Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e38qjYSvvYwzKp9LTmcJs65_CvY.cer
File: e38qjYSvvYwzKp9LTmcJs65_CvY.cer (raw, json)
Hash identifier: s+hdhMATxt/EXcu9yZ5szuJtgyxWQsjVqswHKYLU7ac=
Subject key identifier: 7B:7F:2A:8D:84:AF:BD:8C:33:2A:9F:4B:4E:67:09:B3:AE:7F:0A:F6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024FAB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91656C7/5451324A408311F08B03AB65C4F9AE02/e38qjYSvvYwzKp9LTmcJs65_CvY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91656C7/5451324A408311F08B03AB65C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Jun 2025 06:58:04 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 153789
IP: 163.227.87.0/24
IP: 2001:df5:ba40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 08 Jul 2025 08:36:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151467 (0x24fab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 23 06:58:04 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A91656C7, serialNumber=7B7F2A8D84AFBD8C332A9F4B4E6709B3AE7F0AF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e1:1e:1c:6d:ae:ef:a4:1b:41:c6:3b:05:3a:
d6:23:52:68:b5:9d:2d:0c:53:f9:c6:98:02:f3:ae:
42:f6:41:e0:08:3b:d4:36:7d:78:8f:ee:60:71:cc:
a7:eb:31:18:5e:a1:b9:92:1d:c6:a4:8f:4e:45:0c:
26:6d:8e:cc:b9:e1:1d:4b:17:06:5a:7e:90:58:6b:
72:6b:30:ea:cb:83:e3:4f:30:5c:32:4a:44:4e:d7:
bd:0d:41:ff:65:f3:8f:5e:86:c5:42:fb:ef:15:2b:
09:63:af:fd:e6:39:fd:25:ee:31:6a:cb:c9:c8:5d:
38:e3:d2:b0:fb:4f:70:c0:4f:7c:4a:6c:56:31:d2:
24:14:65:9a:1c:c0:a4:3c:f5:c6:8d:b8:31:86:40:
36:6c:44:cb:ee:9e:ae:ea:ce:e8:4e:9b:84:d2:17:
61:d2:00:65:38:ea:3e:5f:00:56:8e:b7:f2:7e:55:
1f:44:f3:cd:f8:18:6d:a2:63:23:1e:15:74:4b:03:
95:44:66:e3:dd:02:ef:91:41:07:75:af:01:9a:4a:
c9:24:0b:b1:99:59:5e:19:7f:2d:69:82:81:3b:d2:
42:8c:26:57:d2:df:a7:fb:4e:ac:ea:37:20:69:c2:
27:ef:d8:d9:7b:62:b3:8e:58:d1:a5:23:79:c9:df:
3f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7F:2A:8D:84:AF:BD:8C:33:2A:9F:4B:4E:67:09:B3:AE:7F:0A:F6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91656C7/5451324A408311F08B03AB65C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91656C7/5451324A408311F08B03AB65C4F9AE02/e38qjYSvvYwzKp9LTmcJs65_CvY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153789
sbgp-ipAddrBlock: critical
IPv4:
163.227.87.0/24
IPv6:
2001:df5:ba40::/48
Signature Algorithm: sha256WithRSAEncryption
22:82:c0:75:3f:da:e8:fd:9b:e7:24:02:62:71:ae:a8:f9:51:
4b:c8:cb:bb:a7:cb:d1:0a:cf:43:6c:16:6f:6d:38:6b:ac:ad:
ce:c3:a2:b9:72:c3:3f:1b:11:c9:f1:94:68:9d:53:8b:a6:da:
4b:25:13:01:4a:7f:8b:f6:99:df:a9:23:98:b9:c9:cd:19:90:
b6:38:40:5c:59:3f:94:89:48:6c:8e:63:a5:cd:54:e5:a5:7a:
b4:a6:1e:ca:c7:81:95:a3:92:22:ee:16:1d:88:76:cc:a1:73:
09:b7:fc:12:a7:96:74:76:db:ae:9c:1e:45:e9:f3:65:be:91:
ed:10:4d:84:35:95:0b:6d:16:e1:81:0e:73:1d:07:7f:40:51:
f8:ba:e5:e9:60:f4:50:e6:4e:a8:f3:46:cf:4e:94:64:28:ab:
6f:df:a4:18:97:fd:d5:3b:90:e4:f4:f1:10:eb:19:69:84:ae:
04:31:93:3c:3d:31:c1:da:de:1b:1d:10:2e:0a:64:d6:47:d6:
b8:21:1b:8b:c2:99:9d:48:40:04:e9:08:f8:27:84:f0:d9:d0:
18:7c:44:de:87:ec:72:20:d5:40:d2:86:86:64:74:60:11:f7:
37:b0:9d:e7:1d:9d:86:5a:98:a5:8b:dc:af:b4:7d:63:b0:5b:
72:c7:e3:b8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jul 1 12:42:40 2025 by rpki-client