Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer
File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer (raw, json)
Hash identifier: wSB5fILIsXMBigOmGP4DMPtvT/a5a4/5KtPmrx6iSzw=
Subject key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026FDB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Oct 2025 19:27:33 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 131340
IP: 103.74.228.0/22
IP: 2407:3480::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 16:50:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159707 (0x26fdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 28 19:27:33 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6e:a8:ab:05:65:15:c7:27:78:09:ef:68:c9:
d1:9d:2d:55:20:35:57:30:1b:e0:81:c3:ac:d5:2d:
73:c1:66:b3:a7:cc:14:e3:84:8e:72:f6:ba:9c:41:
63:2a:6a:ea:7b:5e:16:c8:c0:d7:94:e2:a4:d6:01:
40:98:a8:ab:ea:76:5a:03:65:4d:00:af:98:7f:cf:
10:34:e5:9d:42:e9:e8:b8:12:05:37:19:56:1a:65:
00:d5:02:ce:d6:e7:38:73:84:0c:8e:09:4c:56:59:
c8:b7:f4:33:81:e1:9a:04:f2:7b:7e:0f:7b:cb:5c:
71:f8:66:e1:d7:7c:60:7b:e0:11:53:ae:86:e3:d6:
32:4d:76:8e:79:0e:57:f4:f0:52:c8:bc:82:16:e2:
30:0f:08:a1:2b:e4:9f:f4:b5:13:51:82:d7:26:98:
20:39:d9:2b:86:d7:b7:78:e3:a8:a2:e4:72:f8:df:
52:38:7b:f0:15:74:03:78:49:14:b1:78:11:8d:a8:
f3:01:70:ed:a3:80:5e:31:13:41:f8:be:0f:a8:09:
f4:17:ef:45:85:f0:61:9c:ee:d1:47:bb:b8:65:98:
ec:60:50:f3:b1:86:b4:84:a3:13:b8:45:37:89:b7:
9d:1d:f6:b8:69:58:16:53:e0:aa:c9:c7:d7:55:9a:
d1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131340
sbgp-ipAddrBlock: critical
IPv4:
103.74.228.0/22
IPv6:
2407:3480::/32
Signature Algorithm: sha256WithRSAEncryption
82:ff:33:44:d3:d4:39:8e:41:c9:0f:ad:64:66:fb:97:0a:2a:
72:b2:13:84:7a:c4:61:fc:0b:5d:c7:65:3a:69:0e:cb:1a:76:
41:37:85:e4:dc:5a:b4:f4:6d:4c:ed:ca:d4:a9:ae:f8:11:7a:
52:32:37:88:44:f9:96:9d:19:02:9d:99:8f:53:b2:1d:f4:f8:
ed:75:4a:7e:9d:61:c8:4a:3d:f2:56:61:76:5f:1a:5d:8f:4e:
b4:6b:5c:08:b6:82:d2:17:67:1b:6b:85:57:04:a0:aa:0c:3d:
fb:ad:b6:37:e9:4f:61:55:6b:40:ef:1b:5b:d5:94:ad:17:5d:
b6:4d:fd:62:9b:b6:55:08:07:df:d1:8c:0b:f2:6a:95:9b:1e:
2a:b5:9b:18:71:50:ef:fe:59:dd:08:0c:74:f4:4b:31:91:48:
a7:e1:04:46:57:7a:a2:e1:dd:23:fe:17:15:44:ed:08:94:9c:
f5:c4:23:26:7d:4a:d3:dc:7c:35:f2:e0:65:ef:d9:80:0e:60:
82:27:1e:0b:85:8c:df:22:59:18:a6:bb:05:cd:0a:f9:f0:39:
a1:5e:61:fa:c4:45:4b:a9:3c:05:01:fa:2c:4e:16:89:91:35:
9d:fc:43:15:26:27:12:50:5a:c3:3e:82:96:e1:6d:8b:a2:12:
b1:c9:23:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 18:11:25 2025 by rpki-client