Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer
File: cHDFVlzC_kVsMWBAi25_toDAjBk.cer (raw, json)
Hash identifier: Qe7jUdu2FurstG7GjFci0BheSoP8YlL+z0IfHFPkH/E=
Subject key identifier: 70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026366
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Sep 2025 15:25:44 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 134447
IP: 103.104.87.0/24
IP: 103.104.96.0/23
IP: 103.193.18.0/24
IP: 203.109.40.0/22
IP: 2401:f8c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 16 Sep 2025 05:04:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156518 (0x26366)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 4 15:25:44 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A915B77C, serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:08:6b:2a:8a:89:62:35:81:d1:ab:0b:ad:49:
0a:9a:ab:0f:0b:41:c9:94:45:6d:3d:11:14:8d:d5:
21:4d:f8:54:68:a9:51:11:83:05:13:fb:08:bb:58:
21:06:51:72:35:b8:44:89:00:83:10:2b:94:4c:20:
31:1d:f5:f4:59:4e:bd:e1:a4:bb:00:4c:31:79:22:
b2:7a:c0:04:b0:fe:64:33:8c:e9:ce:47:93:d5:46:
5a:97:5c:cd:0b:37:82:04:48:a4:1a:69:86:cb:85:
f4:48:01:ed:a2:c1:2f:59:80:73:d3:48:f8:8a:6a:
82:af:8d:61:fe:97:37:53:c1:75:ac:c4:e1:36:29:
cc:04:46:a0:15:54:8a:eb:8f:a7:ad:a2:40:76:7a:
9e:c9:62:9d:1b:a2:f0:80:da:9c:08:4a:1e:89:75:
49:2b:aa:51:ab:69:60:82:d8:0e:7b:b7:a3:19:b9:
c1:8d:07:51:8c:e5:74:97:e8:8b:32:17:c8:f9:d2:
4f:93:2c:e1:93:c5:95:c3:0b:af:4a:36:6b:7f:9a:
b9:64:6b:81:8a:21:01:78:89:22:49:77:e5:f8:53:
c2:be:b1:2c:2d:0a:5c:cd:ba:8e:11:bd:34:ce:ed:
69:9a:00:28:f2:62:b5:b5:16:f3:d4:64:2e:02:ec:
07:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134447
sbgp-ipAddrBlock: critical
IPv4:
103.104.87.0/24
103.104.96.0/23
103.193.18.0/24
203.109.40.0/22
IPv6:
2401:f8c0::/32
Signature Algorithm: sha256WithRSAEncryption
78:ea:06:5b:2a:a4:93:16:17:13:d2:31:c9:a5:b6:27:46:45:
8b:08:3e:47:19:b9:cc:13:aa:9b:e9:74:2c:fa:28:2b:8d:17:
c0:13:d4:0d:e2:39:3d:23:ec:d7:ad:06:0b:3e:5b:e1:7f:8b:
1d:fa:5b:39:c1:7b:c2:e5:54:96:d5:53:da:70:0f:7d:4f:97:
64:cd:c0:0f:3c:f6:f6:3a:23:ab:89:35:fd:21:58:8a:1a:13:
de:ea:84:12:4e:75:5f:99:2b:51:1f:ad:d4:8b:8e:a0:b2:99:
db:f7:85:61:e9:d6:d7:dc:b7:72:68:32:b0:ec:26:4e:d4:91:
31:8a:89:75:fa:d5:99:e3:48:38:91:58:13:19:25:5c:e2:35:
94:b4:44:d0:34:c5:4e:6b:43:7b:b8:c1:3d:4d:58:66:43:9d:
b9:37:0d:ad:d4:41:95:e4:84:00:52:19:2b:19:df:b5:63:f8:
1a:9c:e2:7f:4e:5b:3e:36:34:7b:94:d0:c8:fe:37:aa:94:02:
f0:ac:58:3d:f3:10:8a:2d:80:2a:d8:3e:94:8c:9d:1e:31:8e:
1d:36:b3:73:e0:cc:68:5f:b8:50:b6:25:87:7f:6e:fb:6f:6c:
8c:5c:2a:cd:bc:cc:4b:83:3b:1e:d7:c2:3b:a0:04:43:2d:bb:
28:7a:fb:36
-----BEGIN CERTIFICATE-----
MIIGOzCCBSOgAwIBAgIDAmNmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDkwNDE1MjU0NFoXDTI2MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUI3N0MxMTAvBgNVBAUTKDcwNzBDNTU2NUNDMkZFNDU2QzMxNjA0
MDhCNkU3RkI2ODBDMDhDMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCfCGsqioliNYHRqwutSQqaqw8LQcmURW09ERSN1SFN+FRoqVERgwUT+wi7WCEG
UXI1uESJAIMQK5RMIDEd9fRZTr3hpLsATDF5IrJ6wASw/mQzjOnOR5PVRlqXXM0L
N4IESKQaaYbLhfRIAe2iwS9ZgHPTSPiKaoKvjWH+lzdTwXWsxOE2KcwERqAVVIrr
j6etokB2ep7JYp0bovCA2pwISh6JdUkrqlGraWCC2A57t6MZucGNB1GM5XSX6Isy
F8j50k+TLOGTxZXDC69KNmt/mrlka4GKIQF4iSJJd+X4U8K+sSwtClzNuo4RvTTO
7WmaACjyYrW1FvPUZC4C7AcFAgMBAAGjggMwMIIDLDAdBgNVHQ4EFgQUcHDFVlzC
/kVsMWBAi25/toDAjBkwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVCNzdDLzI4MTRGNzdBNjlCNTExRUFCQTYwMTc1MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1Qjc3Qy8yODE0Rjc3QTY5QjUxMUVBQkE2MDE3NTJDNEY5QUUwMi9jSERGVmx6
Q19rVnNNV0JBaTI1X3RvREFqQmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg0vMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQAZ2hXAwQBZ2hg
AwQAZ8ESAwQCy20oMA0EAgACMAcDBQAkAfjAMA0GCSqGSIb3DQEBCwUAA4IBAQB4
6gZbKqSTFhcT0jHJpbYnRkWLCD5HGbnME6qb6XQs+igrjRfAE9QN4jk9I+zXrQYL
Plvhf4sd+ls5wXvC5VSW1VPacA99T5dkzcAPPPb2OiOriTX9IViKGhPe6oQSTnVf
mStRH63Ui46gspnb94Vh6dbX3LdyaDKw7CZO1JExiol1+tWZ40g4kVgTGSVc4jWU
tETQNMVOa0N7uME9TVhmQ525Nw2t1EGV5IQAUhkrGd+1Y/ganOJ/Tls+NjR7lNDI
/jeqlALwrFg98xCKLYAq2D6UjJ0eMY4dNrNz4MxoX7hQtiWHf277b2yMXCrNvMxL
gzse18I7oARDLbsoevs2
-----END CERTIFICATE-----
Generated at Tue Sep 9 06:35:15 2025 by rpki-client