Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmC4TbkbbAhlAgzg8gbFNJ5Lg0g.cer
File: XmC4TbkbbAhlAgzg8gbFNJ5Lg0g.cer (raw, json)
Hash identifier: s2OSeUUD1vQQul0B4nI4vtM6G/ub9fXC2aPzyyBC9sU=
Subject key identifier: 5E:60:B8:4D:B9:1B:6C:08:65:02:0C:E0:F2:06:C5:34:9E:4B:83:48
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0253CF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9116372/E6D9526059A011F08286D332C4F9AE02/XmC4TbkbbAhlAgzg8gbFNJ5Lg0g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9116372/E6D9526059A011F08286D332C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 05 Jul 2025 13:06:50 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 153739
IP: 163.223.200.0/24
IP: 2001:df5:49c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Jul 2025 03:15:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152527 (0x253cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 5 13:06:50 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A9116372, serialNumber=5E60B84DB91B6C0865020CE0F206C5349E4B8348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:78:80:a7:ba:97:73:87:5c:9f:c7:de:69:2f:
46:92:16:75:3f:e7:bd:b7:ad:91:13:79:94:1d:59:
64:92:ac:86:ae:7a:10:87:dd:4c:1e:f4:e9:7c:a1:
52:c8:58:d7:41:2a:89:89:1f:49:f6:8c:53:d7:bc:
71:4d:4b:8f:53:80:16:e8:9b:b6:79:69:b0:73:53:
e3:ce:d4:a2:f4:c4:af:0d:5f:e6:5b:4d:db:51:91:
c9:66:bb:ef:03:31:f7:03:95:00:a4:08:d6:ce:93:
0f:31:52:6b:90:2c:bb:97:2c:9b:a6:4f:ed:6d:7c:
9f:6c:f9:d3:df:56:e2:9b:cf:93:17:23:67:8a:45:
74:de:ea:5a:21:48:34:e9:02:a8:c4:75:77:ea:fb:
80:fb:3b:9d:4a:f1:35:6c:16:c9:14:51:85:77:45:
34:ba:17:e2:f0:9f:37:a2:3a:79:d2:17:36:e8:c8:
55:b4:c7:6a:5a:71:11:6f:92:ad:c3:3b:92:77:da:
4e:7e:9c:cf:37:b4:43:26:e9:bc:82:2c:f3:e6:20:
54:fd:bb:98:75:ef:d2:5c:48:ed:95:1f:a7:14:d5:
4e:ba:d2:4b:cd:58:2f:f7:f4:ba:32:15:c6:a8:4c:
37:5b:8d:27:15:d5:ef:06:ff:f4:62:dd:87:12:f4:
71:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:60:B8:4D:B9:1B:6C:08:65:02:0C:E0:F2:06:C5:34:9E:4B:83:48
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9116372/E6D9526059A011F08286D332C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9116372/E6D9526059A011F08286D332C4F9AE02/XmC4TbkbbAhlAgzg8gbFNJ5Lg0g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153739
sbgp-ipAddrBlock: critical
IPv4:
163.223.200.0/24
IPv6:
2001:df5:49c0::/48
Signature Algorithm: sha256WithRSAEncryption
a5:0b:99:c2:21:30:10:b9:e7:8d:c8:ce:0c:aa:80:46:cf:6f:
9c:d5:1d:6a:a1:e9:40:3c:76:f2:b3:33:41:48:39:49:27:77:
93:a5:d1:02:14:fb:33:f2:a2:21:9a:ba:95:a7:f4:23:31:fb:
10:a7:ca:f7:e5:a0:06:70:4e:4c:40:a2:18:2f:b3:a3:fb:bf:
50:23:8e:f6:b9:4b:7d:5a:3e:54:54:f4:2f:f1:4b:88:e8:60:
25:77:3f:1a:89:bf:b5:13:2b:0e:ae:c2:55:77:12:3c:ce:12:
3a:6a:07:e5:af:9d:c3:a6:b1:7d:3a:b5:2d:12:bd:3e:de:58:
ce:d2:f2:47:17:43:5f:d2:e6:f5:6d:79:e0:e5:9a:3c:d0:b7:
a7:87:0b:6d:44:93:ac:82:0d:fc:1e:66:32:83:64:ab:eb:d1:
1a:bb:78:54:c8:17:9d:ac:a2:fa:48:54:6d:e7:9b:b1:b5:2c:
0c:c8:38:0e:95:c2:bb:44:c9:12:9d:0c:8d:0e:51:cd:37:d9:
0f:bd:97:3f:36:17:4d:ca:61:ca:12:eb:12:4c:24:b9:aa:19:
87:f7:5a:02:14:02:34:56:98:35:e0:6c:fb:3c:cf:50:6d:e9:
a5:e5:e9:7a:2a:18:fe:7f:90:c7:4f:97:d4:57:18:e0:c6:bc:
48:a9:c9:e7
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAlPPMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDcwNTEzMDY1MFoXDTI2MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMTYzNzIxMTAvBgNVBAUTKDVFNjBCODREQjkxQjZDMDg2NTAyMENF
MEYyMDZDNTM0OUU0QjgzNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDLeICnupdzh1yfx95pL0aSFnU/5723rZETeZQdWWSSrIauehCH3Uwe9Ol8oVLI
WNdBKomJH0n2jFPXvHFNS49TgBbom7Z5abBzU+PO1KL0xK8NX+ZbTdtRkclmu+8D
MfcDlQCkCNbOkw8xUmuQLLuXLJumT+1tfJ9s+dPfVuKbz5MXI2eKRXTe6lohSDTp
AqjEdXfq+4D7O51K8TVsFskUUYV3RTS6F+LwnzeiOnnSFzboyFW0x2pacRFvkq3D
O5J32k5+nM83tEMm6byCLPPmIFT9u5h179JcSO2VH6cU1U660kvNWC/39LoyFcao
TDdbjScV1e8G//Ri3YcS9HETAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUXmC4Tbkb
bAhlAgzg8gbFNJ5Lg0gwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTE2MzcyL0U2RDk1MjYwNTlBMDExRjA4Mjg2RDMzMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExNjM3Mi9FNkQ5NTI2MDU5QTAxMUYwODI4NkQzMzJDNEY5QUUwMi9YbUM0VGJr
YmJBaGxBZ3pnOGdiRk5KNUxnMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAliLMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAo9/IMA8EAgAC
MAkDBwAgAQ31ScAwDQYJKoZIhvcNAQELBQADggEBAKULmcIhMBC5543IzgyqgEbP
b5zVHWqh6UA8dvKzM0FIOUknd5Ol0QIU+zPyoiGaupWn9CMx+xCnyvfloAZwTkxA
ohgvs6P7v1Ajjva5S31aPlRU9C/xS4joYCV3PxqJv7UTKw6uwlV3EjzOEjpqB+Wv
ncOmsX06tS0SvT7eWM7S8kcXQ1/S5vVteeDlmjzQt6eHC21Ek6yCDfweZjKDZKvr
0Rq7eFTIF52sovpIVG3nm7G1LAzIOA6VwrtEyRKdDI0OUc032Q+9lz82F03KYcoS
6xJMJLmqGYf3WgIUAjRWmDXgbPs8z1Bt6aXl6XoqGP5/kMdPl9RXGODGvEipyec=
-----END CERTIFICATE-----
Generated at Mon Jul 7 04:37:23 2025 by rpki-client