Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer
File: M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer (raw, json)
Hash identifier: LS2YchWLYnbdHBAnlrkXj6G1z9C3jdLeBbHZhrwMekE=
Subject key identifier: 33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024845
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 23 May 2025 04:47:25 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 147295
IP: 203.170.90.0/23
IP: 2001:df3:a2c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149573 (0x24845)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 23 04:47:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91DEF41, serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6e:1a:39:27:48:97:1b:33:5b:c3:c7:86:58:
5d:8e:d7:32:7b:18:f8:dc:ac:8b:ab:3e:62:ce:51:
1f:c5:77:9d:6d:de:15:ea:e7:51:95:a7:d1:e3:00:
e0:ae:8c:9a:53:b0:b7:b9:af:b3:2f:16:09:67:8c:
c8:40:7d:34:d9:de:ab:a5:a9:f7:9d:42:7b:c4:0e:
c7:de:8d:da:e4:3f:f3:0c:4c:6e:ea:69:69:74:00:
90:4c:0b:17:a2:9b:f2:f6:81:05:49:0d:b4:71:c4:
b8:cf:1d:c4:ef:5f:10:f8:c5:ba:31:a1:73:31:55:
20:e4:75:06:d8:d7:ba:8a:a4:67:e5:de:0c:4e:91:
49:b1:5e:78:12:1d:21:6b:3e:01:04:e2:c4:a7:fa:
aa:d8:60:14:da:b5:0f:40:df:bf:f3:79:df:b3:1b:
7d:5f:2d:f7:59:57:cb:fc:d1:54:ea:ce:1c:59:7a:
50:fa:dc:fc:65:c0:21:38:32:6c:10:75:9e:cd:70:
2d:25:e9:95:6c:24:67:4b:40:8e:84:bb:20:14:97:
95:54:27:40:db:76:cc:db:e2:dd:33:ae:03:5c:f7:
e7:06:d1:14:94:5a:39:2f:f8:4c:be:21:f6:25:73:
85:12:b8:45:ec:fc:2f:3b:98:73:71:0a:6c:33:f9:
f8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147295
sbgp-ipAddrBlock: critical
IPv4:
203.170.90.0/23
IPv6:
2001:df3:a2c0::/48
Signature Algorithm: sha256WithRSAEncryption
06:ce:07:1e:77:35:b8:1b:ba:a3:04:cf:f6:b7:ac:8c:63:de:
58:66:03:2e:42:a6:ec:ab:84:2f:64:13:04:5b:98:d0:db:20:
78:29:4e:68:3b:57:5f:55:f2:f8:97:9f:08:e9:af:4a:a7:fd:
5a:2b:cf:1d:d8:61:ca:25:54:ba:e6:3c:b2:74:30:94:1c:b5:
14:0e:2e:b1:18:8e:f3:8d:c1:f6:c9:85:0e:ed:b3:10:f3:3b:
7e:c4:57:de:ef:e7:ce:e9:b9:3e:74:8d:d1:a9:6b:fc:ea:0f:
38:a1:44:41:2b:e5:d1:6c:f9:f3:6d:73:84:2f:c0:69:36:b6:
ee:f0:cf:c0:71:37:fc:81:90:50:b6:91:95:66:b3:15:e2:40:
15:e9:bd:20:0f:f7:8d:4e:eb:5a:9b:8e:d7:5d:a0:9e:ed:5f:
95:a7:44:01:41:df:33:6e:c8:9f:e4:5d:5d:31:4b:13:fe:42:
2e:fc:5e:c4:69:21:d2:4b:7c:e6:13:f5:91:c2:44:23:8a:f1:
d8:6b:97:eb:c5:bc:41:11:9d:17:bd:8c:7c:9b:68:24:2a:53:
07:59:90:ae:2b:2b:e7:42:0c:eb:16:90:1b:8f:0b:34:03:9b:
18:fb:c0:00:0c:35:30:5e:42:34:a0:89:f6:60:69:de:a4:82:
27:88:94:df
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 09:02:59 2025 by rpki-client