Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HSpVFaipmzCyHRhxvPr9J-saEyo.cer
File: HSpVFaipmzCyHRhxvPr9J-saEyo.cer (raw, json)
Hash identifier: gKwssgkIcvSKhYzSXp5NDDJlUH9PyCzl9f8scrMy4Eg=
Subject key identifier: 1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0270A8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Oct 2025 18:03:54 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 150159
IP: 103.124.184.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159912 (0x270a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 30 18:03:54 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A9185B30, serialNumber=1D2A5515A8A99B30B21D1871BCFAFD27EB1A132A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b1:59:76:a9:9f:ec:a8:88:11:30:83:e3:f1:
93:af:42:f2:84:b3:c1:76:11:59:32:c7:bf:84:43:
2e:b9:ee:70:55:59:1d:4b:20:d8:25:82:fe:87:f5:
b7:e6:7c:36:a3:13:3b:d2:0d:eb:f3:7e:44:24:26:
a7:a3:90:b2:6b:c5:40:74:5e:77:00:ff:ed:72:61:
c7:49:dc:d0:68:2b:87:5f:82:f0:ef:9b:2c:c0:ad:
07:57:dc:f6:40:81:0b:04:5b:a0:4b:82:a3:7b:1d:
07:ca:f8:c4:b9:a1:bf:39:66:82:eb:a3:67:aa:91:
02:5e:2f:b0:73:5e:07:ed:d8:e1:ef:b3:c8:d0:ae:
18:d6:8c:ad:2e:e4:fb:7b:40:fe:d2:1d:47:c3:29:
ae:9e:41:36:69:03:51:47:30:4a:f6:42:df:f8:46:
81:06:25:5b:9e:6a:55:9f:ac:7c:29:56:b9:64:08:
53:39:c0:4b:c1:1f:f6:30:3d:5d:fd:6b:02:b6:66:
ed:bf:97:89:ca:1e:00:8b:6c:b4:86:01:08:bb:5e:
c6:df:e1:28:77:4a:76:df:68:c1:ee:f2:fe:90:a9:
81:ce:28:01:8d:61:20:fa:c4:be:0f:a1:6d:a9:29:
69:50:f0:be:09:42:7b:ec:2b:b5:f7:87:ae:ce:10:
b6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2A:55:15:A8:A9:9B:30:B2:1D:18:71:BC:FA:FD:27:EB:1A:13:2A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9185B30/8977C674192A11ED815FA35FC4F9AE02/HSpVFaipmzCyHRhxvPr9J-saEyo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150159
sbgp-ipAddrBlock: critical
IPv4:
103.124.184.0/23
Signature Algorithm: sha256WithRSAEncryption
85:6b:79:b2:8d:91:ed:c7:24:13:dd:ce:bf:71:96:82:13:bc:
0e:08:b5:a2:12:a5:26:1a:d7:80:77:55:5d:50:48:92:ce:c3:
8d:b6:3b:ec:87:d3:50:e1:d2:26:30:a4:b9:56:02:4e:d0:ed:
48:02:e9:b9:01:63:68:c0:9f:fd:45:f1:2c:76:ed:3d:3a:12:
38:2e:16:a4:c7:82:f2:e2:0a:ba:a2:e0:20:f1:4f:c9:4e:76:
33:bf:67:f9:5c:c2:80:18:41:b7:ab:56:ee:54:14:07:a0:e8:
38:10:4d:d2:70:0c:6d:83:fd:29:59:32:1a:64:a6:45:83:37:
fa:13:47:ed:fa:83:e6:cd:28:1d:5b:b4:69:c0:7f:ca:b7:82:
c6:d3:f2:f9:4c:fc:92:c5:9f:80:b1:31:2e:d3:ff:c0:1c:48:
97:c2:e1:a7:2d:16:33:50:c7:d8:91:00:39:1f:0b:1f:9a:16:
cf:76:e9:47:c6:17:e0:01:8a:6b:d6:11:f0:44:b8:01:e5:15:
4d:0e:67:99:d0:dc:1c:fc:e1:be:4a:25:ca:da:8b:0b:82:d8:
3d:57:51:d8:48:b4:40:86:cb:f5:28:f5:78:6c:e9:cf:6d:1c:
e8:e7:b8:0d:99:f3:7e:e1:14:10:72:34:84:6c:d4:00:d1:22:
2c:84:22:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 11:16:28 2025 by rpki-client