Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer
File: NZYOHhaeA_Rvr5H04_8TUUamMTo.cer (raw, json)
Hash identifier: 0HjGjYPq+FXOKUFtKGDyFVu4C1/bJ6e/Ej7uIe2nDug=
Subject key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025FB8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Aug 2025 17:06:28 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: IP: 103.120.137.0/24
IP: 2001:df6:1b00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Sep 2025 17:49:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155576 (0x25fb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 26 17:06:28 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91BBBA5, serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7a:b8:89:41:22:af:d3:1f:f2:55:85:07:78:
b1:99:a7:7e:a6:9a:12:5e:a0:05:aa:e3:18:f3:ad:
7e:70:bc:22:89:b0:47:89:57:39:db:91:c3:62:fa:
1e:e3:e3:5d:b5:aa:d6:e1:f3:6a:24:84:a1:6c:45:
28:b7:1d:86:44:be:53:38:59:4d:56:c1:8f:91:d2:
eb:8d:4a:83:59:83:be:89:85:14:eb:35:f0:78:9d:
ba:be:50:63:fb:22:2d:67:68:a9:90:24:9b:4d:d4:
9a:67:aa:a2:0b:dc:9b:29:f3:72:70:b1:86:4a:05:
ac:12:16:d2:09:9b:2d:1d:e5:c4:ca:12:66:f6:23:
39:41:90:5b:13:63:b6:36:9f:4f:25:15:ca:62:a1:
12:3a:ae:f8:23:35:77:eb:6a:50:92:84:54:2a:b0:
e5:44:94:e8:93:99:c5:25:46:c2:dc:98:31:b5:c6:
ef:07:24:a2:6a:73:b8:60:73:3f:d4:bc:c5:6e:4a:
69:97:1a:01:7a:0b:c5:e8:ed:93:2a:c4:5e:c5:84:
0a:2a:12:eb:7c:a4:6a:d5:b4:f4:13:af:bf:86:4c:
25:8d:aa:7f:b3:43:f9:2d:70:34:84:fd:70:b1:9c:
88:e2:99:81:51:8c:2d:ec:47:9c:f6:81:4c:b7:00:
d7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.120.137.0/24
IPv6:
2001:df6:1b00::/48
Signature Algorithm: sha256WithRSAEncryption
77:86:7d:d2:43:f7:2d:e9:2e:52:b4:cf:3d:61:45:0b:05:b2:
3f:80:ef:da:ba:ff:5a:43:a8:ea:5b:03:2c:a6:c9:10:bf:ea:
1e:2d:a8:00:0c:df:54:8c:4b:4e:0c:f3:f6:db:d4:6c:3f:08:
63:24:ed:cb:72:44:64:6b:eb:b7:15:07:90:46:8e:48:d6:84:
dd:bf:32:89:ad:e6:64:84:74:91:a5:ae:6a:ce:5a:93:17:e7:
46:84:e7:bf:39:5e:cc:1b:09:8d:ea:86:c0:73:14:47:4d:df:
3c:2a:a5:31:a5:57:73:c0:f3:38:4e:e1:8b:7c:03:7c:c9:4d:
64:b2:4f:12:0d:7b:1c:a2:61:9a:aa:91:52:7e:e1:dd:dd:15:
60:40:50:48:16:87:8f:7b:17:cd:62:c7:18:43:d0:9e:70:3a:
14:12:ea:1b:71:3f:85:37:9b:1c:09:58:0a:9d:80:ef:6d:66:
e4:82:a8:09:50:f7:5c:e0:f6:e7:1c:61:1a:a9:c6:04:35:33:
2f:83:b9:31:cb:4c:63:46:20:24:cb:7a:de:1c:3b:e7:5c:55:
52:82:45:13:51:f7:56:20:3c:d6:9b:34:f6:a1:ee:2c:8e:f5:
ef:d2:93:16:ec:94:ce:02:f3:a5:d6:8e:60:a6:4f:91:37:91:
9d:13:ec:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 19:04:22 2025 by rpki-client