Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8ItMPMZzWXbXj9v_F0UHNAWaII.cer
File: b8ItMPMZzWXbXj9v_F0UHNAWaII.cer (raw, json)
Hash identifier: HlKsOd1vCx5xRvR8wPbyhJZEohn9b6gqHTF9R0q75zg=
Subject key identifier: 6F:C2:2D:30:F3:19:CD:65:DB:5E:3F:6F:FC:5D:14:1C:D0:16:68:82
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0247C1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A0916/040B87BA364A11F0804ADE5EC4F9AE02/b8ItMPMZzWXbXj9v_F0UHNAWaII.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A0916/040B87BA364A11F0804ADE5EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 May 2025 13:46:41 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 132119
IP: 163.61.104.0/24
IP: 2001:df5:12c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149441 (0x247c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 21 13:46:41 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91A0916, serialNumber=6FC22D30F319CD65DB5E3F6FFC5D141CD0166882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:24:31:89:14:b2:ca:f0:d7:a5:13:c9:b2:b3:
0d:a4:44:0c:44:07:e8:34:79:14:0d:ca:f8:71:3f:
9e:2d:bb:7c:e7:59:eb:c0:5e:75:51:16:3a:7a:db:
54:ae:ba:6c:b7:99:f9:bb:ee:f4:e3:e8:8f:1a:e3:
55:07:08:67:83:bd:f9:6e:fe:24:eb:ef:97:35:a4:
8f:81:37:eb:6f:ca:2d:1a:31:40:e3:8b:02:c1:4c:
bf:87:59:47:a9:2c:e0:89:18:fd:45:92:d7:5c:40:
9d:db:9a:59:6b:e9:68:d0:8a:44:97:9f:95:f4:d7:
c9:51:de:89:8d:1b:62:84:ee:0c:2a:d3:3a:ab:4a:
36:7a:51:75:75:d0:41:ee:9b:13:7d:aa:d5:8f:63:
be:81:75:50:97:24:0d:f3:de:de:e6:e2:44:6a:4e:
7d:43:19:90:ca:9b:8c:5f:d3:17:e1:b2:1e:ae:69:
34:8a:e9:ef:cc:b4:f5:b8:64:18:d8:5e:30:6b:87:
78:87:ae:ec:e7:e6:6d:00:b4:b5:d0:6f:fc:47:b8:
52:17:f7:10:54:a7:2a:fd:09:19:2a:e1:96:9f:08:
d2:47:76:43:dc:45:19:da:b8:d7:91:0c:9f:df:53:
f0:94:6b:b7:30:5a:90:08:f1:7f:ec:42:e7:bb:53:
30:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C2:2D:30:F3:19:CD:65:DB:5E:3F:6F:FC:5D:14:1C:D0:16:68:82
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A0916/040B87BA364A11F0804ADE5EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A0916/040B87BA364A11F0804ADE5EC4F9AE02/b8ItMPMZzWXbXj9v_F0UHNAWaII.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132119
sbgp-ipAddrBlock: critical
IPv4:
163.61.104.0/24
IPv6:
2001:df5:12c0::/48
Signature Algorithm: sha256WithRSAEncryption
09:0f:92:fd:09:8c:ca:3f:0f:1e:47:88:23:a8:c6:18:c0:89:
43:2f:5f:8f:4e:20:e4:2b:ce:72:99:93:b3:c1:26:e8:81:24:
56:a7:0f:a7:18:5a:7d:d7:0b:92:00:df:04:2e:6c:9c:25:de:
85:fd:63:58:27:14:94:bd:60:b1:64:fd:bc:7c:59:6b:ac:01:
3b:cd:33:e4:59:81:52:66:c2:e3:09:c1:36:1f:9a:f1:46:1e:
ae:f2:a1:4a:b1:f5:4b:d4:2c:2c:de:96:f1:e2:7d:3b:81:d5:
e3:32:e2:2f:33:f7:2a:7b:1a:85:dd:98:54:24:3c:2a:62:ae:
5f:db:74:f0:d9:df:1d:05:d7:97:a6:db:6a:98:16:21:06:16:
74:12:48:a3:aa:76:ff:0e:52:6e:ac:d6:ec:e4:bd:6a:c0:8f:
05:0c:b4:0e:de:b4:a5:13:8a:10:a5:e3:84:0d:dc:c3:1b:26:
f1:ff:d2:1f:fe:fa:ca:a6:7d:a3:ae:1a:ea:47:99:f4:54:61:
5b:46:0b:94:2e:49:b5:64:ec:4e:b3:04:a5:28:1f:3f:88:49:
e2:cc:e6:13:d6:b6:d4:34:2a:f4:87:d6:fb:31:9b:cc:fe:98:
10:b0:71:3f:f6:b4:0d:e5:e0:0a:b8:fa:ca:3a:9a:73:96:cd:
ca:19:6c:dc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 08:41:58 2025 by rpki-client