Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer
File: lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer (raw, json)
Hash identifier: fup9rwGFqesHc7GqVfyKntz8gCmIzpVOKPUDrhQ7TFg=
Subject key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02652C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 12 Sep 2025 17:30:35 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 150288
IP: 103.126.142.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Sep 2025 21:23:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156972 (0x2652c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 12 17:30:35 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A917DD85, serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:6b:0b:82:b8:26:9d:db:cc:c1:16:bc:b3:8c:
8e:f8:b2:57:80:7a:24:d7:75:1a:0b:7e:7f:3a:cb:
fe:51:ca:9c:be:4d:1b:ab:d7:e8:d3:bb:cd:ac:b5:
c9:a9:0a:e6:00:dd:76:5c:05:b4:c7:ea:f7:ec:fc:
cb:9d:67:96:7f:08:5d:1b:ec:0b:b9:a3:47:3f:ed:
f5:4f:85:48:34:74:e1:20:77:38:23:8a:1c:f5:2a:
ed:c1:a0:df:8b:6c:1a:dc:52:11:81:59:18:5a:24:
e6:a1:f7:73:5d:8d:58:01:83:84:64:3a:0b:59:41:
e3:63:04:c3:7d:ff:0b:c7:19:14:f8:a3:1f:9b:f9:
0a:60:51:b9:73:7c:db:c6:ab:5a:17:f5:5f:62:60:
99:f5:ed:2e:27:4d:3b:ca:7f:1e:57:d5:97:3f:60:
fe:30:97:e5:19:e3:74:27:48:7a:b9:2f:9f:7a:e5:
0a:45:72:ea:93:60:08:3c:33:49:8f:6f:2c:e5:c7:
19:8c:b4:1e:7e:29:28:44:ae:54:a3:af:26:42:c2:
ed:90:c9:3a:66:e6:09:dd:22:32:61:ec:e3:f6:79:
4d:d8:31:dc:9b:79:c1:e0:15:bd:35:f8:cb:46:d0:
39:f4:0b:f2:7a:2a:e9:b3:c3:0c:42:0b:56:cd:7b:
39:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150288
sbgp-ipAddrBlock: critical
IPv4:
103.126.142.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:a1:1e:ab:b3:5a:f0:ae:c6:d7:f9:77:02:cc:4d:01:ba:7a:
1f:ff:5b:ba:73:cc:12:40:c2:29:3b:46:8a:3d:be:fb:8a:c2:
ef:8e:cb:61:24:de:89:53:02:5f:06:53:55:ee:70:22:9d:e0:
79:aa:59:66:36:dc:ec:db:f7:ad:0f:99:fa:ce:20:ee:3d:d3:
4c:02:9c:ad:7e:e4:c3:74:c8:c7:29:df:8b:fa:4d:7c:a6:d8:
de:e1:aa:55:c6:ff:91:61:36:03:fc:cf:46:0d:ba:bc:da:86:
2b:64:23:bf:df:95:4d:6d:fd:73:fe:47:96:51:06:6f:1c:2c:
9c:27:80:cf:22:fb:81:94:90:38:cf:ca:f1:c4:ed:72:93:5a:
e9:91:bf:e1:95:ac:6b:42:84:c3:96:f0:be:e4:6d:84:f2:3d:
2e:26:d4:ba:e9:f7:f7:7c:7c:c0:e9:4b:3a:88:30:2b:1e:0e:
41:34:3b:cb:df:66:b6:5b:76:19:b2:ad:25:3a:d0:44:76:5e:
5d:5d:7f:6b:54:82:69:82:a8:16:34:d8:58:76:86:88:04:89:
e0:cd:06:fa:b5:00:f4:5e:d1:1c:7e:b8:b6:9b:e2:3e:cb:09:
45:8e:b2:68:02:c5:34:6d:b6:4b:9f:96:d4:61:80:0e:e8:26:
50:a3:02:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 23:24:20 2025 by rpki-client