Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer
File: dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer (raw, json)
Hash identifier: adB+FjcTic2h4iMcgnZ8ZxwAv72eBx/QEvT48tt40lw=
Subject key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026EA3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 22 Oct 2025 23:21:22 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: IP: 103.99.60.0/22
IP: 2401:a940::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 14:43:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159395 (0x26ea3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 22 23:21:22 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A91B29F8, serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a9:26:64:be:6d:e4:84:3b:2b:88:32:d2:c4:
7d:19:0c:bb:07:5c:21:c4:c2:85:0a:2e:22:a5:b0:
2e:cd:d7:ea:89:d0:1a:10:a6:16:1f:d2:37:87:40:
1c:a8:df:30:a5:74:f9:c8:36:6d:0b:03:21:ce:25:
4d:d2:98:38:6b:4c:e7:d7:8a:2d:71:4e:c5:df:b0:
84:4b:da:0f:46:2e:c1:b9:ff:84:51:01:40:1a:06:
11:a8:2b:4b:a0:31:ed:e9:ad:ed:45:a2:ea:1f:b1:
a5:bf:40:d4:b7:26:be:78:66:c2:55:80:80:72:be:
31:76:e7:b2:2a:df:03:e5:d8:5b:24:4a:22:86:84:
98:5c:75:85:9c:e9:ff:dc:36:77:ec:0c:b3:17:ff:
f6:5a:ef:23:b9:92:64:5f:6e:53:4b:0a:53:7e:15:
c0:24:af:5d:c5:34:6e:ce:a5:9e:f5:20:a1:89:04:
5e:7c:18:6c:60:7c:99:b4:01:b1:46:2e:c7:7f:1e:
ce:ea:38:46:33:cd:40:00:69:34:5d:f2:5d:4a:63:
c0:bd:d9:5b:37:30:93:76:74:95:2d:97:98:fb:25:
1f:ef:7d:35:95:99:28:7a:24:6b:51:49:ce:9a:a8:
76:48:85:60:1f:a2:ad:9b:06:b6:cf:03:52:e0:78:
01:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.60.0/22
IPv6:
2401:a940::/32
Signature Algorithm: sha256WithRSAEncryption
7d:9c:d6:d8:1d:45:b0:bb:40:03:da:e6:48:b7:3b:54:f0:e7:
da:dc:a3:ab:c6:3e:70:d7:a5:41:a2:9a:05:45:bb:15:49:a9:
6d:80:3c:75:96:fd:a4:37:86:c8:00:2c:43:44:3c:4c:d2:43:
06:09:18:85:44:f3:38:47:57:a8:86:52:89:ed:66:c1:bc:a5:
58:58:25:d7:13:8a:e8:f4:e4:0f:47:42:0a:39:69:b4:68:6f:
63:ca:8d:e3:9e:00:65:55:04:78:5e:d9:ea:f9:12:cf:73:f9:
06:df:b9:b9:ea:06:5d:85:8f:4b:db:1c:4c:cd:4c:44:d8:13:
ee:ed:00:0c:27:68:9a:6e:28:91:ad:9b:22:82:5e:56:52:c8:
52:35:17:b4:c7:6d:95:86:1d:40:e2:05:ee:10:ae:88:14:de:
ea:4d:65:71:46:04:a5:57:ec:6c:7a:7b:8e:be:e1:dc:fc:34:
09:4d:c1:ba:4f:b6:c2:eb:7f:10:a1:65:f1:b5:d9:53:31:00:
07:a3:18:2d:57:0a:88:98:14:11:7b:9d:a7:b7:f7:11:37:41:
ff:28:f2:a1:e2:9c:12:95:5d:5b:b6:96:ab:88:64:83:5e:9d:
b4:9b:bb:ec:18:55:c6:ad:71:77:29:85:f4:28:da:9c:f1:35:
f0:ad:7a:33
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgIDAm6jMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MTAyMjIzMjEyMloXDTI2MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIz
NkEyQTVBNTBBRjA5Rjg0MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDdqSZkvm3khDsriDLSxH0ZDLsHXCHEwoUKLiKlsC7N1+qJ0BoQphYf0jeHQByo
3zCldPnINm0LAyHOJU3SmDhrTOfXii1xTsXfsIRL2g9GLsG5/4RRAUAaBhGoK0ug
Me3pre1FouofsaW/QNS3Jr54ZsJVgIByvjF257Iq3wPl2FskSiKGhJhcdYWc6f/c
NnfsDLMX//Za7yO5kmRfblNLClN+FcAkr13FNG7OpZ71IKGJBF58GGxgfJm0AbFG
Lsd/Hs7qOEYzzUAAaTRd8l1KY8C92Vs3MJN2dJUtl5j7JR/vfTWVmSh6JGtRSc6a
qHZIhWAfoq2bBrbPA1LgeAGPAgMBAAGjggMCMIIC/jAdBgNVHQ4EFgQUdsjgEVVJ
7akt4iI2oqWlCvCfhBEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUIyOUY4LzkyRDBCRTAyOTA2ODExRUI5RTNGQzY2Q0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCMjlGOC85MkQwQkUwMjkwNjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZW
Sjdha3Q0aUkyb3FXbEN2Q2ZoQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8EHzAd
MAwEAgABMAYDBAJnYzwwDQQCAAIwBwMFACQBqUAwDQYJKoZIhvcNAQELBQADggEB
AH2c1tgdRbC7QAPa5ki3O1Tw59rco6vGPnDXpUGimgVFuxVJqW2APHWW/aQ3hsgA
LENEPEzSQwYJGIVE8zhHV6iGUontZsG8pVhYJdcTiuj05A9HQgo5abRob2PKjeOe
AGVVBHhe2er5Es9z+QbfubnqBl2Fj0vbHEzNTETYE+7tAAwnaJpuKJGtmyKCXlZS
yFI1F7THbZWGHUDiBe4QrogU3upNZXFGBKVX7Gx6e46+4dz8NAlNwbpPtsLrfxCh
ZfG12VMxAAejGC1XCoiYFBF7nae39xE3Qf8o8qHinBKVXVu2lquIZINenbSbu+wY
VcatcXcphfQo2pzxNfCtejM=
-----END CERTIFICATE-----
Generated at Mon Nov 3 16:11:52 2025 by rpki-client