Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFF5ywz4GJ4eIIHUtpWUhKPrNqg.cer
File: bFF5ywz4GJ4eIIHUtpWUhKPrNqg.cer (raw, json)
Hash identifier: 2s/wB3MElOCE779vqaoIadzMRGZfTa3nuQUfY3JoZ1s=
Subject key identifier: 6C:51:79:CB:0C:F8:18:9E:1E:20:81:D4:B6:95:94:84:A3:EB:36:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02469A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919F554/3F95A85231F311F0ABBAE669C4F9AE02/bFF5ywz4GJ4eIIHUtpWUhKPrNqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919F554/3F95A85231F311F0ABBAE669C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 May 2025 01:15:30 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 132899
IP: 45.116.130.0/24
IP: 103.27.180.0/22
IP: 2001:df6:2000::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 05:39:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149146 (0x2469a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 16 01:15:30 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A919F554, serialNumber=6C5179CB0CF8189E1E2081D4B6959484A3EB36A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9b:c2:86:bc:1e:10:99:0d:d0:e8:9c:cd:1d:
b6:af:f5:69:ae:c1:a2:0f:21:de:40:44:fe:4c:e2:
89:00:9f:c7:82:58:b8:64:02:83:cc:c9:42:b1:f9:
e8:b1:45:18:9d:b8:90:d9:ff:b3:7c:36:e1:a4:95:
b8:89:4f:3a:bb:de:e6:66:e7:a6:95:e2:75:79:e1:
24:23:20:90:b8:be:f9:33:92:7e:ee:1d:d2:be:70:
a5:f6:ac:74:5a:14:0d:be:88:c2:69:51:59:4a:b1:
6c:23:0e:ec:97:05:cd:d3:73:8b:0f:2e:78:4f:19:
03:e9:d9:73:c3:fd:2a:b4:bb:01:88:7b:41:68:0a:
9a:9a:51:f3:71:44:0c:7f:68:0f:eb:77:29:da:36:
97:b7:87:47:eb:00:9d:25:90:0a:6e:f9:ca:bf:86:
65:7d:cf:e3:60:27:ef:e2:a5:e7:2c:ba:62:51:38:
1e:f5:1c:98:5c:4f:be:c9:cb:d2:b6:50:69:11:1f:
36:c7:8f:c9:1c:fa:ca:bd:0f:96:1d:15:00:a6:cd:
76:3c:ab:65:e8:44:1c:8d:e5:b8:59:d5:b7:3d:16:
f6:11:89:71:79:c9:87:60:e0:68:c3:f1:49:3d:29:
2b:92:1e:26:49:cf:47:86:a5:f7:95:4d:27:4d:05:
8a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:51:79:CB:0C:F8:18:9E:1E:20:81:D4:B6:95:94:84:A3:EB:36:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919F554/3F95A85231F311F0ABBAE669C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919F554/3F95A85231F311F0ABBAE669C4F9AE02/bFF5ywz4GJ4eIIHUtpWUhKPrNqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132899
sbgp-ipAddrBlock: critical
IPv4:
45.116.130.0/24
103.27.180.0/22
IPv6:
2001:df6:2000::/47
Signature Algorithm: sha256WithRSAEncryption
43:c9:03:e9:42:b6:69:1c:70:5f:13:86:b2:7d:1a:64:a3:08:
be:cc:e8:97:b9:61:26:57:e5:dd:e1:39:7a:a9:2d:fc:40:ee:
9e:8b:a2:ce:8a:a2:45:37:54:0d:9e:74:a2:61:b7:fd:75:43:
e8:04:95:d0:7b:cd:6c:5e:d3:cb:ff:f9:2f:c0:cb:ec:88:60:
7f:34:74:f1:be:2e:30:0f:2b:98:7a:b6:21:94:51:ff:31:69:
20:0f:e1:5a:0a:f4:96:c6:32:f8:ff:73:82:11:97:38:df:71:
50:70:b5:32:3c:14:c4:f9:dc:04:54:b3:9c:ce:22:e3:d6:42:
3b:4c:1e:60:8f:19:6d:cf:8d:e9:66:b6:34:14:76:9f:77:d9:
2e:81:07:8c:a8:ab:7c:64:b8:93:63:e7:f5:a7:5d:e5:c6:b2:
ab:c3:fd:16:50:8d:f7:bc:00:15:43:b4:b1:c8:4c:81:ff:7a:
86:5d:4d:62:75:6f:e5:ce:5f:1f:9d:fd:66:8a:bf:4b:ed:ca:
cc:a8:2a:1a:1c:78:1c:d9:4b:e7:75:ec:3a:5a:2d:46:b4:9f:
77:01:ee:1b:08:f8:c6:08:a3:d4:a9:4c:88:1d:df:a5:d3:b6:
dd:e2:a9:a7:e0:9e:8a:c3:78:41:c6:95:93:28:d3:6e:1b:d3:
89:bf:4e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 08:19:06 2025 by rpki-client