Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vg3ED_OlCfnv21Jg7huzhi222N8.cer
File: Vg3ED_OlCfnv21Jg7huzhi222N8.cer (raw, json)
Hash identifier: 4fRRYxRQIwoFmXl3DIw3P36nTKtSn3u+73h1n7f05Do=
Subject key identifier: 56:0D:C4:0F:F3:A5:09:F9:EF:DB:52:60:EE:1B:B3:86:2D:B6:D8:DF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024610
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/Vg3ED_OlCfnv21Jg7huzhi222N8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 14 May 2025 13:50:45 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 151045
IP: 103.119.174.0/23
IP: 2001:df2:2a40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149008 (0x24610)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 14 13:50:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A912E926, serialNumber=560DC40FF3A509F9EFDB5260EE1BB3862DB6D8DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f8:25:b5:06:fc:7f:2c:6a:c1:38:ae:61:1e:
18:b6:1a:c3:f4:b3:3b:41:8e:45:53:3f:c0:fc:79:
2a:49:bc:87:81:eb:28:da:d0:35:45:19:9a:d1:69:
da:36:02:1f:33:77:b0:37:4d:ce:76:da:13:93:5e:
63:3d:51:e3:4f:6b:9f:b9:b7:86:97:ec:7e:9a:8f:
70:a5:c6:5e:cc:d6:4e:2c:47:1a:31:4c:0a:0d:36:
3d:0f:b7:cb:e6:d6:e0:f3:93:59:53:75:f6:1c:54:
93:3b:c3:c2:83:e7:bf:a2:96:c0:fe:c2:0f:a7:de:
c4:46:84:45:99:f2:c0:d9:63:3b:84:02:25:29:72:
85:1d:38:dd:39:e0:8e:02:ad:dc:ee:f4:6c:d9:ab:
80:1c:a7:15:e7:cc:a9:e7:01:e2:c8:28:35:e7:4c:
7b:62:d2:09:7a:81:b9:6e:48:64:06:90:7a:42:d6:
88:ea:ce:b5:3c:28:d4:ef:7d:8a:b9:27:79:dc:f0:
ec:c4:cd:3c:19:62:55:3c:85:9e:f0:f6:f8:d5:b3:
db:c7:81:ee:29:44:eb:f6:1f:4a:78:a9:a6:1a:4c:
f5:50:7c:86:18:50:91:77:a5:1d:31:a5:f6:1f:8b:
01:ae:b4:fd:0a:97:b5:8d:57:01:e8:85:d6:e0:b7:
70:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0D:C4:0F:F3:A5:09:F9:EF:DB:52:60:EE:1B:B3:86:2D:B6:D8:DF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912E926/86676DA0FA0111EDBAD75D28C4F9AE02/Vg3ED_OlCfnv21Jg7huzhi222N8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151045
sbgp-ipAddrBlock: critical
IPv4:
103.119.174.0/23
IPv6:
2001:df2:2a40::/48
Signature Algorithm: sha256WithRSAEncryption
83:e9:d9:1b:bd:a2:37:f6:4f:56:f7:81:31:67:ab:14:1c:a5:
d0:d8:33:5f:5b:c2:e8:2b:44:f6:ec:d4:cf:c5:72:bc:b4:fa:
0c:1e:9a:0e:1b:94:49:3f:b9:b8:f9:e4:3f:92:57:2d:28:86:
e7:48:7f:c3:b4:f8:60:3d:30:93:28:a1:6c:f7:f9:9e:38:09:
03:b4:dd:34:53:e9:6e:f1:f4:e5:51:e3:75:11:fa:70:d4:e0:
70:03:af:d8:68:44:8c:19:47:53:0b:6a:d1:0a:63:f7:f9:f6:
e3:06:41:ca:39:39:e9:ec:e9:18:82:e8:3c:fe:9a:60:b2:28:
6e:e6:44:d4:2d:44:b8:42:1c:7b:ae:65:b2:09:05:23:62:67:
cf:6a:76:41:71:33:65:c6:14:80:99:98:22:84:94:ec:59:26:
14:26:dc:41:7c:52:bb:4b:f3:c3:01:03:9b:9b:1f:21:12:22:
68:1f:58:cf:41:d2:85:e7:21:a9:dd:a7:ba:84:6d:2a:e9:9a:
7e:f7:6d:93:9d:2e:23:6b:ce:48:0f:8f:8f:b1:48:15:2d:5f:
e8:de:23:e0:26:62:d8:79:7e:f8:56:22:30:25:0e:27:61:4b:
12:06:db:be:ad:66:b3:44:cd:f5:07:af:b4:b5:3e:f0:1b:11:
0b:a7:78:99
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 09:50:25 2025 by rpki-client