Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cMi9ot54lZUFNllLrr8mKQ2boGU.cer
File: cMi9ot54lZUFNllLrr8mKQ2boGU.cer (raw, json)
Hash identifier: 48kLy6VCIZsu7h3fFwX7OMbxwBU2j7a9NK8DzQ347Xw=
Subject key identifier: 70:C8:BD:A2:DE:78:95:95:05:36:59:4B:AE:BF:26:29:0D:9B:A0:65
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0265D1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/cMi9ot54lZUFNllLrr8mKQ2boGU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 17 Sep 2025 03:52:22 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 151052
IP: 203.56.123.0/24
IP: 2001:df6:20c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Sep 2025 16:08:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157137 (0x265d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 17 03:52:22 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A915D10D, serialNumber=70C8BDA2DE7895950536594BAEBF26290D9BA065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c2:c0:e5:b2:14:d3:2a:e3:ca:72:a5:96:82:
04:3c:b5:ef:89:24:ed:65:a8:32:92:23:56:a0:90:
00:b2:3e:20:5d:3c:78:d5:4a:a8:93:15:a4:37:d7:
f2:28:9f:ec:f1:ac:fd:3b:16:50:56:bc:b5:24:e4:
88:52:85:99:c5:1d:f5:75:9c:c2:8f:6b:e4:a1:64:
ee:5d:57:a6:0a:47:b1:db:c1:00:50:c4:0f:f7:53:
b4:f5:17:ad:bc:da:5c:b5:11:a5:e4:e5:f0:12:04:
48:43:56:9f:6e:ff:57:57:69:eb:43:26:d2:96:c6:
cb:e8:26:99:1c:3a:cb:e4:a8:a9:17:1a:76:c9:af:
db:67:13:8f:21:fd:52:26:37:b4:ef:99:a4:6b:e4:
21:1a:8a:70:ad:e1:28:50:b0:30:ea:32:f8:df:4a:
86:5e:73:37:35:2e:48:e0:a4:c3:44:d5:dc:09:1b:
54:5c:02:d2:ee:7c:59:e8:03:d4:d0:94:27:db:d9:
75:66:27:d5:5a:42:03:e8:df:2b:e8:73:00:c6:45:
70:15:0f:3f:0d:cb:54:a5:4e:e9:97:8b:bb:a6:59:
d2:f4:82:59:75:40:7e:a0:aa:93:8a:be:aa:1c:42:
57:4f:0f:ee:48:de:dc:ae:ea:15:02:b0:5b:8d:f7:
cf:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C8:BD:A2:DE:78:95:95:05:36:59:4B:AE:BF:26:29:0D:9B:A0:65
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/cMi9ot54lZUFNllLrr8mKQ2boGU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151052
sbgp-ipAddrBlock: critical
IPv4:
203.56.123.0/24
IPv6:
2001:df6:20c0::/48
Signature Algorithm: sha256WithRSAEncryption
27:49:68:cb:45:a2:52:4b:28:05:ef:f3:82:e9:ae:de:28:d0:
ec:7c:42:04:57:eb:50:4e:3c:d0:41:f0:1e:e8:dc:a4:3b:09:
4d:34:f4:18:83:70:f5:8a:5d:89:88:cb:ce:16:73:c8:ff:fa:
75:d0:04:0e:88:dc:e1:4a:fc:c7:ae:22:08:12:57:d5:c6:5a:
7f:90:b2:6f:d7:e9:65:fd:ed:01:a8:c5:c4:57:54:7b:97:0b:
6e:23:d7:98:c5:d5:cd:60:ab:74:77:8b:4c:48:e2:40:a0:5d:
4b:95:17:b6:09:9f:f2:cb:a6:83:f6:21:f9:40:0b:4d:a0:8a:
07:35:09:08:df:76:7a:76:45:ae:3f:4a:8d:cc:ac:fe:0f:bc:
a0:a0:56:3c:2c:be:cd:02:08:17:a5:c4:cc:5e:61:24:e8:3d:
08:52:a7:a4:33:ce:b7:cf:6a:42:d7:09:1f:03:0d:41:71:06:
4e:ce:ec:63:1e:c1:3b:f9:78:6b:17:e6:e1:22:b4:b8:0e:a9:
73:ed:3e:19:9a:47:85:2a:bd:40:d9:aa:e1:f1:04:4f:c1:c6:
91:f3:a5:f9:ae:ae:d0:32:a5:60:bd:ca:7f:32:c8:f7:62:3c:
13:4b:a6:d1:da:2c:50:e8:d6:8d:0b:f8:60:9e:3a:cb:c8:4a:
cb:5d:d5:40
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Sep 18 17:32:05 2025 by rpki-client