Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mvCw748-tT8U2E-jphBr5kvXgnI.cer
File: mvCw748-tT8U2E-jphBr5kvXgnI.cer (raw, json)
Hash identifier: CIDFU0Qv4e3nDbHBVReY5AvqlwC3WwcueqGBKrlc8rI=
Subject key identifier: 9A:F0:B0:EF:8F:3E:B5:3F:14:D8:4F:A3:A6:10:6B:E6:4B:D7:82:72
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025F82
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/mvCw748-tT8U2E-jphBr5kvXgnI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 Aug 2025 21:06:03 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 136927
IP: 103.99.72.0/22
IP: 2001:df2:5100::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Sep 2025 08:53:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155522 (0x25f82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 25 21:06:03 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A91B06CA, serialNumber=9AF0B0EF8F3EB53F14D84FA3A6106BE64BD78272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f4:51:47:37:20:5b:51:9c:6a:f2:71:b7:ca:
10:6e:6d:22:22:76:8a:26:ff:21:f0:c9:70:19:0f:
2c:6a:76:78:84:8a:0b:d6:0c:2d:f0:45:eb:df:62:
6b:11:d4:68:1e:4f:4f:cd:2b:1b:b6:6a:31:74:7a:
0a:80:b6:05:a5:b5:a7:9d:75:50:a1:e1:29:22:55:
e9:cb:8d:1a:8d:13:3e:4e:e1:e3:1d:7d:94:f4:0d:
36:64:f1:d9:fc:2f:31:2f:4b:b7:e4:45:e5:85:7f:
b1:86:5f:84:98:f2:d0:df:b5:e0:4f:42:ae:11:e7:
8e:ff:ff:b8:83:fd:82:d4:a3:22:72:86:ea:46:c6:
05:85:49:a2:4f:c6:df:a3:ae:c0:69:26:0a:06:5a:
45:4f:91:38:62:5f:e2:21:8c:f1:e0:cd:83:72:ef:
3c:48:9c:55:8f:f6:f9:8b:18:60:3a:60:60:cd:4b:
34:ad:ff:82:ff:12:4b:6d:b9:25:01:c8:c6:9a:1d:
ec:56:9e:b9:bd:39:5a:ff:51:07:49:75:63:a1:7f:
32:16:86:da:d6:00:c8:ee:64:3b:13:a6:e1:00:7f:
be:4f:d0:81:e9:2b:85:45:8e:20:b9:e8:08:71:a4:
c2:9a:e4:de:c0:93:dd:7e:4d:29:64:41:d6:6e:7b:
e5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F0:B0:EF:8F:3E:B5:3F:14:D8:4F:A3:A6:10:6B:E6:4B:D7:82:72
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B06CA/D2E00872776C11EC8ECA4633C4F9AE02/mvCw748-tT8U2E-jphBr5kvXgnI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136927
sbgp-ipAddrBlock: critical
IPv4:
103.99.72.0/22
IPv6:
2001:df2:5100::/48
Signature Algorithm: sha256WithRSAEncryption
11:f3:78:c3:7b:19:82:10:b1:5d:dd:b4:17:11:5b:00:3b:26:
78:21:23:bd:ec:80:43:39:2d:ca:a4:0e:ba:d9:db:fa:0e:bd:
c6:b3:f6:c8:96:94:7b:55:3a:05:de:7e:f4:e2:aa:f5:0d:cc:
7d:be:44:3a:dc:72:71:76:b5:e2:55:41:44:c8:b6:98:91:22:
c0:22:6b:35:1d:dc:8a:6f:35:99:65:98:4e:26:1c:4c:06:b9:
da:92:42:97:22:f1:47:a2:e7:ad:1f:51:12:05:c2:ef:85:d1:
9c:51:d0:f3:f3:2f:56:72:7b:83:81:df:9f:09:6d:68:fa:d7:
a0:99:f2:a8:fa:99:de:22:98:5b:8e:09:16:34:29:f4:41:93:
5a:dc:93:5b:e1:1b:90:f9:b6:05:08:8a:38:f4:79:2e:c0:e0:
a8:0c:c0:8e:6c:be:d7:cf:ae:d0:c2:67:57:68:dd:58:f3:ea:
e0:c7:fc:6c:41:1f:ac:14:0d:98:1b:8d:13:8f:e3:86:a8:c8:
18:f0:0d:3d:43:06:a3:bb:2b:9b:a1:2f:19:38:90:84:73:0d:
ba:6b:59:89:f1:bf:52:5f:45:2e:da:34:b4:02:e1:27:a9:fa:
d9:94:89:b4:c8:6a:9e:c5:7a:19:b4:7d:56:25:a6:8e:66:40:
5d:2a:61:00
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Sep 6 11:50:02 2025 by rpki-client