Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer
File: OYkRMAEE18WLMm5WZLPXmi1GRuA.cer (raw, json)
Hash identifier: kYuX/7hTcQY0eWtTc/PcafiewZ/kJA14BWvVPfvOdGQ=
Subject key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026633
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Sep 2025 18:07:41 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 138167
IP: 103.121.224.0/22
IP: 2403:72c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Sep 2025 22:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157235 (0x26633)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 18 18:07:41 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A918F1C9, serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:20:b2:0f:65:13:ae:93:40:7a:3a:60:b6:8a:
7b:15:72:62:28:2f:d3:a0:ce:74:c3:18:36:f9:c7:
0e:c2:b9:8e:50:e7:5c:d6:4d:84:ab:5c:82:a3:fd:
bf:df:5f:0e:96:b1:ac:83:a5:e5:80:26:6f:5a:17:
c0:69:df:6d:7b:f4:2e:29:d1:ce:04:69:16:6e:fd:
0e:6e:88:aa:dc:04:50:43:b3:6a:8e:94:58:ed:4a:
18:db:82:e5:08:bd:d5:c4:cb:68:61:3e:f4:ec:96:
18:4f:70:db:bd:0f:b2:1b:47:12:d4:2b:2a:4a:ab:
71:50:41:2e:32:12:6f:a2:37:e0:4b:f7:03:4f:93:
2f:12:5e:0b:e2:8f:4a:99:59:56:4f:7c:76:7d:e2:
a5:cb:57:9a:1e:87:a6:58:3c:0d:50:d5:4c:61:07:
9d:84:ff:e4:d7:9b:5e:5d:25:4b:6b:50:9b:83:d8:
ed:d4:eb:50:c4:7e:85:a7:3b:3a:fd:c6:16:5d:79:
ee:34:89:b9:6b:f9:be:72:93:0b:8b:38:ff:5f:f2:
6a:1c:09:d4:be:d7:a6:cf:a1:56:5a:06:81:86:04:
cc:ff:c8:11:c4:5c:2d:5c:52:bd:53:6f:76:e7:cf:
57:2c:ef:cc:54:ac:6d:4e:8f:01:00:ce:a8:0c:76:
dd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138167
sbgp-ipAddrBlock: critical
IPv4:
103.121.224.0/22
IPv6:
2403:72c0::/32
Signature Algorithm: sha256WithRSAEncryption
81:95:c0:c6:fc:17:2e:94:72:c1:aa:68:a6:26:0f:0b:7e:92:
b5:45:59:cb:15:40:c8:2d:eb:ea:5d:d1:96:3d:7f:3f:22:2e:
b0:42:32:60:44:9b:b6:d6:84:2c:10:1d:39:17:53:6c:1d:43:
28:79:9d:47:84:fa:48:1a:58:98:cf:71:ca:65:43:4c:fa:ce:
c5:c1:81:ce:e7:75:b9:61:e2:6f:db:a7:86:e7:f7:65:d5:6e:
cf:06:26:bd:0f:3e:d4:47:51:3a:ff:52:99:86:b2:3a:92:67:
fe:2b:d8:90:ba:f8:f9:cc:12:27:bf:ab:a5:81:a0:10:39:83:
a8:12:5e:32:1b:5c:55:7c:1c:f6:e0:73:c7:72:68:02:4d:16:
1b:59:07:3c:a3:b9:d3:4f:95:92:4f:7c:c5:8b:19:e7:d4:ae:
5c:6e:50:d3:45:b5:9f:db:22:4c:2c:c5:1e:8b:0a:c9:30:9b:
75:ee:80:f8:f6:77:44:8e:83:56:68:b1:48:3f:a9:10:31:a2:
af:97:44:c9:95:5e:bb:db:fb:e7:48:bf:4e:0a:38:c4:6a:82:
d7:b8:0a:a4:c8:d9:43:a4:9e:85:0d:86:54:29:be:b3:61:b1:
dc:d2:35:62:c4:7c:14:14:84:64:55:ba:cf:6b:c2:a0:86:e6:
60:1d:f8:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 00:44:37 2025 by rpki-client