Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer
File: pBhnIpZRYlTNTMrUSSUeGdG26V0.cer (raw, json)
Hash identifier: HGhHAmtOPEpo/giMxG51vCM4z37WkLrHMFi6bXC6BtA=
Subject key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025C24
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Aug 2025 14:41:26 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 142555
IP: 103.169.68.0/23
IP: 2001:df6:ed80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 11:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154660 (0x25c24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 8 14:41:26 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A913FE3D, serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9a:6f:db:42:27:bc:19:ee:62:aa:60:fb:99:
b6:5f:96:c0:4e:54:3d:44:c1:62:ad:0c:96:3d:c6:
90:0a:ef:e2:10:8a:23:e9:4e:3f:10:c7:b7:ff:6f:
34:88:5c:4d:58:73:eb:76:3f:85:47:ef:c9:a2:de:
70:7c:e1:48:fc:5d:c3:92:0a:60:7f:68:74:e9:61:
75:32:3e:69:c8:07:a9:39:dc:2a:bf:2c:d5:c2:bf:
a1:70:b2:a1:9f:7d:6c:57:99:13:40:00:07:91:c7:
e4:ce:57:48:88:49:9b:ce:23:db:5e:10:c1:e6:ab:
18:da:17:82:8a:1a:a3:f0:41:29:19:3a:01:bb:d1:
33:24:e8:78:49:bc:cd:ab:ea:fc:2d:0d:9e:79:9f:
ff:6f:c4:75:f8:ab:bb:41:47:80:d6:db:26:6d:6e:
ba:bf:3d:80:97:2e:e3:46:3e:2b:21:b9:44:73:36:
8e:b1:43:74:cd:fa:d7:9e:13:6a:09:ab:d5:15:42:
6d:ea:f4:c5:b2:9c:9f:30:93:4e:fc:49:91:ea:49:
aa:6b:2f:e2:84:c6:2f:f6:65:6f:51:2a:dd:9f:8e:
ec:01:3b:67:1d:83:62:f3:52:f3:45:28:41:0b:c9:
19:39:51:9f:f5:f2:57:ec:bd:73:78:95:c6:3d:17:
27:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142555
sbgp-ipAddrBlock: critical
IPv4:
103.169.68.0/23
IPv6:
2001:df6:ed80::/48
Signature Algorithm: sha256WithRSAEncryption
a4:37:95:de:a6:1a:ad:cd:df:4e:5a:d0:a6:1a:55:03:1c:2e:
08:6e:fa:08:b1:62:80:8a:be:21:39:55:c7:68:7d:f3:2b:fa:
31:ec:f3:62:68:71:6b:c8:a1:4a:fa:e4:ba:68:da:b2:47:d8:
6e:68:73:f6:5d:c4:68:aa:30:22:f0:a6:24:07:90:3f:69:77:
ed:1b:ff:8a:c1:e2:55:3a:b0:ef:47:e7:42:28:49:3d:7e:d4:
2f:0c:c0:e7:1e:cd:32:61:d6:a8:60:b7:cd:5f:dc:af:61:3e:
59:94:d2:84:fc:eb:8b:39:cd:31:7d:27:c1:f1:b1:6d:d8:78:
5f:1a:62:7e:3a:f2:5a:29:0a:46:da:c3:eb:9d:8b:04:5c:92:
e2:15:57:47:11:fc:07:36:ca:c4:6d:38:ab:c5:bd:66:fb:1d:
8c:53:e7:0b:ef:45:1c:48:92:fb:79:b2:c0:30:8f:5a:61:d0:
11:9d:67:db:aa:ce:10:a6:59:fd:ae:b4:1c:c2:68:72:77:ff:
66:02:3e:c4:8f:00:60:60:8d:1b:de:ce:da:e6:af:b1:77:30:
c8:c6:a9:cb:15:fb:fb:1f:d8:41:e6:0f:57:49:7d:c3:73:d6:
08:bf:b7:c3:00:6c:8e:f2:34:81:9e:1e:cc:38:04:94:57:89:
37:96:f4:17
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAlwkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDgwODE0NDEyNloXDTI2MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxM0ZFM0QxMTAvBgNVBAUTKEE0MTg2NzIyOTY1MTYyNTRDRDRDQ0FE
NDQ5MjUxRTE5RDFCNkU5NUQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDUmm/bQie8Ge5iqmD7mbZflsBOVD1EwWKtDJY9xpAK7+IQiiPpTj8Qx7f/bzSI
XE1Yc+t2P4VH78mi3nB84Uj8XcOSCmB/aHTpYXUyPmnIB6k53Cq/LNXCv6FwsqGf
fWxXmRNAAAeRx+TOV0iISZvOI9teEMHmqxjaF4KKGqPwQSkZOgG70TMk6HhJvM2r
6vwtDZ55n/9vxHX4q7tBR4DW2yZtbrq/PYCXLuNGPishuURzNo6xQ3TN+teeE2oJ
q9UVQm3q9MWynJ8wk078SZHqSaprL+KExi/2ZW9RKt2fjuwBO2cdg2LzUvNFKEEL
yRk5UZ/18lfsvXN4lcY9Fyf1AgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUpBhnIpZR
YlTNTMrUSSUeGdG26V0wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTNGRTNELzgxRTY1NEJDRTUzNjExRUJCOTgwMzI2QUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzRkUzRC84MUU2NTRCQ0U1MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBa
UllsVE5UTXJVU1NVZUdkRzI2VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAizbMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6lEMA8EAgAC
MAkDBwAgAQ327YAwDQYJKoZIhvcNAQELBQADggEBAKQ3ld6mGq3N305a0KYaVQMc
Lghu+gixYoCKviE5VcdoffMr+jHs82JocWvIoUr65Lpo2rJH2G5oc/ZdxGiqMCLw
piQHkD9pd+0b/4rB4lU6sO9H50IoST1+1C8MwOcezTJh1qhgt81f3K9hPlmU0oT8
64s5zTF9J8HxsW3YeF8aYn468lopCkbaw+udiwRckuIVV0cR/Ac2ysRtOKvFvWb7
HYxT5wvvRRxIkvt5ssAwj1ph0BGdZ9uqzhCmWf2utBzCaHJ3/2YCPsSPAGBgjRve
ztrmr7F3MMjGqcsV+/sf2EHmD1dJfcNz1gi/t8MAbI7yNIGeHsw4BJRXiTeW9Bc=
-----END CERTIFICATE-----
Generated at Fri Aug 22 14:18:52 2025 by rpki-client