Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a5tdFBgYlY1zBFgvJU6hddhD4_0.cer
File: a5tdFBgYlY1zBFgvJU6hddhD4_0.cer (raw, json)
Hash identifier: s/2bfyjArsJEoT6NglUNvPjmgxwXcO0qqKWFd5nDlcQ=
Subject key identifier: 6B:9B:5D:14:18:18:95:8D:73:04:58:2F:25:4E:A1:75:D8:43:E3:FD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0246B0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/a5tdFBgYlY1zBFgvJU6hddhD4_0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 May 2025 13:49:26 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 136029
IP: 103.149.23.0/24
IP: 2001:df3:a80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149168 (0x246b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 16 13:49:26 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91359CD, serialNumber=6B9B5D141818958D7304582F254EA175D843E3FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6f:ca:aa:be:eb:52:59:6e:20:a1:51:ad:07:
58:ad:59:18:30:27:ef:e0:04:00:0e:fe:ac:64:75:
13:03:fd:38:74:9a:d4:c8:ce:f3:2f:1f:7a:b0:bb:
56:05:b9:cb:50:a0:1e:15:58:59:ff:e7:4f:bf:d2:
d9:4e:6a:02:c6:b4:17:54:10:84:87:78:1d:c7:7c:
c6:f9:02:ea:26:46:8c:32:bb:84:12:9f:7c:9b:a5:
57:38:41:5f:fc:62:7c:28:2c:c4:db:79:df:f5:04:
ca:9b:5a:72:45:64:4d:dd:52:28:5d:09:07:fb:4e:
92:93:79:67:16:48:38:64:a5:89:9c:be:b0:6b:8d:
a9:da:e8:27:72:c3:24:9f:50:23:5e:e0:59:f0:ba:
4a:c0:14:9e:9c:0b:d3:f2:da:cb:5d:15:53:d3:42:
94:c0:80:f4:78:2a:ca:28:95:0f:34:30:d5:e9:8e:
2a:d3:8a:f0:44:cd:5f:23:df:15:e3:25:04:9a:ee:
75:7d:e0:19:ea:58:b1:97:7f:e7:21:82:3d:2f:84:
6e:40:ea:ad:2e:df:1b:2b:31:d2:10:a5:8a:c0:bc:
2b:6a:65:0b:c6:0b:30:6a:ca:3c:f6:af:85:87:60:
b2:9d:e4:ce:73:67:85:5c:b7:ce:58:36:0b:e5:d4:
f6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:9B:5D:14:18:18:95:8D:73:04:58:2F:25:4E:A1:75:D8:43:E3:FD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/a5tdFBgYlY1zBFgvJU6hddhD4_0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136029
sbgp-ipAddrBlock: critical
IPv4:
103.149.23.0/24
IPv6:
2001:df3:a80::/48
Signature Algorithm: sha256WithRSAEncryption
ba:b9:0f:46:4e:80:cf:17:0f:af:08:19:2a:06:70:22:f0:81:
b7:89:2d:dd:89:a3:45:29:05:3a:30:bd:5f:83:e6:10:be:85:
77:a2:cb:5c:35:21:da:95:56:cf:92:6b:d9:a3:3a:58:0a:b5:
5b:55:5b:a1:ab:67:ff:19:11:d7:1e:94:cb:2a:24:bc:43:3d:
48:fb:73:89:f7:f9:95:75:ce:bf:08:80:6c:a3:48:02:a0:88:
8a:8d:cf:db:17:cf:e3:5a:1f:3f:c0:6c:b0:35:b4:d8:9e:4b:
0c:a5:ba:47:8b:6d:1c:18:2a:6f:72:b9:62:aa:e8:8e:e7:f4:
d4:5d:dc:3d:22:c4:5a:e5:b7:9a:8f:f1:2f:35:66:9d:65:26:
98:d0:4d:3c:72:be:e9:ff:d0:8f:2f:7f:77:62:b6:d5:5f:41:
69:64:b2:8d:53:f8:4a:79:1c:b0:16:9e:59:7f:13:c0:6b:b2:
4f:9f:2a:83:53:4a:c1:03:3e:b0:da:b4:54:d6:62:22:b4:44:
80:e0:21:14:e0:69:06:78:0d:f9:df:6b:8f:5b:8c:2a:e4:2c:
e8:5a:f8:4f:17:a2:bf:3b:e6:2e:26:13:62:a3:60:ff:7f:8b:
57:e3:dd:46:59:24:0f:24:6c:af:7a:e0:28:cb:e0:df:e6:bc:
95:42:dc:e0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 09:20:38 2025 by rpki-client