Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer
File: SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer (raw, json)
Hash identifier: UeqYu6prisFLTffh3DiIsRe+lUtteyQhM6apIaN9+SI=
Subject key identifier: 4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0248D3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 May 2025 23:05:00 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 149832
IP: 103.187.136.0/24
IP: 2001:df0:c140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149715 (0x248d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 26 23:05:00 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A91FB0D0, serialNumber=4B3C6956B044900100858C0DE50EB9A462B08CC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:05:ae:5f:db:9f:c9:f7:64:e5:bd:07:50:af:
40:71:57:67:8a:52:c4:b0:07:15:ed:ec:f6:96:d2:
7d:90:73:bf:3f:59:5d:46:87:12:2b:ec:3f:38:bf:
3c:3d:37:1b:bd:62:e4:6f:21:93:7c:05:59:ac:19:
53:f4:19:24:4b:4f:7b:37:e0:fd:79:71:e3:a3:8d:
14:b8:d8:ef:ce:56:7c:0c:46:da:28:90:e1:80:09:
35:8c:50:b9:2a:84:cf:f8:4b:96:a1:64:4b:b1:fa:
9a:27:4d:b5:d3:47:ca:90:00:cf:a7:70:b2:8d:5f:
4a:21:c6:1d:1c:a9:dc:35:07:65:82:3e:7a:6c:95:
64:a6:2d:cf:9d:e9:d6:dc:e6:7f:d3:c3:0f:ae:1d:
40:6b:d0:8e:8d:01:91:77:88:3c:6b:d4:ed:e7:93:
55:5d:c4:eb:74:87:55:88:2c:9b:d7:b5:7f:8e:5b:
50:51:01:b0:d7:94:20:e1:7e:24:f1:7e:34:4a:0a:
ad:08:b2:0a:93:25:af:d3:7d:91:86:bc:4d:81:01:
90:7c:bc:b9:36:43:aa:72:c5:37:eb:67:f2:08:75:
d5:29:8d:6a:66:7e:18:39:a7:62:39:07:fa:40:d6:
1c:91:d7:4d:1c:2c:36:35:79:f9:41:2a:dc:15:89:
80:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149832
sbgp-ipAddrBlock: critical
IPv4:
103.187.136.0/24
IPv6:
2001:df0:c140::/48
Signature Algorithm: sha256WithRSAEncryption
5c:f0:0f:58:b5:e4:eb:c4:b4:58:6e:a3:fe:a4:7a:5c:9a:03:
f1:d4:df:b4:ca:15:c6:7f:e7:39:dd:af:dd:70:2e:ac:b0:48:
c6:c4:ee:53:f6:23:9a:aa:34:01:37:04:ec:13:5a:56:73:27:
ca:f2:2b:9c:fa:d2:6d:20:66:9c:9a:c3:58:35:c6:ef:d6:26:
c2:2e:c5:fd:cb:7c:3a:35:52:2a:4b:cb:d3:88:bd:14:1c:e3:
a7:52:72:43:75:c0:fd:15:78:8f:35:ce:be:67:be:36:70:83:
9f:8a:e4:7d:49:8f:fb:2d:4b:b2:52:c8:2d:63:83:46:cf:b2:
98:bf:67:dd:0f:ed:50:5d:19:c5:e6:7a:79:31:1e:ae:76:0d:
50:19:fe:b3:c0:6d:59:7a:75:ee:40:30:18:0e:ab:47:c3:7d:
8a:28:84:2f:b7:7c:02:af:50:ec:43:29:90:0e:f0:42:ef:24:
bb:6b:b0:5f:9f:a2:f9:9a:bc:8e:68:27:90:07:3d:cf:0d:2f:
1c:db:ae:9e:df:30:ef:71:89:7d:a8:cd:c2:b0:f7:06:08:bc:
1f:3f:81:3a:fd:fe:2c:61:36:e5:1b:c7:ba:fd:7c:0a:c9:f2:
43:bd:f3:2b:48:73:b5:3b:7f:e3:2e:57:84:2a:a3:1a:0a:2f:
98:91:f2:ca
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 09:07:09 2025 by rpki-client