Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bWlDJ6eLD158LQx0Y3dIHe3doAI.cer
File: bWlDJ6eLD158LQx0Y3dIHe3doAI.cer (raw, json)
Hash identifier: IC4qKngTgsBZFon1BZCAheYCvq8M6G6w6XQz8O6Yf0o=
Subject key identifier: 6D:69:43:27:A7:8B:0F:5E:7C:2D:0C:74:63:77:48:1D:ED:DD:A0:02
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024869
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/bWlDJ6eLD158LQx0Y3dIHe3doAI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 24 May 2025 15:06:00 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 151184
IP: 103.131.58.0/23
IP: 2001:df2:4140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Jun 2025 04:09:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149609 (0x24869)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 24 15:06:00 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A9186392, serialNumber=6D694327A78B0F5E7C2D0C746377481DEDDDA002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:34:52:32:fb:95:46:8a:32:23:15:fa:28:c4:
16:63:dc:b0:f7:64:ee:5e:12:9b:09:d0:ab:a2:72:
05:cf:20:f1:91:fd:13:4a:ac:30:12:00:ca:06:5d:
65:1b:ba:49:46:7a:ec:98:79:a8:b4:68:14:1d:f7:
51:d5:be:8b:22:22:bc:62:df:ac:77:28:cf:59:33:
50:66:37:e4:c0:74:55:db:ea:97:cc:b2:10:62:7a:
be:67:f2:18:70:35:39:79:40:ba:9f:07:65:fe:92:
8c:79:6a:c2:a1:ad:04:d4:1b:e7:20:ae:8e:07:4b:
27:3f:54:c4:b5:2b:3f:36:c3:a7:39:b0:3c:b2:1e:
f6:9d:2f:c1:6a:be:bd:52:a7:11:31:af:4e:70:dc:
b8:6f:2f:98:4c:0a:54:c0:51:92:3b:02:64:71:5c:
9a:06:27:d5:81:9a:67:b7:a6:cc:df:2f:32:20:8d:
fc:12:84:49:12:55:6d:a3:ad:50:a4:63:02:fb:66:
1f:a0:f0:ad:5e:84:c1:2b:70:0f:a2:bb:62:9a:64:
ae:3a:81:77:12:1b:c6:bc:29:57:25:0e:97:85:7b:
cc:f2:03:31:59:ff:7c:f5:90:dc:17:32:e5:12:07:
a5:16:fe:e7:66:19:c8:05:cf:b7:af:3c:55:52:93:
92:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:69:43:27:A7:8B:0F:5E:7C:2D:0C:74:63:77:48:1D:ED:DD:A0:02
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/bWlDJ6eLD158LQx0Y3dIHe3doAI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151184
sbgp-ipAddrBlock: critical
IPv4:
103.131.58.0/23
IPv6:
2001:df2:4140::/48
Signature Algorithm: sha256WithRSAEncryption
06:b3:59:d1:90:95:7c:fc:d8:d2:69:9f:55:7f:35:92:1d:f5:
d1:d7:60:52:6c:ee:46:e6:5c:e3:ad:ff:ab:33:02:24:03:77:
be:f5:88:40:1f:e2:d8:d0:70:31:e6:82:e6:9b:1e:45:fd:51:
d8:47:44:dc:70:38:1c:0f:4b:56:92:67:fb:a4:bf:f3:b6:11:
e6:5d:ad:c6:1c:5e:3e:89:f5:83:69:91:ac:2c:3d:37:0e:ae:
f7:b4:ac:4f:07:29:e2:6a:ce:b5:1f:57:65:ed:6f:11:72:a3:
57:43:5c:93:5a:07:8e:f4:93:9f:81:e1:18:45:9e:33:79:a4:
f2:91:fc:30:a6:e9:bc:2f:14:16:b2:93:e7:88:2a:9f:da:07:
7f:b5:46:3d:0a:f6:7d:22:4a:2f:7b:62:3b:56:8d:cc:60:05:
d5:3f:73:d9:9c:b7:c9:4c:fb:4a:9e:0d:f9:d4:d8:6a:37:ca:
e0:6d:0d:bd:8b:2e:b5:00:f0:e1:e6:5e:0d:e1:96:db:86:55:
f6:16:4f:63:6b:79:20:e6:2c:25:b3:74:c1:b7:88:de:0b:bf:
77:f8:5d:6a:b1:23:01:c5:89:7b:33:bc:5f:51:94:bd:fc:38:
ac:b5:97:c1:90:5d:11:93:51:05:e5:33:32:80:8a:2a:0d:79:
a0:60:10:3b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:09:26 2025 by rpki-client