
1b:7e:8b:a2:8b:94:02:e4:5b:7b:1a:58:8f:e9:40:
f8:99:db:ea:4a:d0:d4:54:2f:81:1a:11:1b:59:34:
dc:bc:45:b0:26:4b:4a:53:62:11:e3:70:c9:12:08:
53:27:d3:ab:12:71:2b:9e:c2:2d:96:55:89:a4:64:
2c:ec:b1:a0:13:f0:a1:5d:df:eb:19:4c:22:d7:b8:
d0:d2:97:7c:5d:91:d5:e0:73:7c:f0:9a:d7:c8:1c:
72:8f:d6:ba:af:05:ce:86:e1:de:2e:b4:28:c2:69:
f5:8f:b9:ff:89:ac:8e:87:d4:f6:a6:fc:ea:86:63:
2d:a9:c1:61:ff:ac:d8:77:30:8f:74:8c:38:17:54:
d6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BB:55:30:62:F9:36:3D:60:DA:6B:94:68:1F:1A:D6:04:83:D5:B7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/398E8A26C2A211EE91D9535CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/398E8A26C2A211EE91D9535CC4F9AE02/GbtVMGL5Nj1g2muUaB8a1gSD1bc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152455
sbgp-ipAddrBlock: critical
IPv6:
2001:df6:1c0::/48
2402:24e0::/32
Signature Algorithm: sha256WithRSAEncryption
9b:ab:3c:12:51:d0:18:32:f3:bd:1c:d9:3c:3a:bb:76:24:6e:
38:cb:3a:c8:b5:78:fa:47:58:71:51:c7:b2:e4:4c:2f:f9:df:
07:ec:4e:f0:e5:4f:b5:c7:8d:0f:b7:a7:be:3a:e7:41:90:11:
ad:ce:6a:fc:bb:9d:d4:ee:5f:0f:95:3a:7a:32:b6:d2:97:67:
78:36:be:68:9e:23:6f:2b:66:87:6d:c2:b1:06:ce:8d:77:93:
08:68:63:a6:1e:b7:d1:eb:e2:f4:a2:c7:27:b6:ab:7d:eb:32:
55:ff:69:68:e8:e1:93:47:b4:e3:22:76:42:2f:5d:c5:c3:77:
23:4e:6e:64:e5:20:bb:a7:a2:67:76:47:22:5a:fe:8c:89:fc:
22:f4:8a:1c:71:4f:bd:51:d3:34:de:fd:3c:8c:83:0d:32:2f:
ee:45:52:6c:6c:1b:07:d7:fc:39:fa:58:f6:1e:27:6d:df:d1:
bd:72:17:a9:f2:c2:f9:6b:eb:b8:95:26:14:0a:7c:17:1d:31:
4a:64:11:cf:99:8c:3d:ec:11:a0:41:6b:84:9e:a7:e9:fa:06:
d0:36:c7:24:73:4a:2b:d3:9d:c6:d4:14:ab:40:d2:36:96:01:
dc:94:a4:02:3d:7a:6c:ed:c7:ee:52:f1:d0:8c:84:f1:f5:ec:
e6:72:c3:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 22 14:13:20 2025 by rpki-client