Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer
File: kCs-s81I0JqgoQybLLKA0KDNLbo.cer (raw, json)
Hash identifier: OERZukDI+85kXTYDg+Qv/b9CsZlQ4NzD8DPPGCeXHCA=
Subject key identifier: 90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025FFC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Aug 2025 15:52:23 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: IP: 45.120.208.0/22
IP: 103.61.28.0/22
IP: 2001:df0:8e00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Sep 2025 22:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155644 (0x25ffc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 27 15:52:23 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A915A161, serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e6:6c:f3:ef:cb:a9:f6:9e:36:dc:85:c7:5a:
d9:b9:10:0e:ce:de:77:1b:39:35:af:33:6e:1b:a0:
0b:03:2f:dd:53:fd:b3:8f:40:ae:cf:ea:82:ab:8e:
8b:e3:f7:57:68:05:68:b7:d0:2f:be:15:09:9d:05:
a5:31:73:b9:71:19:1d:ce:99:7b:6f:12:22:83:0b:
97:3f:b2:88:2e:9f:61:0e:c3:37:d2:d0:25:c2:0f:
13:ac:df:7c:da:ee:3a:9c:bc:5c:3f:d2:37:22:92:
04:b6:20:97:af:97:0f:63:4d:89:68:47:e7:da:2f:
aa:64:29:ee:7c:d8:1a:ba:f0:ce:99:42:f0:cc:2c:
c7:fd:b4:e9:ca:56:a8:8d:d7:ce:d8:63:98:87:79:
8a:a9:8c:78:c3:dc:0e:13:ad:dc:b5:e4:aa:c5:a7:
41:52:fd:55:c2:f0:ba:53:9a:d9:3b:16:27:e5:e9:
9a:35:f2:a9:dd:1d:23:2c:f4:78:01:70:39:c6:21:
ad:cc:f9:c9:9c:44:a6:d0:fa:12:32:97:af:ec:4b:
2a:5f:7a:1c:e0:b3:78:52:36:ac:a0:90:81:e4:54:
27:f9:53:b1:bf:bd:33:04:86:13:28:28:5e:7c:3b:
f5:a7:1b:c3:79:fa:08:b5:b3:02:80:d8:f8:38:d6:
56:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.120.208.0/22
103.61.28.0/22
IPv6:
2001:df0:8e00::/48
Signature Algorithm: sha256WithRSAEncryption
63:57:3c:6d:49:21:25:ce:3b:32:cb:8f:e8:04:22:b6:f1:f6:
25:0c:c9:82:96:3d:ce:6b:5a:b0:e4:68:d4:f8:e7:90:38:94:
99:a6:e7:30:cf:8c:39:65:04:c2:43:41:db:02:4e:a6:ef:03:
32:86:93:65:8e:49:73:33:90:b6:97:dc:24:64:da:13:17:a5:
48:71:40:df:50:21:4d:e9:fb:96:67:3c:01:28:56:f8:c0:67:
f2:f8:f8:03:03:1c:8d:66:ab:32:28:e0:69:c6:d0:fd:d8:4d:
51:22:aa:f0:79:aa:06:88:c7:06:f6:56:ec:1e:5e:88:13:f0:
4c:19:40:67:34:44:68:b0:c2:f0:cc:4d:f7:03:4b:50:02:96:
55:fd:19:c9:db:4e:82:a6:86:52:4e:1c:aa:da:3f:cf:bf:4b:
49:28:04:20:91:9e:26:6f:ca:72:5d:ed:7f:5d:05:41:02:e6:
0c:7a:1b:88:2b:4b:15:eb:bd:d2:f2:39:63:e7:05:54:a0:6b:
50:9b:89:5c:88:55:da:39:89:81:e3:3c:3f:a9:9f:63:fe:e2:
9a:3c:06:45:43:71:c1:d3:40:3d:06:4a:ff:94:26:7b:18:e1:
40:7a:8f:79:0e:7f:28:0d:d9:6f:db:f5:43:22:af:49:a2:d9:
13:69:69:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 00:57:27 2025 by rpki-client