Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer
File: XsGmrXajq_3B4TKesmN8AYZLSAg.cer (raw, json)
Hash identifier: qB529vMDnWFlj0FGIJENtWAJc+CeKDo3TrUr7/HqwWI=
Subject key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02624E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Sep 2025 08:29:32 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 38193
AS: 45843
IP: 103.86.38.0/23
IP: 103.92.20.0/22
IP: 110.93.192.0/18
IP: 117.20.16.0/20
IP: 119.63.128.0/20
IP: 221.132.112.0/21
IP: 2404:d400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Sep 2025 14:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156238 (0x2624e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 2 08:29:32 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91AB20B, serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8d:8f:ea:a0:0c:77:d4:d6:e3:e6:38:72:1e:
bf:ed:ad:df:b0:ce:2b:72:f9:17:f8:f9:84:4d:64:
88:b9:d2:ce:1c:20:7e:8a:d1:e7:d4:ce:e4:7b:2d:
e0:46:2d:c1:4c:81:23:b4:8b:7d:b3:28:24:03:3f:
46:09:86:b4:31:6d:4a:c1:e2:78:9b:f9:ea:1d:19:
23:20:56:eb:7e:ba:1f:40:11:8f:c8:2f:39:d9:7e:
12:ce:11:68:46:dd:2e:e5:b9:8c:89:f9:fa:88:c3:
0b:9d:7e:1c:f4:e9:f2:22:e2:2e:90:88:dd:68:1f:
7a:80:23:c5:b7:d5:9b:33:4a:0f:70:75:59:dd:fa:
17:d2:22:d4:a4:68:f7:c5:74:43:e3:4d:73:ca:39:
63:6b:c6:1f:b5:68:f8:17:42:55:58:31:2b:ce:39:
15:de:28:75:fb:a7:9d:28:3e:5a:23:49:73:d1:49:
39:92:b4:56:9b:76:22:f6:c1:d6:37:d1:c5:d5:ca:
97:3a:76:65:d3:3c:ef:27:fc:a9:3a:22:df:3e:0b:
e1:1e:73:44:d4:74:c1:19:fa:51:3c:57:5e:f6:ab:
51:09:88:f2:9a:85:34:3e:26:e1:6a:cb:f1:2d:3e:
ac:29:f8:15:d4:98:fa:15:7d:ed:a6:25:fc:d1:48:
27:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38193
45843
sbgp-ipAddrBlock: critical
IPv4:
103.86.38.0/23
103.92.20.0/22
110.93.192.0/18
117.20.16.0/20
119.63.128.0/20
221.132.112.0/21
IPv6:
2404:d400::/32
Signature Algorithm: sha256WithRSAEncryption
7d:fd:be:95:b0:95:6a:fa:35:ad:ca:b1:82:7d:71:c0:37:7c:
b9:cc:62:a5:2c:84:d3:56:ee:9b:08:0a:88:97:27:31:e7:ea:
3d:22:8c:18:98:41:3d:58:d1:8c:dc:4c:c8:31:90:01:b3:fd:
8e:d7:74:ee:ae:99:b6:6a:11:45:2f:28:df:8f:ad:f0:9e:f3:
78:a9:1c:df:c0:15:27:a5:97:cb:06:79:5a:f6:13:a0:81:4a:
fb:d9:f5:1f:d7:d2:a1:df:94:b2:69:e3:9b:a2:5f:45:85:b3:
c7:f9:f1:5f:dc:46:ae:63:31:0e:cb:26:ce:37:aa:6d:d2:ea:
08:72:17:97:19:42:ed:4b:8f:26:bd:83:3e:55:d4:66:f7:62:
19:fa:93:02:31:51:49:5e:6a:ef:28:8c:4a:d9:a5:a2:e8:68:
7e:df:0a:27:2e:29:d4:73:05:58:ee:5a:2d:ec:d1:13:26:96:
c2:f0:b7:36:7f:03:99:ce:e9:0f:8e:7b:46:d5:2a:f7:9e:dd:
c8:52:7c:a7:b5:b2:96:4e:e5:e6:55:6d:61:dd:f1:f6:3d:a7:
83:65:4a:b2:af:5d:5c:48:e1:aa:95:b7:11:ce:cf:09:e3:bc:
e2:23:f2:3e:2e:20:95:50:37:29:b4:08:aa:b3:2e:fe:c4:52:
5b:a9:58:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 16:04:57 2025 by rpki-client