Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7cBtycG8xkL74v7-jT_oz9Pa9Y.cer
File: Y7cBtycG8xkL74v7-jT_oz9Pa9Y.cer (raw, json)
Hash identifier: 3wQeVZHEKeyUSibjln5iTwYmQPZVU6a1/aCANfFaGbA=
Subject key identifier: 63:B7:01:B7:27:06:F3:19:0B:EF:8B:FB:FA:34:FF:A3:3F:4F:6B:D6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024C1C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/Y7cBtycG8xkL74v7-jT_oz9Pa9Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Jun 2025 05:00:16 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 149492
IP: 103.181.46.0/23
IP: 2001:df0:67c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 08 Jul 2025 08:36:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150556 (0x24c1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 4 05:00:16 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A914D0AF, serialNumber=63B701B72706F3190BEF8BFBFA34FFA33F4F6BD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e5:33:f8:16:bc:16:04:40:2f:b5:1b:1a:10:
98:f9:cd:99:a3:50:ab:06:b6:7e:64:9a:1f:da:c2:
81:ba:e3:ec:ca:cd:7f:36:27:1a:39:0e:fb:4e:8f:
6f:47:86:a3:55:9f:33:3e:01:85:0c:d5:fa:99:ab:
69:e5:de:7e:2f:42:10:c4:c9:71:ce:2f:7d:77:cb:
78:b0:8f:b0:f8:51:96:14:e0:a4:f2:ae:4f:cf:16:
99:cd:36:31:a1:a9:56:13:8d:fe:29:0b:66:3d:75:
1d:a7:1d:ff:8e:fe:f2:bc:99:fb:1e:7e:1c:07:7e:
da:5e:dc:de:ac:5d:8a:54:fa:75:73:f7:09:c0:ca:
3a:5d:a9:a5:0e:e7:6b:b0:ed:be:be:f8:2b:1b:e9:
d0:a2:04:86:9b:8e:3f:eb:84:23:03:a1:2e:93:d0:
81:c3:78:38:39:cd:41:2f:0b:c4:f0:10:3a:59:8e:
07:3e:71:83:df:74:84:38:e1:b2:13:37:c1:7e:64:
6f:53:a2:25:81:df:c6:f3:8b:28:8f:b1:69:a5:28:
34:3e:a9:6a:ca:3c:fa:11:b6:05:31:e5:36:06:0d:
06:82:03:27:22:9d:53:e2:5c:c3:52:97:f0:1e:f1:
a9:5d:ec:17:2f:fd:ff:72:a2:08:e6:7c:d0:b8:2f:
86:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B7:01:B7:27:06:F3:19:0B:EF:8B:FB:FA:34:FF:A3:3F:4F:6B:D6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/Y7cBtycG8xkL74v7-jT_oz9Pa9Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149492
sbgp-ipAddrBlock: critical
IPv4:
103.181.46.0/23
IPv6:
2001:df0:67c0::/48
Signature Algorithm: sha256WithRSAEncryption
5f:7c:e7:79:c0:aa:53:5f:ea:f3:d8:84:15:9f:39:0f:4e:d5:
11:98:6d:d2:78:6c:19:f0:fb:a0:af:60:9c:2e:29:ec:cc:ac:
aa:e8:09:6a:90:12:32:ae:94:a2:7b:6a:3d:39:ee:0d:fa:d1:
6f:ba:7c:a1:dd:05:87:99:dc:00:0d:86:20:bc:80:6f:84:51:
aa:17:26:d1:9e:c7:3f:32:f1:3c:74:91:8f:af:2d:d7:44:56:
46:ec:9c:4d:b4:6f:11:d5:ca:88:2e:63:b6:b5:6c:10:42:e8:
f7:17:a6:01:ea:6d:92:79:2c:3f:c7:54:1c:be:c9:d6:b4:24:
da:16:0e:12:eb:6d:89:07:9f:9f:bd:bc:90:9c:74:e0:51:28:
2f:0e:cd:5f:1c:00:4b:81:91:55:b8:34:c7:b7:f4:51:4a:90:
da:6e:69:67:91:68:33:03:de:0f:ac:ce:3b:91:3b:58:69:2b:
f6:1e:52:f6:92:a2:ad:47:e0:28:9c:5b:77:5d:e7:06:9a:3b:
b3:25:09:de:49:33:d7:95:6e:64:bc:23:57:5b:aa:62:40:25:
53:71:33:2f:16:ce:25:98:9c:06:f8:96:dd:16:74:24:fb:e1:
cf:bc:07:5b:d6:ed:e8:0b:7e:76:e5:f8:68:49:f5:f6:0c:36:
32:6b:fa:c2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jul 1 13:13:52 2025 by rpki-client