Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bUron6l6cWotkmYf8s9b08zcKfw.cer
File: bUron6l6cWotkmYf8s9b08zcKfw.cer (raw, json)
Hash identifier: BXHC5ozS2jAAcMoac6oPzBoMW+OlUjTUcUf6U+Er7Rw=
Subject key identifier: 6D:4A:E8:9F:A9:7A:71:6A:2D:92:66:1F:F2:CF:5B:D3:CC:DC:29:FC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026F7B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91778C2/ED2BBC70F88711E7921F8668C4F9AE02/bUron6l6cWotkmYf8s9b08zcKfw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91778C2/ED2BBC70F88711E7921F8668C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 27 Oct 2025 15:22:08 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 132817
IP: 43.242.0.0/22
IP: 45.249.104.0/22
IP: 45.252.56.0/22
IP: 59.152.84.0/22
IP: 103.66.64.0/22
IP: 103.69.156.0/22
IP: 103.73.52.0/22
IP: 103.74.132.0/22
IP: 103.74.176.0/22
IP: 103.75.220.0/22
IP: 103.76.236.0/22
IP: 103.211.144.0/22
IP: 103.214.92.0/22
IP: 103.221.56.0/22
IP: 103.228.224.0/22
IP: 116.206.48.0/22
IP: 119.42.36.0/22
IP: 144.48.96.0/22
IP: 160.238.16.0/22
IP: 192.144.88.0/22
IP: 2402:54c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 16:50:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159611 (0x26f7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 27 15:22:08 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91778C2, serialNumber=6D4AE89FA97A716A2D92661FF2CF5BD3CCDC29FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6c:d0:46:77:3a:5c:59:1d:8c:8e:6b:09:8f:
06:bb:31:b9:93:f0:c3:23:b0:c5:b1:f7:72:40:2b:
97:bd:3a:08:1c:48:a8:b1:ec:05:dc:1d:73:a2:cc:
78:5c:f2:47:e3:a8:d8:89:33:3c:81:7a:93:8d:08:
ba:2b:2b:94:31:58:25:49:68:8a:07:0b:bf:80:3b:
45:12:f0:85:d2:bb:16:64:65:03:de:1c:97:66:7c:
61:c1:e1:66:43:ab:4b:1f:87:f2:72:c1:2e:2c:bb:
71:56:33:3f:47:51:e1:eb:9a:94:7c:3f:a0:2c:c6:
87:bb:ed:94:17:cd:eb:3c:8c:3c:95:37:2b:fb:cd:
be:62:c9:5d:a1:ea:7a:a2:8e:30:8a:04:04:4a:9c:
7c:12:33:12:e0:91:3c:b2:fd:18:e0:7f:97:61:71:
ad:cc:61:c7:3e:08:7a:f0:ff:21:60:73:30:6e:10:
22:87:b2:28:1f:15:fb:11:d4:6f:b5:cf:f9:98:79:
c7:22:4a:4b:18:70:1a:37:9f:3d:68:47:73:c3:78:
f8:45:a4:4c:97:b5:05:15:d3:c7:b2:22:3b:ec:d0:
a2:94:aa:a9:29:3e:a6:4c:0b:f2:5b:d5:65:7e:42:
b1:13:de:02:0b:d5:fd:14:a0:9e:70:6c:a2:22:7a:
84:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:4A:E8:9F:A9:7A:71:6A:2D:92:66:1F:F2:CF:5B:D3:CC:DC:29:FC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91778C2/ED2BBC70F88711E7921F8668C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91778C2/ED2BBC70F88711E7921F8668C4F9AE02/bUron6l6cWotkmYf8s9b08zcKfw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132817
sbgp-ipAddrBlock: critical
IPv4:
43.242.0.0/22
45.249.104.0/22
45.252.56.0/22
59.152.84.0/22
103.66.64.0/22
103.69.156.0/22
103.73.52.0/22
103.74.132.0/22
103.74.176.0/22
103.75.220.0/22
103.76.236.0/22
103.211.144.0/22
103.214.92.0/22
103.221.56.0/22
103.228.224.0/22
116.206.48.0/22
119.42.36.0/22
144.48.96.0/22
160.238.16.0/22
192.144.88.0/22
IPv6:
2402:54c0::/32
Signature Algorithm: sha256WithRSAEncryption
04:ce:62:f0:2f:a8:96:ce:c9:23:d1:16:84:93:a6:0d:4b:26:
08:bb:03:e5:c9:cb:2c:df:fb:8b:8e:bb:5f:08:33:f1:5b:01:
4e:f0:5a:c6:2d:5d:1c:fc:f1:a9:40:6f:11:72:85:28:60:ae:
8e:c2:5e:54:1e:c8:be:cb:1c:d0:49:c1:67:c8:0c:58:1b:04:
54:ba:06:47:16:f6:cd:4a:c8:96:28:41:9f:14:70:8f:43:6c:
2e:8e:bb:de:87:d5:a9:7e:0b:6a:78:b3:9a:04:a4:6e:62:ea:
75:f6:0b:62:06:2e:2c:62:b7:7c:ad:67:02:af:5d:5d:1c:ad:
27:a7:90:4d:c0:eb:fc:af:72:33:7a:51:1e:d6:58:86:75:04:
8d:27:a9:71:e6:9c:cb:ec:20:19:36:aa:c2:75:67:3d:bb:95:
2f:d0:d1:8a:82:0f:92:8d:50:64:45:b8:8c:30:b9:12:0f:77:
b2:2c:1f:18:9a:8f:57:45:af:cf:0f:c4:79:8e:f2:ef:a6:3a:
ec:c5:2a:fa:b4:49:3f:07:7c:1a:c7:0d:2e:bb:d1:f5:76:8f:
d4:c5:29:30:29:e6:85:b9:df:af:54:92:bd:6a:2f:0e:62:2b:
41:85:4c:96:a1:b0:5d:8c:71:ec:2a:55:19:cb:e2:e5:f3:2a:
8b:20:b3:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 18:02:35 2025 by rpki-client