Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer
File: XK9B9ks3Umh5jipdqgwUAADNdHM.cer (raw, json)
Hash identifier: MTk80suoB5qbAilTZG23PaT9UpectT1EcmxDFrlPQeY=
Subject key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025D27
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 13 Aug 2025 20:52:41 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 137972
IP: 103.146.24.0/24
IP: 2001:df5:d700::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 11:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154919 (0x25d27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 13 20:52:41 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:12:03:8e:e5:e4:1b:d1:7e:19:85:4e:36:82:
ff:b3:13:8a:f3:27:95:22:20:57:06:d7:a7:6b:a8:
94:10:2d:4d:1c:da:68:ae:a1:1f:3d:90:60:9d:cd:
76:10:84:82:ae:31:f0:00:a4:f6:b0:e1:8e:d5:ef:
31:4c:73:f4:fe:d5:1e:13:17:fe:bc:6b:e0:0f:cf:
e8:49:4f:7b:c6:86:11:d1:84:83:e7:20:ce:a7:c0:
c0:05:76:60:0f:f6:11:fc:bf:a9:80:a7:da:30:36:
19:c8:d0:a0:28:03:ed:59:eb:48:83:52:36:b0:4c:
3d:8e:be:14:25:50:e4:30:74:ba:6c:19:bc:c0:59:
fe:56:a9:3b:6e:d7:97:3f:26:8a:71:0a:46:2c:8e:
93:09:9d:a4:36:16:eb:5c:5b:3b:69:b2:d0:80:af:
81:14:c6:b5:5b:ab:a7:9f:88:d5:22:ce:3f:5d:27:
b0:44:47:45:32:92:cd:a6:a1:c3:d5:44:35:ef:07:
87:a6:4f:68:e5:4f:9c:4d:50:29:91:80:a4:cf:4f:
9a:8e:4d:eb:04:2b:ea:ef:4f:09:35:40:3c:22:72:
82:f5:cd:d3:63:52:f9:33:2b:82:4e:d8:f6:bd:c5:
57:0c:3a:05:63:e3:fb:84:fe:6b:dd:e3:e9:f1:c0:
52:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137972
sbgp-ipAddrBlock: critical
IPv4:
103.146.24.0/24
IPv6:
2001:df5:d700::/48
Signature Algorithm: sha256WithRSAEncryption
44:fa:d7:be:9a:68:74:49:b6:23:db:bc:07:19:a1:d5:34:61:
39:ae:1f:ad:e5:27:a5:f8:25:b4:be:31:d5:00:cc:1f:3a:da:
bb:cc:32:b2:46:72:ea:0b:45:ea:f0:a7:0d:52:06:8e:90:24:
ec:46:02:a2:dd:19:c5:c4:c1:1f:8c:79:a6:af:a2:b0:cb:17:
ee:c8:35:af:0a:eb:04:1a:27:15:7c:c8:20:43:7f:27:16:96:
29:ca:43:58:24:bc:3a:14:6b:a5:17:65:34:8d:75:bc:15:3c:
45:2e:29:4a:2b:fc:03:6c:ac:db:3c:7d:2b:db:ee:17:1d:44:
10:0c:7d:47:83:5f:81:92:d4:77:b9:e6:30:f3:bc:b9:19:46:
0e:63:66:99:8e:e7:43:85:1c:38:88:85:91:f4:8c:71:25:9c:
57:fd:f9:6d:aa:f3:b3:74:da:a1:37:43:4c:7e:19:3b:2a:04:
ed:9f:27:b3:cf:0d:88:4d:03:9b:26:a1:88:49:60:3d:08:26:
b5:7b:19:4a:5c:39:91:91:89:88:9e:48:ae:26:d4:86:85:07:
5b:c1:e9:f5:1a:b8:e4:eb:75:05:31:d3:a3:76:fe:df:89:64:
b5:83:12:bc:20:23:d6:7e:62:04:6c:e6:d8:3d:79:46:d8:e1:
ad:44:2a:0c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Aug 22 14:28:24 2025 by rpki-client