Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwOm1WxxgCG9nInrPEvtgX7VauU.cer
File: dwOm1WxxgCG9nInrPEvtgX7VauU.cer (raw, json)
Hash identifier: 8Nb8ULeRwmq2uLWhaZKmAw6bPHrWlkMikDnI+T31qs8=
Subject key identifier: 77:03:A6:D5:6C:71:80:21:BD:9C:89:EB:3C:4B:ED:81:7E:D5:6A:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025F7D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/dwOm1WxxgCG9nInrPEvtgX7VauU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 Aug 2025 19:41:08 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 134696
IP: 43.242.128.0/22
IP: 103.251.88.0/22
IP: 2401:8d40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 16 Sep 2025 07:46:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155517 (0x25f7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 25 19:41:08 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A918F20B, serialNumber=7703A6D56C718021BD9C89EB3C4BED817ED56AE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:df:26:f5:16:7d:cd:2f:20:e9:6c:70:c2:e9:
a0:8f:7a:62:68:b2:4e:be:11:87:a0:96:a8:c7:df:
fe:b0:6f:48:64:e1:a5:32:ae:d9:f1:1b:59:ff:ca:
18:36:b5:b7:87:3b:54:7d:a4:83:b6:b5:ac:fc:8d:
f3:d7:53:d1:53:f8:48:b9:8e:37:14:69:64:53:b3:
06:e2:f6:ca:ed:c4:48:fa:98:ed:9d:b7:51:77:d9:
15:45:64:c2:3c:15:a5:34:26:39:fc:33:1e:87:10:
25:53:80:21:8a:df:55:1f:6c:77:86:14:c6:09:aa:
5d:14:7f:2c:8b:e7:62:8d:a1:40:75:6e:af:f2:9a:
b6:9c:82:5f:71:d5:27:dc:67:5e:f2:34:07:5a:dc:
b9:66:b2:6a:8b:de:2f:4a:12:e6:4d:75:00:28:0e:
59:a7:aa:db:2c:54:0e:7a:47:62:ab:e3:44:66:53:
ad:5a:34:8f:7e:84:a9:80:5f:82:9c:33:9a:20:da:
38:7a:ca:df:1e:9b:a6:fd:05:92:0c:b6:11:2a:c9:
c0:74:cd:da:92:21:7c:8e:2a:31:e6:b2:97:35:1c:
9e:9c:21:c0:1b:99:5a:4e:e6:2b:a1:3c:46:8a:bc:
49:68:da:70:a9:b9:ed:3c:07:1f:d8:73:8d:91:9e:
06:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:03:A6:D5:6C:71:80:21:BD:9C:89:EB:3C:4B:ED:81:7E:D5:6A:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918F20B/19E4DBF6960F11EC890A446DC4F9AE02/dwOm1WxxgCG9nInrPEvtgX7VauU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134696
sbgp-ipAddrBlock: critical
IPv4:
43.242.128.0/22
103.251.88.0/22
IPv6:
2401:8d40::/32
Signature Algorithm: sha256WithRSAEncryption
c6:ad:c7:bd:c2:b1:61:62:ed:b3:4e:02:ad:c5:33:af:81:8f:
ce:a0:61:37:3d:5d:8c:d3:36:75:ea:4d:57:10:79:15:b6:9d:
1c:c6:e9:05:41:74:c7:9f:f3:44:08:cb:78:8e:b5:fa:a0:59:
c6:0e:0b:f0:64:d9:d7:a8:af:da:43:7e:3a:7b:c8:a3:77:d2:
af:fa:4d:6d:e4:eb:a9:1b:e5:7f:0a:8e:28:0c:fb:54:f9:ec:
74:de:70:32:ed:f9:12:5b:60:2e:45:70:9d:c5:d6:26:4b:27:
54:3a:e1:d2:1f:88:49:9b:a5:34:0f:6c:81:11:1a:51:81:07:
a4:e4:65:87:1c:47:ba:e4:45:cb:e1:50:52:87:3b:ef:d2:5b:
64:3b:89:5d:3b:1b:91:b1:dd:5f:a3:e4:61:5e:88:16:36:9c:
66:d8:59:77:3f:8a:13:dd:a4:3f:c8:51:2b:60:32:2c:73:11:
d8:84:96:60:89:42:d3:30:9c:5a:cf:4d:70:4e:5f:66:09:37:
ab:fe:e9:58:91:d3:39:02:ad:35:dc:5b:14:8b:ab:6d:4a:91:
31:9b:a5:9e:65:83:a2:22:b9:fc:2f:fd:5e:98:7f:b2:38:25:
c5:75:06:87:5f:42:cf:e6:a7:69:a1:c9:16:74:54:bb:e9:aa:
0c:e7:9e:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 12:29:32 2025 by rpki-client