Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGOUHymkcXnuj_UfMB3x6kEfvTg.cer
File: QGOUHymkcXnuj_UfMB3x6kEfvTg.cer (raw, json)
Hash identifier: Ur9OYOMfzGzCLI+zO+aUowt2tXCgwA7/VO504XHwPI8=
Subject key identifier: 40:63:94:1F:29:A4:71:79:EE:8F:F5:1F:30:1D:F1:EA:41:1F:BD:38
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026FA0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Oct 2025 05:02:15 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 63850
AS: 135099
IP: 103.234.14.0/23
IP: 124.246.0.0/21
IP: 124.246.16.0/21
IP: 202.44.170.0/24
IP: 203.91.64.0/21
IP: 210.0.112.0/21
IP: 2402:d40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159648 (0x26fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 28 05:02:15 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91E4700, serialNumber=4063941F29A47179EE8FF51F301DF1EA411FBD38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:13:3e:bc:21:15:12:70:1b:de:23:ac:30:97:
95:23:50:de:6b:e6:a5:d4:12:62:56:0e:d8:d5:0a:
a8:a0:84:3d:46:db:ba:a7:98:e4:85:50:95:a4:6f:
9b:ca:41:ac:57:2a:de:68:c4:5a:00:80:82:84:5a:
9d:85:a4:40:0e:c3:0d:9c:72:13:d6:66:c2:ac:fc:
90:72:48:75:8a:52:59:1c:67:f3:11:27:a1:14:2d:
ab:51:75:8b:dc:d3:63:4d:7c:89:8a:1c:d1:36:5d:
d6:07:6f:13:5a:b2:60:23:bd:5a:27:fe:9e:d3:48:
00:4e:e4:69:6a:f7:47:f3:d6:bf:e9:9e:00:06:f6:
60:b7:15:22:78:03:b1:c7:5f:62:00:c0:12:df:d9:
9a:2a:63:c7:db:e0:b0:d6:9a:15:32:47:26:c0:15:
ad:65:5d:16:b1:ec:21:1a:e6:59:cd:a4:87:7a:7a:
b6:f8:ca:cc:00:e2:8a:76:89:f8:b6:b2:0c:99:2c:
b4:07:14:75:de:3e:5c:5a:b5:57:44:fd:82:2d:9e:
b5:af:ca:62:61:ee:4b:c3:40:c6:68:43:4a:b6:22:
b9:31:4f:c4:e5:a4:71:0e:5f:9a:69:33:d9:8f:56:
c8:58:18:12:69:b9:88:31:18:10:2d:54:b7:3c:55:
cc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:63:94:1F:29:A4:71:79:EE:8F:F5:1F:30:1D:F1:EA:41:1F:BD:38
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63850
135099
sbgp-ipAddrBlock: critical
IPv4:
103.234.14.0/23
124.246.0.0/21
124.246.16.0/21
202.44.170.0/24
203.91.64.0/21
210.0.112.0/21
IPv6:
2402:d40::/32
Signature Algorithm: sha256WithRSAEncryption
c1:d8:0b:97:29:d5:67:d4:ad:b8:23:35:87:df:a5:4c:5a:e7:
12:7b:0e:52:19:ae:09:0e:7b:00:49:77:11:de:f4:48:18:ea:
4c:48:be:fd:74:71:d4:49:b9:5e:43:63:57:40:dd:f9:29:24:
8c:40:bf:c5:1b:0c:81:c5:c0:91:aa:1d:a4:15:e1:0b:85:d5:
1c:4f:d0:d2:4d:d9:8e:d2:91:5b:9c:4c:b3:87:45:14:36:1c:
fa:cd:59:1f:24:27:38:26:ee:9e:b8:49:69:b8:bc:a1:87:e1:
15:0b:43:a7:ba:08:ea:ce:3a:d9:bc:d8:7d:a6:2a:92:21:42:
17:08:56:f1:7d:05:83:8c:49:3f:39:94:ca:ff:59:96:9a:00:
27:3e:f8:96:16:7e:4b:35:de:63:31:06:e6:57:d0:8c:7a:21:
7b:58:4a:91:64:3f:3c:2f:50:48:7d:7d:64:6d:31:b2:25:c5:
b6:3a:18:f3:c5:d9:d8:c3:7a:48:f8:b7:66:5b:b7:69:1b:6d:
36:1d:65:ad:56:6c:34:81:8e:a3:d0:49:a7:75:3c:a7:01:6a:
b8:86:9f:4a:6e:9c:45:76:ea:43:ff:d6:9f:e4:9c:af:cc:73:
bb:f1:67:63:b8:10:3d:26:9b:2b:9e:9b:e1:70:4a:3d:08:0a:
48:9f:e7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 11:17:43 2025 by rpki-client