Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8iorLUs8M9_MTaUMA9ThmhiN60.cer
File: K8iorLUs8M9_MTaUMA9ThmhiN60.cer (raw, json)
Hash identifier: jAr02uLrYUs2fdQ4AB1KK0qFG0qdRVg2SQ0CgKUpODg=
Subject key identifier: 2B:C8:A8:AC:B5:2C:F0:CF:7F:31:36:94:30:0F:53:86:68:62:37:AD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0270B2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Oct 2025 18:56:07 +0000
Certificate not after: Tue 02 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 139804
IP: 103.145.120.0/23
IP: 2001:df2:b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159922 (0x270b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 30 18:56:07 2025 GMT
Not After : Mar 2 00:00:00 2027 GMT
Subject: CN=A91B0549, serialNumber=2BC8A8ACB52CF0CF7F313694300F5386686237AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b6:e0:7c:c7:fa:3e:5a:d3:56:39:48:73:ef:
a1:42:be:84:20:22:b2:11:28:54:64:7c:bd:b5:12:
0c:29:3b:a8:7d:d8:09:8e:fe:c0:c1:40:98:8b:f6:
dd:6d:1b:40:b2:82:0b:51:ad:2d:00:38:2b:9c:97:
64:4b:07:3c:70:8e:c8:46:04:24:90:20:8b:a0:fd:
f8:13:74:2f:6e:25:02:3f:4e:ed:74:91:45:22:19:
b0:25:f4:a4:c6:7a:8b:a3:36:70:b3:1e:6a:c1:82:
9e:93:02:a6:e2:3e:23:93:ad:c7:98:a4:70:5c:69:
18:7d:e5:5d:4c:af:a5:c8:75:24:8e:a7:40:7b:4c:
42:82:d7:65:c8:19:87:07:f5:2f:b5:28:97:bb:46:
bc:38:48:35:7e:e2:99:7d:bb:0f:f4:11:6c:24:3b:
ec:ff:5f:b9:91:d9:6f:b8:f4:63:c8:d1:3f:63:d4:
3a:a4:af:38:40:4e:fb:70:ee:d7:35:c7:3f:39:0d:
6a:cc:20:f0:7c:d8:73:84:7b:5c:ed:6f:5f:81:16:
93:58:1a:a8:bf:cb:64:c7:2b:5c:27:16:33:fd:3a:
8f:86:e4:06:f4:89:3d:2d:9d:91:37:b5:8f:98:f5:
0d:4c:5e:b8:15:7e:4f:06:b2:9c:8e:8a:75:ac:7e:
26:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C8:A8:AC:B5:2C:F0:CF:7F:31:36:94:30:0F:53:86:68:62:37:AD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139804
sbgp-ipAddrBlock: critical
IPv4:
103.145.120.0/23
IPv6:
2001:df2:b80::/48
Signature Algorithm: sha256WithRSAEncryption
58:fc:a6:1d:cb:82:77:fc:06:e1:d0:80:13:39:30:8d:0e:bf:
a8:4b:e4:78:0b:68:52:ea:7b:ee:f6:85:f6:b4:63:46:bf:88:
8e:31:2b:67:b3:34:97:b5:8e:9a:95:1e:9e:ac:be:e7:da:8a:
b8:39:bf:9c:51:ee:0e:c2:e9:34:c1:2b:76:1e:31:f0:82:35:
81:01:a9:25:62:66:dd:5c:e5:90:50:5c:4d:36:9f:2e:82:97:
b2:f6:10:32:78:a9:76:8b:47:16:88:6e:09:cf:30:4a:f2:2f:
e1:7e:e5:bb:42:bf:c8:5d:47:fa:6a:c1:9b:e7:ff:da:18:06:
44:fe:03:91:03:be:03:af:13:06:64:c4:0e:03:f4:d0:f1:f5:
64:7c:89:ea:a0:ef:32:d4:ba:68:37:24:b4:47:c8:f4:2b:ac:
2f:de:29:77:80:8b:7e:e8:2a:7d:53:43:89:a2:3b:9b:a0:ff:
9c:82:5a:26:29:44:87:4f:d4:b5:5c:57:df:f0:18:2c:3b:53:
71:29:2e:12:8e:cf:68:58:a6:1a:41:48:1c:ef:14:dd:c2:12:
ac:ff:7b:04:79:ae:9e:3b:fb:e3:25:ed:f1:bc:67:6a:12:ea:
5b:06:3d:59:98:08:90:b5:ef:09:68:00:18:fd:e5:7a:a6:12:
b5:17:eb:53
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Nov 3 11:17:24 2025 by rpki-client