Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iu3562YIf9DpgXrnNsADnRiAiNU.cer
File: Iu3562YIf9DpgXrnNsADnRiAiNU.cer (raw, json)
Hash identifier: r8cziL8g9o53t3/JXV93srpuWpWjSmJg84NvcUptWqk=
Subject key identifier: 22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026354
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Sep 2025 12:24:47 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 134972
AS: 147293
AS: 149502
AS: 149767
AS: 151338
AS: 151487
AS: 154114
IP: 103.181.12.0/23
IP: 2001:df0:64c0::/48
IP: 2400:8a20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 12 Sep 2025 00:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156500 (0x26354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 4 12:24:47 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9112DB1, serialNumber=22EDF9EB66087FD0E9817AE736C0039D188088D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:88:cf:ad:66:d2:47:6b:43:0b:1a:5b:2f:ce:
60:c7:5e:d9:ab:00:51:c1:30:b8:27:7e:9d:23:37:
d9:9d:5a:6a:3e:c8:e0:7a:d7:04:db:72:96:33:40:
c7:d0:4d:d9:e0:77:d8:73:b3:a9:bc:dd:df:98:36:
58:69:d5:08:3e:ff:83:47:2e:02:ea:b5:07:e8:41:
92:a8:36:65:af:1c:82:aa:0c:4f:b9:f4:30:03:6b:
ef:33:20:44:be:cf:6a:e2:86:fe:22:ba:98:72:cc:
12:57:ae:c2:8b:02:95:0b:0b:79:e5:de:f3:64:50:
60:5a:6e:32:fb:8a:56:75:b3:12:f8:a1:3a:48:be:
96:af:f9:46:d2:8f:0e:56:31:82:e4:e5:e8:ea:7d:
d1:61:85:95:3a:4f:a5:7b:8c:2e:42:d0:36:9e:83:
1d:cc:17:11:ef:06:9d:9e:d3:4d:a9:cb:17:5a:57:
7f:a5:2b:17:ff:c9:17:62:0e:51:e2:20:4e:b9:2e:
df:88:e8:9b:44:59:3e:be:81:42:98:0d:75:16:84:
02:d1:27:e8:db:b7:89:0c:e4:f7:8b:be:88:ce:b3:
d7:c0:1c:2e:94:c7:8c:0e:84:63:a6:02:25:ae:24:
07:82:7a:5b:7d:38:aa:8b:9f:99:f5:f7:8a:cb:95:
7c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:ED:F9:EB:66:08:7F:D0:E9:81:7A:E7:36:C0:03:9D:18:80:88:D5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9112DB1/3FA6920083C011ECB54B397FC4F9AE02/Iu3562YIf9DpgXrnNsADnRiAiNU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134972
147293
149502
149767
151338
151487
154114
sbgp-ipAddrBlock: critical
IPv4:
103.181.12.0/23
IPv6:
2001:df0:64c0::/48
2400:8a20::/32
Signature Algorithm: sha256WithRSAEncryption
54:5d:da:06:d7:3a:4d:7c:64:97:1c:f1:44:93:bd:50:24:75:
3c:21:9c:ec:33:7c:09:b9:5b:3f:d9:18:7f:ef:78:bf:17:65:
51:57:dd:95:5f:16:f4:d0:73:50:4a:79:4c:61:62:01:4f:a9:
d4:07:24:5b:d6:8e:bc:6d:0b:e9:02:f2:f8:d6:d3:55:06:fc:
f4:d5:47:6b:f8:f0:a9:c6:81:cd:6c:f9:84:6f:41:35:c3:56:
c4:b6:d1:ae:2f:d5:40:9e:fd:b9:6d:df:f6:e0:38:24:f2:ee:
15:17:8b:d2:37:f7:77:f3:a1:9d:25:a1:68:c9:c8:15:28:76:
50:7c:84:18:b0:98:0e:db:c0:31:22:de:8e:89:7f:b2:1c:ca:
f6:36:15:c4:ec:3d:a9:6c:67:8c:9b:45:09:93:dc:46:01:98:
a5:2f:6b:5e:8c:dc:43:79:a1:71:44:33:54:c1:4e:11:6b:82:
e0:c9:05:bb:d6:f6:0a:97:e9:29:e9:87:e1:5c:bb:bb:4f:94:
c5:a0:78:c9:19:72:40:74:da:cc:79:26:c9:88:a9:ed:5f:3f:
06:62:54:eb:e2:13:b0:01:02:80:85:4c:17:dc:c2:7e:7e:87:
4c:29:c6:dd:52:64:77:c7:c2:45:2e:25:ff:11:76:f4:54:1a:
d6:ff:44:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 03:23:01 2025 by rpki-client