Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer
File: a6pcUguOS_VkxLv0bh8xa9RfoDc.cer (raw, json)
Hash identifier: xUMReJuiGfG7WEalG1ho8/07tSJovs50PBDUyQ1U89M=
Subject key identifier: 6B:AA:5C:52:0B:8E:4B:F5:64:C4:BB:F4:6E:1F:31:6B:D4:5F:A0:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024596
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 12 May 2025 13:26:45 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 56294
IP: 43.243.0.0/22
IP: 103.4.60.0/22
IP: 2401:2280::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 07 Jun 2025 14:18:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148886 (0x24596)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 12 13:26:45 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9144463, serialNumber=6BAA5C520B8E4BF564C4BBF46E1F316BD45FA037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e6:68:cb:6f:7b:c7:e8:d9:30:b0:99:30:56:
1b:2c:5f:f7:8b:72:8c:c9:cf:c8:74:70:be:40:ac:
8c:73:c8:57:3b:e9:82:37:c0:a9:05:06:86:de:fe:
82:a8:b5:0b:8b:d9:aa:19:9d:9e:7b:b3:dc:14:97:
85:1f:0a:4f:8d:a4:2d:8b:9f:25:86:86:49:05:66:
53:48:58:a5:96:f1:fe:61:43:8e:74:23:a5:2a:77:
7c:61:ed:23:b0:a5:6f:e9:5e:a4:ff:f8:64:65:7c:
79:ee:0d:02:48:62:79:3e:1a:72:78:4c:84:5e:de:
50:40:d5:bb:12:2b:dc:b7:dd:5d:9b:82:89:c2:0a:
0f:dc:80:e3:9e:82:ea:be:b3:e5:b0:36:06:31:4f:
9b:a9:a1:c4:72:18:22:cc:36:31:90:52:74:a6:e3:
fd:3b:56:d7:39:5f:4b:a8:0f:34:22:e6:42:d0:f2:
32:c6:b5:09:54:4d:98:4e:18:b9:c2:f4:73:9c:50:
db:b5:9e:42:94:8a:4f:08:f9:10:21:10:b6:0c:1f:
e1:24:8d:3b:4b:3d:16:a4:b3:7b:47:da:a9:fb:ea:
6b:34:97:48:0c:ce:9e:65:0c:ac:55:a8:76:00:66:
f1:69:2a:da:66:bb:b8:57:5e:6d:b1:8e:81:d8:84:
42:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:AA:5C:52:0B:8E:4B:F5:64:C4:BB:F4:6E:1F:31:6B:D4:5F:A0:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56294
sbgp-ipAddrBlock: critical
IPv4:
43.243.0.0/22
103.4.60.0/22
IPv6:
2401:2280::/32
Signature Algorithm: sha256WithRSAEncryption
63:3a:1c:e1:fa:81:85:12:2b:be:83:7d:be:cf:2b:d9:9f:ca:
4a:c0:93:9f:f4:f2:0c:56:aa:c7:19:cf:b4:9b:0d:3d:41:cc:
91:6e:38:f1:a2:9f:55:ca:47:51:4d:b0:7c:7b:c6:4e:1c:1c:
ae:2a:9d:91:de:0a:89:84:20:0c:f5:98:be:a0:8c:d5:bd:39:
4f:59:50:5b:55:11:1b:67:b2:cf:0a:98:79:0a:de:e0:f4:72:
45:9a:7f:54:4b:ea:4b:12:fd:8d:47:9f:eb:8c:8c:de:1a:eb:
e9:dc:d0:d6:86:9a:5f:1c:4a:ec:b3:f9:45:f3:2e:b2:5b:e5:
75:e4:21:ee:44:b4:1b:30:83:fe:79:1f:3e:c2:80:ae:ec:27:
8e:f7:31:7e:64:90:bc:d2:43:2c:4c:3b:2f:c3:4f:04:c9:6f:
a2:75:5d:94:2f:a4:46:bf:02:58:d0:b7:47:ec:fc:e9:6b:7b:
7f:ee:99:09:2b:b1:15:1f:91:d3:ad:b3:3c:8c:c6:10:30:4d:
59:0e:65:61:36:5a:2c:82:17:4d:de:8c:4e:4b:da:a9:8b:32:
f6:cb:a9:c5:c6:36:0d:4c:3d:ae:b3:e1:2a:03:31:15:25:b1:
a7:3e:26:39:c0:d2:94:6a:79:72:90:05:8c:a3:8e:b7:4c:fe:
37:27:5f:0a
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDAkWWMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDUxMjEzMjY0NVoXDTI2MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNDQ0NjMxMTAvBgNVBAUTKDZCQUE1QzUyMEI4RTRCRjU2NEM0QkJG
NDZFMUYzMTZCRDQ1RkEwMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC15mjLb3vH6NkwsJkwVhssX/eLcozJz8h0cL5ArIxzyFc76YI3wKkFBobe/oKo
tQuL2aoZnZ57s9wUl4UfCk+NpC2LnyWGhkkFZlNIWKWW8f5hQ450I6Uqd3xh7SOw
pW/pXqT/+GRlfHnuDQJIYnk+GnJ4TIRe3lBA1bsSK9y33V2bgonCCg/cgOOeguq+
s+WwNgYxT5upocRyGCLMNjGQUnSm4/07Vtc5X0uoDzQi5kLQ8jLGtQlUTZhOGLnC
9HOcUNu1nkKUik8I+RAhELYMH+EkjTtLPRaks3tH2qn76ms0l0gMzp5lDKxVqHYA
ZvFpKtpmu7hXXm2xjoHYhEKvAgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQUa6pcUguO
S/VkxLv0bh8xa9RfoDcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQ0NDYzLzhCRjVBNUQ0MTEzNjExRUQ4RjBBQjcxMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0NDQ2My84QkY1QTVENDExMzYxMUVEOEYwQUI3MTJDNEY5QUUwMi9hNnBjVWd1
T1NfVmt4THYwYmg4eGE5UmZvRGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDANvmMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCK/MAAwQCZwQ8
MA0EAgACMAcDBQAkASKAMA0GCSqGSIb3DQEBCwUAA4IBAQBjOhzh+oGFEiu+g32+
zyvZn8pKwJOf9PIMVqrHGc+0mw09QcyRbjjxop9VykdRTbB8e8ZOHByuKp2R3gqJ
hCAM9Zi+oIzVvTlPWVBbVREbZ7LPCph5Ct7g9HJFmn9US+pLEv2NR5/rjIzeGuvp
3NDWhppfHErss/lF8y6yW+V15CHuRLQbMIP+eR8+woCu7CeO9zF+ZJC80kMsTDsv
w08EyW+idV2UL6RGvwJY0LdH7Pzpa3t/7pkJK7EVH5HTrbM8jMYQME1ZDmVhNlos
ghdN3oxOS9qpizL2y6nFxjYNTD2us+EqAzEVJbGnPiY5wNKUanlykAWMo463TP43
J18K
-----END CERTIFICATE-----
Generated at Sat May 31 16:28:40 2025 by rpki-client