Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mtNJ9FSFO7GJKv72BIwYclgFd2E.cer
File: mtNJ9FSFO7GJKv72BIwYclgFd2E.cer (raw, json)
Hash identifier: 73uyL4zWjXVMFH/F8k7F4JooCC9eI7nOp0hlk8vI13c=
Subject key identifier: 9A:D3:49:F4:54:85:3B:B1:89:2A:FE:F6:04:8C:18:72:58:05:77:61
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02494E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/mtNJ9FSFO7GJKv72BIwYclgFd2E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 May 2025 16:21:19 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 151325
IP: 103.254.91.0/24
IP: 2001:df2:6b40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149838 (0x2494e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 28 16:21:19 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A9169591, serialNumber=9AD349F454853BB1892AFEF6048C187258057761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f7:4b:77:dd:9b:6d:0b:53:0b:3a:d1:52:5d:
a1:cb:eb:43:ad:af:8e:a6:67:e3:93:fa:53:3d:ef:
f1:f5:60:6d:e6:0a:c3:34:c9:82:17:49:4a:33:f0:
a1:36:61:c2:20:14:99:7f:a5:22:f2:eb:ec:a5:c1:
de:00:d0:8b:b0:9d:7e:0f:a1:e6:25:85:1b:ee:1e:
a4:d6:e9:28:bf:a1:56:af:c7:c5:e3:f6:e6:a6:ac:
0e:e2:67:cf:e3:2c:a4:62:21:24:df:f6:f8:9e:ee:
1a:f3:fa:3a:df:ed:0a:11:12:17:2b:9d:ca:4b:31:
3e:78:b3:56:68:a6:72:cc:72:9d:6a:5b:02:e4:e3:
12:f3:a1:18:5b:ab:ba:31:c9:c4:df:a9:99:6f:32:
c3:e0:f4:69:41:ec:8c:f5:3e:5e:f8:89:3b:9d:48:
34:fe:4f:8e:3e:97:3c:be:df:2c:0b:01:af:84:86:
1d:9d:82:17:4b:b8:79:0a:89:d6:1d:d1:3e:32:8c:
0a:f5:a6:a8:ae:f4:3f:2f:57:34:7f:60:01:f2:12:
b7:ff:7f:6d:be:5f:3a:a6:7d:3e:8a:64:cd:1b:bc:
dd:b5:9f:37:f2:d8:f7:b3:12:d3:45:53:19:b0:80:
73:85:5f:fb:15:be:84:d1:b9:06:81:8f:37:04:b0:
43:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D3:49:F4:54:85:3B:B1:89:2A:FE:F6:04:8C:18:72:58:05:77:61
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/mtNJ9FSFO7GJKv72BIwYclgFd2E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151325
sbgp-ipAddrBlock: critical
IPv4:
103.254.91.0/24
IPv6:
2001:df2:6b40::/48
Signature Algorithm: sha256WithRSAEncryption
8f:b7:96:60:96:48:a3:42:e6:ba:47:f9:b3:2f:95:f0:83:fe:
80:f7:f8:22:62:61:d2:35:ee:49:9d:0c:41:1a:cc:c2:c8:3f:
78:ba:27:4e:76:ac:cb:bf:0c:6f:b9:18:b6:80:52:50:46:e6:
1e:25:4f:82:5d:e6:29:64:b5:e3:c8:a4:d6:da:af:a3:8a:71:
d7:0b:21:5f:0d:47:1b:9c:45:e6:9b:25:58:e1:17:02:0a:f4:
09:ef:e1:1a:e9:8f:5c:cd:46:b7:1a:d0:12:04:76:9e:f1:f1:
10:a9:13:61:63:d4:da:59:87:97:fd:e5:46:c9:d3:56:36:8f:
eb:d2:ca:e3:c7:6e:4a:b6:dc:28:8e:f7:e9:68:bc:79:e5:53:
2e:7c:23:32:fe:b7:99:8a:f0:c8:ee:0f:13:bd:e7:60:93:38:
ec:67:31:70:92:ba:3a:b5:84:9d:cf:c8:c8:31:3f:ce:57:c6:
de:a0:68:50:98:ae:a2:61:6b:81:66:de:a7:30:f1:c3:17:d8:
ed:68:d6:51:05:00:a9:03:4b:7a:b7:6f:5b:f5:5e:bd:1f:a0:
0c:a4:9a:fd:c1:fe:34:5b:44:3a:b0:fa:1a:70:ad:0c:73:42:
ad:38:5e:d2:2d:51:15:8d:f2:d1:75:1f:b3:3f:32:b8:7d:4c:
68:97:e7:62
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 09:12:30 2025 by rpki-client