Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mraG48KZqn5EVUk0lbRrpadECZ0.cer
File: mraG48KZqn5EVUk0lbRrpadECZ0.cer (raw, json)
Hash identifier: 4HHArkl2dnEmtVdjuf90HoJ+HaKmhTdczWCLF8xu8rk=
Subject key identifier: 9A:B6:86:E3:C2:99:AA:7E:44:55:49:34:95:B4:6B:A5:A7:44:09:9D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0262ED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Sep 2025 04:23:00 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 137527
AS: 137996
IP: 103.120.4.0/23
IP: 103.170.128.0/23
IP: 2407:b140::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 16 Sep 2025 12:44:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156397 (0x262ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 3 04:23:00 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91A6D8B, serialNumber=9AB686E3C299AA7E4455493495B46BA5A744099D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:98:12:28:ec:3a:f3:c9:ff:9d:e7:88:6f:b3:
e4:81:04:b3:99:6d:01:49:0f:f1:fb:52:2a:02:83:
94:bf:03:96:46:46:34:90:3a:8f:4a:d4:a2:9e:86:
df:de:d5:78:ae:02:ef:d7:91:ce:fb:ed:45:97:38:
04:d5:2e:7e:e0:08:0d:f4:95:b2:a5:80:52:5e:95:
72:87:c8:1c:ee:9e:51:a4:c8:46:94:00:fd:bc:dd:
62:91:ce:f1:81:18:8d:b7:54:a2:b3:e2:a7:9a:cf:
d4:cb:b0:8f:07:0f:53:43:7b:44:ae:bd:17:a4:86:
a6:93:68:b9:41:53:b8:6a:ae:40:a8:5b:af:e3:7c:
cf:f7:b7:b6:12:8c:3d:68:39:6f:d7:65:96:f8:6d:
31:95:99:1b:a2:8c:6c:e4:89:70:b1:d0:32:a0:33:
2d:9f:c2:96:00:6f:85:b1:5e:d8:32:dd:20:5f:20:
52:aa:46:c4:da:32:da:25:8f:d7:70:47:2a:38:1d:
e5:36:fc:12:bf:8d:93:2b:51:24:17:1a:e5:6f:34:
77:59:ae:4f:01:00:a9:e4:ca:ac:57:e4:32:83:2a:
11:8b:78:7f:bd:8a:61:9a:bd:41:1f:a2:ef:74:99:
3a:59:24:81:9c:00:99:3c:4d:05:f5:5c:83:a5:c0:
e2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B6:86:E3:C2:99:AA:7E:44:55:49:34:95:B4:6B:A5:A7:44:09:9D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137527
137996
sbgp-ipAddrBlock: critical
IPv4:
103.120.4.0/23
103.170.128.0/23
IPv6:
2407:b140::/32
Signature Algorithm: sha256WithRSAEncryption
83:22:48:0b:6a:7b:61:f6:33:d9:f0:26:96:c9:5a:63:cc:a2:
01:50:e1:17:45:61:22:d1:fc:e3:49:8e:8c:75:e0:f1:09:57:
36:d4:65:f4:d5:03:1c:ad:24:66:c9:07:42:61:37:09:71:8e:
86:56:cd:58:df:33:04:88:8a:63:39:f1:a5:96:81:df:97:e3:
e8:e2:1d:ed:ac:99:0f:ab:fa:1f:95:5e:ff:17:46:f5:bb:a3:
6d:18:27:d9:9e:cd:1f:3b:27:ad:d1:b7:4d:c8:c5:65:97:9b:
d8:4c:24:ec:48:ec:f1:2a:84:51:58:4d:9f:34:e5:ee:73:57:
d2:02:8d:de:51:e6:c3:aa:a4:80:70:af:2f:90:47:4e:15:8a:
a9:d0:7c:10:67:c8:8b:fa:67:c0:8a:4e:78:90:3b:0e:2d:fb:
40:fc:85:d1:81:4e:4b:1f:b6:c9:7e:f4:88:b3:ab:c9:61:36:
cb:77:a7:a8:16:e3:e9:d2:56:7f:6f:ac:98:31:8c:8a:f1:09:
fb:07:9c:cb:58:a2:0a:cc:98:90:24:5c:fc:7a:1e:9c:82:bb:
02:f6:b8:83:34:14:12:5c:be:91:d0:a8:b8:c2:f8:81:b0:a0:
fd:39:19:9d:b4:e3:01:b8:17:09:62:38:ca:b8:55:0c:e0:eb:
dd:37:95:92
-----BEGIN CERTIFICATE-----
MIIGNDCCBRygAwIBAgIDAmLtMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDkwMzA0MjMwMFoXDTI2MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQTZEOEIxMTAvBgNVBAUTKDlBQjY4NkUzQzI5OUFBN0U0NDU1NDkz
NDk1QjQ2QkE1QTc0NDA5OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC/mBIo7Drzyf+d54hvs+SBBLOZbQFJD/H7UioCg5S/A5ZGRjSQOo9K1KKeht/e
1XiuAu/Xkc777UWXOATVLn7gCA30lbKlgFJelXKHyBzunlGkyEaUAP283WKRzvGB
GI23VKKz4qeaz9TLsI8HD1NDe0SuvRekhqaTaLlBU7hqrkCoW6/jfM/3t7YSjD1o
OW/XZZb4bTGVmRuijGzkiXCx0DKgMy2fwpYAb4WxXtgy3SBfIFKqRsTaMtolj9dw
Ryo4HeU2/BK/jZMrUSQXGuVvNHdZrk8BAKnkyqxX5DKDKhGLeH+9imGavUEfou90
mTpZJIGcAJk8TQX1XIOlwOITAgMBAAGjggMpMIIDJTAdBgNVHQ4EFgQUmraG48KZ
qn5EVUk0lbRrpadECZ0wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUE2RDhCL0IyRjIzNUIyNjcyMDExRUVBMTQ2QzIyREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBNkQ4Qi9CMkYyMzVCMjY3MjAxMUVFQTE0NkMyMkRDNEY5QUUwMi9tcmFHNDhL
WnFuNUVWVWswbGJScnBhZEVDWjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDAhk3AgMCGwwwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAFneAQD
BAFnqoAwDQQCAAIwBwMFACQHsUAwDQYJKoZIhvcNAQELBQADggEBAIMiSAtqe2H2
M9nwJpbJWmPMogFQ4RdFYSLR/ONJjox14PEJVzbUZfTVAxytJGbJB0JhNwlxjoZW
zVjfMwSIimM58aWWgd+X4+jiHe2smQ+r+h+VXv8XRvW7o20YJ9mezR87J63Rt03I
xWWXm9hMJOxI7PEqhFFYTZ805e5zV9ICjd5R5sOqpIBwry+QR04ViqnQfBBnyIv6
Z8CKTniQOw4t+0D8hdGBTksftsl+9Iizq8lhNst3p6gW4+nSVn9vrJgxjIrxCfsH
nMtYogrMmJAkXPx6HpyCuwL2uIM0FBJcvpHQqLjC+IGwoP05GZ204wG4FwliOMq4
VQzg6903lZI=
-----END CERTIFICATE-----
Generated at Tue Sep 9 14:07:24 2025 by rpki-client