Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer
File: Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer (raw, json)
Hash identifier: EiZAE186XnOkT6EEZlFX1NCU+fxxsBoay7FBR39J42M=
Subject key identifier: 5E:F7:2F:9B:E4:E3:A2:8D:E3:56:9E:76:DE:2D:22:25:DB:F3:FD:8A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026333
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Sep 2025 23:17:59 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 38084
AS: 55922
IP: 103.72.88.0/24
IP: 103.108.168.0/22
IP: 203.27.21.0/24
IP: 210.48.208.0/21
IP: 2406:7600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Sep 2025 17:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156467 (0x26333)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 3 23:17:59 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91DB63B, serialNumber=5EF72F9BE4E3A28DE3569E76DE2D2225DBF3FD8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:91:56:ec:b9:1e:dc:56:9f:20:c1:57:7b:b6:
ef:c0:e6:eb:89:e8:74:83:3a:5b:64:c3:24:89:8c:
aa:73:f9:e9:db:59:4e:02:5b:36:13:e0:6c:bf:d4:
08:e6:50:95:8f:67:aa:86:e6:e5:39:2f:09:99:10:
61:fc:81:67:11:ff:6d:bc:0b:88:d0:1d:4d:3f:24:
a0:72:1f:bd:31:62:21:f0:69:fa:92:b1:d1:08:db:
c4:7e:ed:d3:4d:26:83:4a:da:ed:ba:80:03:98:b5:
1b:0a:2f:25:56:02:e9:5a:83:c1:37:0d:84:5b:89:
44:68:18:63:22:28:d6:d2:07:9d:4d:ab:61:22:c3:
e0:54:9a:06:c1:d2:86:2f:ed:8f:95:86:12:97:1f:
74:97:b8:b9:5a:3e:37:29:45:68:88:cd:94:31:7c:
2c:32:ac:dd:90:b2:e5:e6:da:63:62:40:d1:ba:17:
94:2b:c8:44:7c:23:98:e8:87:fd:9e:79:d2:e6:47:
08:ea:be:14:98:24:69:f4:b8:c0:04:5d:67:65:b0:
c1:12:81:37:86:74:8c:63:b3:78:cd:34:50:e7:df:
80:42:eb:00:45:58:33:87:ae:56:9e:20:90:0f:ba:
5f:75:3b:b3:7d:a5:ca:ee:96:b8:0d:fe:86:fc:8c:
5d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F7:2F:9B:E4:E3:A2:8D:E3:56:9E:76:DE:2D:22:25:DB:F3:FD:8A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38084
55922
sbgp-ipAddrBlock: critical
IPv4:
103.72.88.0/24
103.108.168.0/22
203.27.21.0/24
210.48.208.0/21
IPv6:
2406:7600::/32
Signature Algorithm: sha256WithRSAEncryption
c5:e9:e3:96:a1:b2:6b:01:59:6f:bc:12:b7:06:22:4e:0e:56:
05:6c:92:b0:cf:78:97:f6:d0:a3:af:d5:64:18:ca:28:a8:f3:
03:88:d5:fc:4e:cc:74:17:ac:9a:6a:48:51:7f:4a:72:84:7d:
0f:55:62:d3:17:88:5a:4b:e6:01:6a:b0:7e:b3:a2:6f:a9:e2:
60:9e:5c:cb:99:c7:1e:5a:f6:b6:d9:85:3d:e3:4e:bd:4c:51:
e0:0f:c7:01:0c:6a:31:e1:91:8b:79:1e:49:36:d3:0b:65:d9:
ba:48:6b:84:56:41:70:9e:f8:68:77:95:70:7f:8f:ef:2b:27:
76:7c:96:62:0c:54:1d:3e:a9:87:5a:6e:e7:c9:ae:4f:44:c2:
e5:82:02:21:b1:6a:03:24:bf:d9:52:e1:22:9f:e8:0a:ab:d1:
ba:82:6a:f0:c6:a5:03:70:e3:8b:fd:e0:0e:fc:84:30:4c:f9:
34:ec:8c:c6:1f:7f:39:ec:c5:a5:ae:b4:bc:6d:79:6a:b1:19:
77:2b:40:ce:6a:60:15:60:6f:49:14:15:b5:d5:2f:0a:45:a1:
e3:72:5a:91:5e:2a:3c:2c:ac:58:b0:75:ac:ff:c2:d1:aa:59:
f7:a4:58:c9:09:25:55:4b:6d:38:b8:55:d5:7a:78:a6:09:47:
36:23:bb:67
-----BEGIN CERTIFICATE-----
MIIGQDCCBSigAwIBAgIDAmMzMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDkwMzIzMTc1OVoXDTI2MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxREI2M0IxMTAvBgNVBAUTKDVFRjcyRjlCRTRFM0EyOERFMzU2OUU3
NkRFMkQyMjI1REJGM0ZEOEEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC9kVbsuR7cVp8gwVd7tu/A5uuJ6HSDOltkwySJjKpz+enbWU4CWzYT4Gy/1Ajm
UJWPZ6qG5uU5LwmZEGH8gWcR/228C4jQHU0/JKByH70xYiHwafqSsdEI28R+7dNN
JoNK2u26gAOYtRsKLyVWAulag8E3DYRbiURoGGMiKNbSB51Nq2Eiw+BUmgbB0oYv
7Y+VhhKXH3SXuLlaPjcpRWiIzZQxfCwyrN2QsuXm2mNiQNG6F5QryER8I5joh/2e
edLmRwjqvhSYJGn0uMAEXWdlsMESgTeGdIxjs3jNNFDn34BC6wBFWDOHrlaeIJAP
ul91O7N9pcrulrgN/ob8jF0lAgMBAAGjggM1MIIDMTAdBgNVHQ4EFgQUXvcvm+Tj
oo3jVp523i0iJdvz/YowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MURCNjNCLzJFMkNFQTE2OUY0NjExRUE5ODhEMEI2NUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEQjYzQi8yRTJDRUExNjlGNDYxMUVBOTg4RDBCNjVDNEY5QUUwMi9YdmN2bS1U
am9vM2pWcDUyM2kwaUpkdnpfWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDAJTEAgMA2nIwQAYIKwYBBQUHAQcBAf8EMTAvMB4EAgABMBgDBABnSFgD
BAJnbKgDBADLGxUDBAPSMNAwDQQCAAIwBwMFACQGdgAwDQYJKoZIhvcNAQELBQAD
ggEBAMXp45ahsmsBWW+8ErcGIk4OVgVskrDPeJf20KOv1WQYyiio8wOI1fxOzHQX
rJpqSFF/SnKEfQ9VYtMXiFpL5gFqsH6zom+p4mCeXMuZxx5a9rbZhT3jTr1MUeAP
xwEMajHhkYt5Hkk20wtl2bpIa4RWQXCe+Gh3lXB/j+8rJ3Z8lmIMVB0+qYdabufJ
rk9EwuWCAiGxagMkv9lS4SKf6Aqr0bqCavDGpQNw44v94A78hDBM+TTsjMYffzns
xaWutLxteWqxGXcrQM5qYBVgb0kUFbXVLwpFoeNyWpFeKjwsrFiwdaz/wtGqWfek
WMkJJVVLbTi4VdV6eKYJRzYju2c=
-----END CERTIFICATE-----
Generated at Thu Sep 18 18:58:26 2025 by rpki-client