Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer
File: ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer (raw, json)
Hash identifier: LwVg3eLMzNcbbRl5e2jNGDTTVJM+wSZstGuY/tLxf5s=
Subject key identifier: 76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02464F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 May 2025 03:38:14 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139808
IP: 103.145.112.0/23
IP: 2001:df3:3180::/48
IP: 2402:aa0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Jun 2025 13:54:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149071 (0x2464f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 15 03:38:14 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A919DC79, serialNumber=76CD021E0C281DA5FE64D87803553808889A1167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c2:cb:27:b4:84:f1:c7:27:ff:8f:c2:b4:82:
a4:c4:50:69:c8:4d:ad:cc:64:f2:05:cf:48:66:5b:
08:2b:e1:28:b9:2d:3e:65:40:62:ba:cf:9a:80:e8:
af:af:d0:01:38:e9:f2:98:f3:89:c7:de:2f:f0:98:
db:44:93:f3:c4:c7:7c:2c:41:4b:34:fd:42:f3:9c:
cc:c5:06:c0:0a:a0:d4:14:56:0b:51:cf:67:00:f0:
4f:d5:0b:4f:24:2e:98:ca:ef:f0:d6:4d:e1:43:fc:
18:3d:9e:65:9b:32:d6:d8:d6:7d:59:0e:75:0c:6e:
13:30:1e:1e:fa:c3:6d:10:65:a8:9e:ad:28:e9:12:
df:88:78:f7:e9:0e:93:64:21:5a:9a:95:4e:44:d2:
c6:97:fd:91:b9:04:57:af:66:af:86:27:08:c2:28:
38:b0:ef:4f:95:95:4f:39:72:d7:84:6e:d9:ca:d5:
0c:ee:b5:16:90:9b:4c:0b:0d:47:af:9b:f5:a6:32:
4f:d5:32:12:62:c1:02:61:7d:2b:df:0f:3e:db:99:
b1:cb:8b:97:ed:96:e5:f7:50:ff:46:13:9a:60:1f:
1b:b1:b7:2c:e6:27:72:69:05:85:7a:e2:1e:95:49:
f0:59:8e:b4:5b:ec:14:5c:61:c5:b7:0c:de:01:76:
af:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139808
sbgp-ipAddrBlock: critical
IPv4:
103.145.112.0/23
IPv6:
2001:df3:3180::/48
2402:aa0::/32
Signature Algorithm: sha256WithRSAEncryption
6d:99:ee:39:41:fe:b6:73:71:69:73:a2:7a:43:fd:da:52:4c:
17:6c:5f:fb:35:a5:02:02:54:dc:5a:8a:f9:da:1f:fa:e1:89:
36:1f:70:ed:ff:4e:6d:d9:89:82:bc:21:00:36:23:bb:09:e1:
0d:6e:23:56:1d:89:d6:09:f7:42:df:f2:cb:2d:6c:d9:b8:fa:
cf:3d:53:1b:f0:5c:16:d2:cd:ba:80:12:f6:77:c7:a3:b8:27:
26:a1:b4:30:37:ac:65:9c:1d:3d:c7:91:db:e4:24:a0:37:39:
78:98:e9:f0:69:b7:71:1b:b0:72:94:ef:15:9f:e3:41:77:3c:
b6:d3:63:70:89:07:98:b8:3e:da:ff:d2:30:ca:05:9c:56:79:
f0:e9:dd:6d:51:0e:88:55:6a:b8:45:d4:3c:7a:e1:57:02:68:
89:6f:92:ca:da:22:6c:2a:a3:03:9a:77:3e:89:dd:78:af:eb:
c7:cc:06:72:ed:3e:db:1a:16:d5:e1:96:7d:f8:9e:64:75:e5:
25:79:e6:4b:d2:0d:72:a7:a2:be:db:fe:1c:51:22:a7:e1:3b:
9b:ff:c1:34:9f:14:aa:e5:77:02:53:01:2e:38:c1:4d:8e:cb:
32:ad:5e:27:0a:8b:79:61:4f:e3:fc:ef:2a:ec:e8:62:26:90:
1d:5c:d7:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:28:17 2025 by rpki-client