Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/InkscMmJR76K9PSj51Wu3nlZ0ng.cer
File: InkscMmJR76K9PSj51Wu3nlZ0ng.cer (raw, json)
Hash identifier: RR+Q8MjZ5S2I/VaBmgerhIFwactyjKwN66TO1wA9qkw=
Subject key identifier: 22:79:2C:70:C9:89:47:BE:8A:F4:F4:A3:E7:55:AE:DE:79:59:D2:78
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0247D2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/InkscMmJR76K9PSj51Wu3nlZ0ng.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 May 2025 16:27:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 132232
IP: 103.7.252.0/22
IP: 2403:8700::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 05:39:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149458 (0x247d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 21 16:27:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A9166708, serialNumber=22792C70C98947BE8AF4F4A3E755AEDE7959D278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d1:97:ab:7a:54:8a:14:e0:d2:8a:e5:48:94:
00:3a:1b:21:fb:5e:01:19:fb:6a:4c:02:b7:be:76:
31:8d:b3:88:f0:e6:38:a7:93:b6:78:07:d1:33:d9:
e2:16:d3:37:d7:91:a3:c2:14:10:20:01:db:a2:c2:
2f:53:b5:50:62:ae:48:5c:af:0c:25:5a:de:60:6a:
f0:47:c5:22:49:69:f6:cf:f3:49:91:32:3f:9c:d2:
5d:bb:9f:d3:93:50:b4:53:f7:3d:c6:47:8d:95:ca:
ff:a4:bc:31:f9:22:b7:9f:5a:69:c1:dd:d8:46:fe:
e5:92:c8:81:5d:be:ad:e3:bb:94:ae:1b:52:8e:54:
d9:50:53:44:a8:89:5c:52:14:28:32:54:5b:40:1a:
ca:d1:4f:e0:4e:72:ab:2e:14:a1:5a:d5:1b:07:cd:
e5:cf:e8:a5:64:2d:78:a5:0f:64:c5:02:08:80:3b:
aa:90:7a:90:bd:a4:eb:09:eb:4c:51:a9:c2:2d:30:
10:b7:08:38:50:ba:7a:2c:0f:d4:f0:62:4b:a3:78:
c3:6e:d2:ec:83:1b:81:40:26:c3:02:51:c1:d5:94:
53:c7:c7:d4:52:3d:75:a6:34:28:8e:2b:51:4d:2e:
94:98:3c:7d:24:53:e5:db:89:e0:7b:62:40:fc:69:
30:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:79:2C:70:C9:89:47:BE:8A:F4:F4:A3:E7:55:AE:DE:79:59:D2:78
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/InkscMmJR76K9PSj51Wu3nlZ0ng.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132232
sbgp-ipAddrBlock: critical
IPv4:
103.7.252.0/22
IPv6:
2403:8700::/32
Signature Algorithm: sha256WithRSAEncryption
0a:37:7d:e7:19:64:af:d6:8c:c7:cb:f6:5b:60:ef:57:e3:fe:
c7:45:ff:5d:74:0e:71:6e:f1:29:b4:40:c4:52:ef:cb:e2:ed:
cd:49:08:33:3d:f2:b9:80:03:18:4a:a5:3b:8b:a3:9a:0a:80:
4e:7c:7d:fb:b4:37:0d:58:9a:0b:23:4c:2b:cf:e4:73:26:61:
36:2f:2e:8b:df:50:e8:fc:a6:c4:23:d5:2c:58:51:5f:1b:cd:
dc:0c:e4:5f:55:84:f9:0f:77:72:af:92:1b:5e:70:56:da:c0:
da:e3:97:25:c2:96:82:04:c3:0e:27:d7:f9:16:5b:15:cc:11:
d8:02:2d:59:b6:ee:ef:07:73:aa:6d:55:18:9c:4a:83:ac:eb:
02:f1:e1:46:b6:7d:67:89:3e:cb:b0:04:fc:38:3b:09:cf:3d:
4d:c6:9c:41:19:2c:18:5e:3f:32:82:a5:55:97:b3:b2:54:7a:
13:83:63:aa:9d:a5:bf:44:67:5c:69:9b:cd:72:87:11:65:5f:
e3:0d:99:c8:7a:47:e6:ea:d7:1c:a8:c2:34:df:1e:bf:28:86:
20:9b:5f:79:6a:3b:e8:fd:8c:03:b1:45:67:0e:0e:bd:fe:6d:
47:ab:a6:af:0f:fe:84:19:13:5f:9a:3e:62:19:16:87:c6:d5:
14:c5:d1:34
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAkfSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDUyMTE2Mjc0MFoXDTI2MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjY3MDgxMTAvBgNVBAUTKDIyNzkyQzcwQzk4OTQ3QkU4QUY0RjRB
M0U3NTVBRURFNzk1OUQyNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDP0ZerelSKFODSiuVIlAA6GyH7XgEZ+2pMAre+djGNs4jw5jink7Z4B9Ez2eIW
0zfXkaPCFBAgAduiwi9TtVBirkhcrwwlWt5gavBHxSJJafbP80mRMj+c0l27n9OT
ULRT9z3GR42Vyv+kvDH5IrefWmnB3dhG/uWSyIFdvq3ju5SuG1KOVNlQU0SoiVxS
FCgyVFtAGsrRT+BOcqsuFKFa1RsHzeXP6KVkLXilD2TFAgiAO6qQepC9pOsJ60xR
qcItMBC3CDhQunosD9TwYkujeMNu0uyDG4FAJsMCUcHVlFPHx9RSPXWmNCiOK1FN
LpSYPH0kU+XbieB7YkD8aTCnAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUInkscMmJ
R76K9PSj51Wu3nlZ0ngwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTY2NzA4L0ZBNTI2QjUwNTkzNTExRTk4QjU0QkM0M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2NjcwOC9GQTUyNkI1MDU5MzUxMUU5OEI1NEJDNDNDNEY5QUUwMi9JbmtzY01t
SlI3Nks5UFNqNTFXdTNubFowbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgSIMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZwf8MA0EAgAC
MAcDBQAkA4cAMA0GCSqGSIb3DQEBCwUAA4IBAQAKN33nGWSv1ozHy/ZbYO9X4/7H
Rf9ddA5xbvEptEDEUu/L4u3NSQgzPfK5gAMYSqU7i6OaCoBOfH37tDcNWJoLI0wr
z+RzJmE2Ly6L31Do/KbEI9UsWFFfG83cDORfVYT5D3dyr5IbXnBW2sDa45clwpaC
BMMOJ9f5FlsVzBHYAi1Ztu7vB3OqbVUYnEqDrOsC8eFGtn1niT7LsAT8ODsJzz1N
xpxBGSwYXj8ygqVVl7OyVHoTg2OqnaW/RGdcaZvNcocRZV/jDZnIekfm6tccqMI0
3x6/KIYgm195ajvo/YwDsUVnDg69/m1Hq6avD/6EGRNfmj5iGRaHxtUUxdE0
-----END CERTIFICATE-----
Generated at Fri May 30 08:24:28 2025 by rpki-client