Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer
File: M5_6kzV_ryYUKCn6vyJa6uQXN_A.cer (raw, json)
Hash identifier: LyRPoJ+poLpX8qbx36JsUe3ABvAUuxn5oBRJQwew274=
Subject key identifier: 33:9F:FA:93:35:7F:AF:26:14:28:29:FA:BF:22:5A:EA:E4:17:37:F0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02532B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.mft
caRepository: rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/
Notify URL: https://rrdp.sub.apnic.net/notification.xml
Certificate not before: Thu 03 Jul 2025 05:41:42 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 135532
IP: 103.223.184.0/22
IP: 2405:a180::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 30 Jul 2025 05:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152363 (0x2532b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 05:41:42 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A9148BF70000, serialNumber=339FFA93357FAF26142829FABF225AEAE41737F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:cf:73:93:cf:89:86:c9:25:7b:65:b3:ee:7b:
dc:01:16:7f:d9:a9:71:d7:01:12:55:b3:45:7e:6a:
d6:0d:ff:42:82:8e:d0:0f:9c:9a:e0:8b:0d:92:12:
68:ac:7a:ab:c9:0e:4b:df:4e:ef:de:e0:8a:ab:09:
56:64:d6:e5:80:74:e7:e5:3a:84:92:8e:13:28:ec:
5a:44:26:61:77:f5:6b:25:1c:d3:cd:29:af:ff:29:
35:d7:fb:69:39:f3:ec:76:07:82:d9:eb:94:9d:a6:
4f:44:ae:37:35:3f:d9:48:90:49:63:d8:f5:dc:fb:
bf:61:56:4c:20:2f:57:f5:5e:ad:c3:91:ac:1e:8c:
44:61:82:c2:9b:cd:40:90:eb:89:0f:40:22:28:1f:
4e:30:f0:55:54:cc:a2:88:35:ab:dd:77:59:18:5e:
f6:f1:b4:1b:c3:fa:72:d6:1a:f2:dd:34:9a:dc:f6:
10:3f:e1:19:36:32:50:0c:e8:ae:48:01:35:74:a4:
b0:01:29:8d:8e:9b:fc:6b:4c:aa:9e:cd:01:52:1c:
ff:5e:64:0b:d0:86:5e:29:6b:65:8b:2d:b1:17:34:
3a:54:aa:72:90:46:b5:c5:0d:49:6e:ca:b3:de:d1:
00:83:13:23:58:f0:c8:0b:3a:29:2b:fa:47:44:82:
ad:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9F:FA:93:35:7F:AF:26:14:28:29:FA:BF:22:5A:EA:E4:17:37:F0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/
RPKI Manifest - URI:rsync://rpki.sub.apnic.net/repository/A9148BF70000/0/339FFA93357FAF26142829FABF225AEAE41737F0.mft
RPKI Notify - URI:https://rrdp.sub.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135532
sbgp-ipAddrBlock: critical
IPv4:
103.223.184.0/22
IPv6:
2405:a180::/32
Signature Algorithm: sha256WithRSAEncryption
48:8c:ef:11:ec:2a:10:87:e1:13:34:1e:bd:54:58:e6:e6:e2:
1a:28:e1:36:bf:ac:84:30:97:08:d8:5c:74:e7:e5:8c:7a:28:
85:86:d5:a6:4c:08:9e:b5:0b:8a:28:68:a0:86:6b:51:24:b1:
d7:01:9f:1f:a4:77:c1:8d:73:f9:c9:5e:16:92:0d:b1:c4:f5:
7a:9a:d1:0b:28:08:76:79:b5:a1:05:d6:9a:a8:e6:d7:0e:19:
31:c9:11:d1:a0:87:d0:24:a7:55:50:cd:a4:08:ad:f9:38:15:
e2:00:a8:c7:cf:83:bf:2e:4e:e9:66:23:4b:ac:34:51:e2:d1:
a2:e8:4b:64:20:c9:c6:4a:ab:62:b3:18:a2:ff:6e:d4:dc:cf:
54:15:dd:d6:c5:05:3b:f5:2a:94:c4:b4:ae:70:55:55:65:62:
0d:f1:4f:0e:ba:75:0c:ea:87:28:eb:48:33:b2:da:0b:c7:f9:
bf:32:8a:8f:36:ca:49:53:89:2c:47:04:58:29:8b:a7:c6:77:
2b:7f:32:3e:99:3d:a9:a7:45:48:89:71:71:4b:c9:81:46:64:
38:c1:5c:e6:9f:90:14:c0:ab:db:cb:e3:64:76:68:5a:7a:0a:
fc:ce:db:65:19:49:2a:91:37:e7:b4:5c:ed:85:c6:2f:7b:2c:
2c:64:2e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 08:25:17 2025 by rpki-client