Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer
File: pTalTbQeRB3nTDP29zbFrXpmhcY.cer (raw, json)
Hash identifier: 0z/Kd1DG+MueQhUkP4o9esu9jNpeMvjkA5gJF8e0l2c=
Subject key identifier: A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026539
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 12 Sep 2025 21:05:31 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 9653
AS: 151415
IP: 103.228.124.0/24
IP: 202.3.64.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Sep 2025 01:13:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156985 (0x26539)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 12 21:05:31 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A91DC75C, serialNumber=A536A54DB41E441DE74C33F6F736C5AD7A6685C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cc:a0:12:4a:28:31:45:ee:02:db:24:8e:bc:
0a:5a:e2:30:42:34:01:11:f5:53:70:87:06:02:94:
14:f1:b9:5f:78:22:03:5c:84:17:04:21:1a:da:51:
28:9b:6c:a5:eb:90:7e:f9:8a:a4:fd:02:b3:23:13:
b1:30:d0:39:ad:db:b1:a9:6d:e8:f6:19:b6:2a:b2:
1e:fb:7c:cf:68:58:7d:eb:0d:89:d8:19:b9:06:54:
72:de:a1:ab:f7:11:60:c0:2c:95:71:d3:dc:0e:81:
cc:9f:ae:1f:d3:f4:b7:19:22:cb:52:93:be:14:c4:
3d:dd:d5:47:5e:63:eb:b3:8b:80:1c:df:5c:41:5f:
1b:28:f9:8e:80:3f:fa:63:34:d8:04:17:be:e4:f0:
fa:e0:97:f3:73:db:91:83:13:e2:a6:22:3f:0b:23:
c6:1f:8c:ef:06:e9:f3:5a:e5:5e:27:c5:92:06:b7:
bd:16:73:73:6d:76:91:f8:81:31:8f:1e:84:dc:4d:
85:e6:77:10:2c:77:b6:2f:13:9f:d3:57:60:6d:ac:
b4:32:f1:30:8f:48:5a:04:03:50:09:e7:d2:d3:d5:
8d:b4:5d:c3:46:3a:76:3a:8c:7e:d2:8e:35:36:6a:
ff:71:32:21:48:7f:d7:fc:e2:a8:68:5d:70:f4:49:
97:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9653
151415
sbgp-ipAddrBlock: critical
IPv4:
103.228.124.0/24
202.3.64.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:37:dd:09:25:25:d7:09:5c:ca:c4:04:62:d3:5a:d3:0f:00:
96:9e:23:91:76:bd:97:94:7d:db:ab:f4:f2:51:c8:18:bd:15:
05:3f:7e:8a:75:ac:e6:b0:48:63:a0:f5:ef:84:2f:d2:e8:ac:
79:f7:02:37:12:b5:f7:0f:1f:7a:51:63:4d:99:a9:c9:95:c9:
79:51:5e:a1:2e:66:bd:05:e7:dc:05:dc:81:3b:5d:e3:39:5a:
fe:ff:0b:07:4e:d6:ca:7a:7c:88:23:e5:0a:f6:dc:80:4e:e2:
a2:a4:ed:31:9d:f1:56:f6:2f:05:c4:5b:af:70:99:8d:1c:91:
34:ba:17:d9:9d:11:d3:4d:0a:f0:77:e6:21:87:e0:65:c0:48:
54:d7:2b:74:d5:b5:3e:8d:6d:20:7c:e3:04:97:ba:db:70:e3:
1f:bb:38:5c:50:28:32:3e:75:40:a0:0d:bd:2d:be:c0:35:3e:
d0:32:17:f2:66:97:27:80:9c:a9:35:7f:fb:14:37:33:f5:d4:
ae:53:81:eb:a4:be:ab:9a:25:53:90:98:ae:f1:43:4e:1c:78:
92:23:1d:56:8f:6e:99:8a:8f:3a:e4:ce:f1:f3:bb:cd:7f:ef:
8b:f8:ac:a3:df:39:2e:ff:da:dd:af:4d:7d:38:54:e9:7c:ef:
f7:31:76:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 03:41:16 2025 by rpki-client