Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer
File: UgGonTDEgplFBBjJVrh3JJcG6Vc.cer (raw, json)
Hash identifier: iBwWIXGNlWAUGhFY7e4Y/fiNayWkHkUV3dkKqTQZ7DU=
Subject key identifier: 52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025C73
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 10 Aug 2025 18:50:17 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 142633
IP: 103.171.138.0/23
IP: 2001:df7:4880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 11:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154739 (0x25c73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 10 18:50:17 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91E7E94, serialNumber=5201A89D30C48299450418C956B877249706E957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0d:54:b5:bd:d8:a5:03:6c:6e:dc:34:bb:13:
c7:4f:f2:37:78:d2:c6:8d:36:71:cb:8d:a3:21:14:
83:ce:cf:f2:9f:4a:b3:8e:ef:fd:7a:7e:89:1e:9a:
37:e8:57:cc:3d:a9:01:0a:23:b9:a3:2e:f6:6e:a8:
34:6f:ba:c0:05:3e:05:85:a5:8e:4d:ae:cc:4d:fd:
35:58:ca:67:8e:17:2a:ba:8b:a0:45:30:33:a8:a8:
ba:0b:a0:8e:69:f4:89:80:30:49:2c:b7:19:23:3b:
3b:a0:7f:87:f0:2f:d9:2f:cb:2c:49:54:76:7d:b6:
2c:ac:4c:47:96:81:dc:c3:9c:e7:41:33:f8:dc:c1:
e5:86:83:b8:dc:76:cf:9e:23:3b:c0:36:29:f5:15:
93:6c:be:e2:d1:64:76:8c:ec:ee:a2:59:b1:6c:2d:
f1:75:16:24:bf:01:5b:de:c7:64:25:69:fd:f2:e6:
6d:51:a0:ac:1a:33:ce:38:cf:a9:ec:68:79:6a:aa:
96:01:5b:0e:bc:c6:9b:02:76:1c:5a:5f:87:ec:1d:
b4:47:63:7b:ad:d4:dd:98:d8:e2:0d:0d:5e:11:1f:
1a:47:e7:5f:75:73:1d:9e:6c:68:fa:43:44:de:bf:
f8:54:85:b5:99:85:1d:dc:dc:0a:4b:ac:26:c1:99:
0b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142633
sbgp-ipAddrBlock: critical
IPv4:
103.171.138.0/23
IPv6:
2001:df7:4880::/48
Signature Algorithm: sha256WithRSAEncryption
ae:01:14:c3:8e:ea:40:f6:77:e4:c1:fd:b3:a5:41:c2:60:f8:
b9:80:db:af:44:69:03:bf:e1:0d:23:e8:18:25:33:ff:0d:ce:
c7:9b:8e:54:bf:2f:02:4b:76:1d:d6:f6:2c:18:4b:06:7f:a3:
ca:27:c1:88:da:fb:a7:84:fd:c9:ad:e6:d4:a1:19:f3:87:d4:
15:d5:8b:26:8c:dc:e0:0a:0f:67:19:df:07:f7:f3:9e:1c:16:
8a:db:d4:cc:7f:1f:32:fc:34:f2:86:e3:e6:28:ed:4b:32:70:
df:73:df:3a:82:b5:17:ce:07:c0:9f:dc:54:cc:db:b9:4e:46:
55:94:55:00:1d:2d:80:ec:46:8d:cd:f7:2c:ae:6e:0a:74:8f:
ef:bb:87:b8:7e:c9:d4:a5:74:4d:8c:5d:12:3d:c8:2c:19:01:
3a:00:ed:77:06:17:df:28:da:36:c5:fb:8d:3d:d4:2f:e4:b1:
89:cb:bb:d0:4c:a2:8e:2a:26:d2:c6:df:86:86:28:08:f4:04:
5b:a4:e5:be:12:ce:ad:14:c9:70:4c:2c:04:91:14:f7:95:4e:
1d:a4:fd:4a:de:c0:09:a6:2f:7f:ad:06:75:49:9b:44:8c:62:
dd:3d:0f:87:04:d6:2f:b8:e1:1d:fc:df:9e:9d:b8:2b:0d:bd:
81:4a:ee:38
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Aug 22 14:21:47 2025 by rpki-client