Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer
File: R2lFsh8liffnEnUf50f6IUOlI1s.cer (raw, json)
Hash identifier: fWqd/4YRciPom7QKMWYiAGY6YID4/4creK3yxVdGSpw=
Subject key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025942
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Jul 2025 02:09:02 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 150002
IP: 103.190.130.0/23
IP: 2001:df0:ecc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 11:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153922 (0x25942)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 31 02:09:02 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A9132B1D, serialNumber=476945B21F2589F7E712751FE747FA2143A5235B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8e:3e:34:be:69:b2:45:58:00:69:26:c6:bf:
c9:4f:2c:be:6a:63:ba:81:bb:a4:0a:e8:ee:f6:e9:
be:a6:d5:8a:4a:77:7f:4d:51:92:e3:fe:b2:1c:00:
5b:c7:40:3c:c7:86:58:98:05:ad:60:6f:b7:08:ae:
59:a4:d2:fc:61:27:9e:01:3b:9b:1b:62:3f:aa:1b:
94:b7:d6:55:5a:c5:58:72:de:27:bc:e7:26:c1:6c:
bc:16:1b:18:31:81:f8:d9:d0:ac:9d:1b:01:b6:1f:
4c:3e:cf:c7:18:21:f4:44:b0:f8:15:80:cc:12:7b:
48:e1:25:f2:4c:d4:52:bc:f0:74:54:76:0a:fb:7b:
6d:71:5d:e6:24:a2:70:74:30:ec:89:04:8d:0b:0b:
be:68:1d:e3:08:d6:46:70:eb:ec:94:1c:fd:46:2e:
9f:d4:23:ce:ea:3e:92:07:25:7c:a5:c6:14:da:3b:
3a:3e:e5:9f:37:72:98:3c:32:ea:95:59:0e:39:60:
41:00:36:24:ae:55:90:bd:cd:e5:40:05:45:01:24:
ba:8f:32:26:8a:dc:64:d6:c6:bf:9f:bf:70:d0:03:
d0:0c:b5:7a:76:26:48:66:cc:4a:a5:71:2f:65:0c:
f4:70:15:85:0a:58:63:4d:09:54:0e:18:cb:dc:f2:
13:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150002
sbgp-ipAddrBlock: critical
IPv4:
103.190.130.0/23
IPv6:
2001:df0:ecc0::/48
Signature Algorithm: sha256WithRSAEncryption
b1:55:be:d7:2f:0f:2a:c3:d7:4e:13:1a:7c:11:43:33:48:fb:
b7:0b:8d:df:54:7c:55:d3:b3:8b:62:34:9e:d2:3c:d2:91:e0:
f8:f8:3a:db:32:f8:3d:ce:56:ea:04:5f:b9:4f:a7:49:d7:d3:
d9:24:73:98:e5:a4:20:5a:3b:2b:b6:42:81:37:c4:ed:d7:58:
58:24:bf:4e:b8:c3:21:75:fa:ce:35:a8:96:15:be:a8:b6:c3:
48:73:e2:b9:df:9c:6a:7b:39:e7:19:64:a5:d2:25:64:59:1c:
de:9e:dc:37:52:12:77:77:97:47:e1:35:6c:5f:d8:8a:90:c5:
63:35:0a:0a:c1:6d:dd:35:f7:f0:00:64:e9:b6:f8:0d:4e:c5:
49:10:2c:53:1c:11:74:23:20:ad:21:c9:7d:46:5c:cb:8a:71:
b1:4f:7d:9c:82:2f:e9:b3:6d:7c:f0:0a:35:db:0f:6d:a1:05:
98:5c:d8:1f:4c:e0:01:bd:e2:45:e6:03:9a:f3:36:33:05:3f:
63:48:64:58:a3:78:b3:cf:6b:73:23:ea:a1:43:0b:44:b0:25:
39:12:2e:d9:06:f0:ac:89:eb:d6:3b:df:2f:ee:f4:66:37:f7:
2d:75:c0:dc:de:b5:d9:60:c7:91:37:aa:9b:02:f7:e9:c6:16:
e5:3a:59:4a
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAllCMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDczMTAyMDkwMloXDTI2MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUx
RkU3NDdGQTIxNDNBNTIzNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDQjj40vmmyRVgAaSbGv8lPLL5qY7qBu6QK6O726b6m1YpKd39NUZLj/rIcAFvH
QDzHhliYBa1gb7cIrlmk0vxhJ54BO5sbYj+qG5S31lVaxVhy3ie85ybBbLwWGxgx
gfjZ0KydGwG2H0w+z8cYIfREsPgVgMwSe0jhJfJM1FK88HRUdgr7e21xXeYkonB0
MOyJBI0LC75oHeMI1kZw6+yUHP1GLp/UI87qPpIHJXylxhTaOzo+5Z83cpg8MuqV
WQ45YEEANiSuVZC9zeVABUUBJLqPMiaK3GTWxr+fv3DQA9AMtXp2JkhmzEqlcS9l
DPRwFYUKWGNNCVQOGMvc8hPRAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUR2lFsh8l
iffnEnUf50f6IUOlI1swHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTMyQjFELzMwMjAzRUQwMTdBNDExRURCMzYwMTU2NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzMkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4
bGlmZm5FblVmNTBmNklVT2xJMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAknyMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ76CMA8EAgAC
MAkDBwAgAQ3w7MAwDQYJKoZIhvcNAQELBQADggEBALFVvtcvDyrD104TGnwRQzNI
+7cLjd9UfFXTs4tiNJ7SPNKR4Pj4Otsy+D3OVuoEX7lPp0nX09kkc5jlpCBaOyu2
QoE3xO3XWFgkv064wyF1+s41qJYVvqi2w0hz4rnfnGp7OecZZKXSJWRZHN6e3DdS
End3l0fhNWxf2IqQxWM1CgrBbd019/AAZOm2+A1OxUkQLFMcEXQjIK0hyX1GXMuK
cbFPfZyCL+mzbXzwCjXbD22hBZhc2B9M4AG94kXmA5rzNjMFP2NIZFijeLPPa3Mj
6qFDC0SwJTkSLtkG8KyJ69Y73y/u9GY39y11wNzetdlgx5E3qpsC9+nGFuU6WUo=
-----END CERTIFICATE-----
Generated at Fri Aug 22 14:17:50 2025 by rpki-client