Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8BwFxdufsG_l34xFvWB9RFNA2A.cer
File: c8BwFxdufsG_l34xFvWB9RFNA2A.cer (raw, json)
Hash identifier: zhm0JIuriXWu9t4TYqjTI1Km7lZS6duhzjDK3Jeycio=
Subject key identifier: 73:C0:70:17:17:6E:7E:C1:BF:97:7E:31:16:F5:81:F5:11:4D:03:60
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024838
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B9101/77288822EDC911EDA7301F7FC4F9AE02/c8BwFxdufsG_l34xFvWB9RFNA2A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B9101/77288822EDC911EDA7301F7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 23 May 2025 02:48:20 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 151214
IP: 103.133.246.0/23
IP: 2001:df2:62c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149560 (0x24838)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 23 02:48:20 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A91B9101, serialNumber=73C07017176E7EC1BF977E3116F581F5114D0360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3b:12:ec:75:f9:17:5f:69:fd:4c:12:1b:a4:
6f:ad:96:6d:01:63:f9:87:b7:97:4c:51:d2:63:79:
b0:33:6c:fc:d9:51:cd:d6:24:04:5d:2f:0c:e1:59:
cb:a5:8b:67:bd:a5:fd:c0:9b:48:93:82:d0:e3:39:
f3:c1:e1:2b:4f:a8:00:7f:46:33:92:8a:cc:ad:9a:
36:3e:f7:62:92:05:a0:b0:7a:9a:d4:f0:15:98:ae:
0d:80:af:dd:6c:0f:fd:f4:6e:26:89:52:30:fc:84:
ac:05:50:ed:4c:63:e4:0c:c4:31:b4:3a:c0:7f:c6:
1c:81:05:7d:21:35:94:90:25:d0:96:68:14:f9:ff:
36:86:a9:70:23:71:11:4a:dc:4c:de:d1:25:6c:29:
fd:0d:67:c6:50:19:69:16:0c:7b:a1:92:07:d6:b9:
09:b8:e8:b3:5b:26:c6:3d:aa:88:76:46:5f:58:ae:
10:e5:07:02:4a:29:ce:01:db:05:62:56:bd:1e:08:
86:45:6c:96:ce:45:3c:11:a5:1c:f2:c1:60:7b:b4:
31:b9:f8:8f:3c:ee:52:65:30:45:1f:b4:da:e7:e0:
32:87:51:f8:15:1a:74:78:4a:50:25:04:cf:7d:58:
35:a7:7c:20:a7:ce:33:6c:87:62:c2:da:f6:86:6c:
24:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C0:70:17:17:6E:7E:C1:BF:97:7E:31:16:F5:81:F5:11:4D:03:60
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B9101/77288822EDC911EDA7301F7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B9101/77288822EDC911EDA7301F7FC4F9AE02/c8BwFxdufsG_l34xFvWB9RFNA2A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151214
sbgp-ipAddrBlock: critical
IPv4:
103.133.246.0/23
IPv6:
2001:df2:62c0::/48
Signature Algorithm: sha256WithRSAEncryption
c0:c3:b0:81:97:4c:40:cd:9e:24:df:c4:cd:b3:83:60:dd:b4:
0f:e0:0d:c8:c9:4d:7e:e0:55:81:ec:fd:f8:22:d5:f5:34:e5:
7a:99:34:3e:67:14:66:3e:95:37:59:1c:1f:f6:b9:0d:b1:cc:
78:dc:d9:e4:25:88:8f:4c:55:3f:e3:98:31:11:b3:0c:e0:59:
c1:ab:2c:38:4a:72:34:89:a5:0f:a8:c3:dc:4d:44:f2:a7:f8:
3e:21:0c:43:1f:d0:ee:2c:e0:6b:4e:0b:90:b9:98:6a:fc:30:
b5:db:fe:35:54:a6:71:f5:76:eb:2e:5c:81:49:19:9b:83:5d:
fe:79:76:8a:9b:52:f4:e2:15:8f:81:d9:a1:e3:77:51:57:4f:
ea:50:9f:ed:9e:0c:f0:5c:68:ee:83:0d:57:58:27:ea:6b:79:
6d:59:7b:08:c8:b8:44:e6:21:18:a5:28:b4:b5:7d:bb:0b:e5:
e9:6e:f3:b2:b0:22:e9:e0:0c:bb:c2:80:49:98:aa:de:a6:39:
0d:8f:fb:d2:e0:57:eb:a5:4d:87:7b:66:88:bc:24:93:7e:7d:
93:ce:91:f2:a7:dc:94:f7:f1:de:62:55:eb:d9:19:bd:5a:4a:
71:9e:38:91:bc:0f:bf:7c:c2:94:a0:96:b0:3d:fd:e9:88:10:
9f:73:11:60
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 09:31:16 2025 by rpki-client