Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/povAkQ-DHeyBilCjIUX3Q1XOY8A.cer
File: povAkQ-DHeyBilCjIUX3Q1XOY8A.cer (raw, json)
Hash identifier: rvkdN20DdDk28TVnct/SyOUi+r5FQQqEkk78xDp+Z5Y=
Subject key identifier: A6:8B:C0:91:0F:83:1D:EC:81:8A:50:A3:21:45:F7:43:55:CE:63:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0247E3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/povAkQ-DHeyBilCjIUX3Q1XOY8A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 May 2025 20:17:18 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 142024
IP: 103.165.54.0/23
IP: 2407:46c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149475 (0x247e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 21 20:17:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A919B6FC, serialNumber=A68BC0910F831DEC818A50A32145F74355CE63C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e4:8d:3b:9f:ae:be:bd:0d:9d:f3:38:2b:80:
90:bf:f9:96:14:52:b1:77:ec:b4:7c:27:3b:11:72:
fa:62:81:77:27:19:fd:20:0b:ea:91:cc:4b:11:7c:
02:67:8e:3f:9e:4c:f5:e3:fa:9b:79:dc:35:d8:4a:
1d:54:91:98:30:d2:4c:ee:20:06:23:2a:86:0f:8f:
7c:84:7e:30:f8:70:a4:a7:1d:2c:ee:e3:9c:e0:35:
84:6a:40:76:65:4f:5e:04:83:d2:46:9c:82:f1:5a:
87:2d:80:6e:5e:9f:76:78:08:02:21:33:f8:a6:bb:
73:ef:ba:fe:4f:0c:44:b4:93:89:12:29:20:41:3d:
46:50:c4:1d:6b:95:a8:35:d3:08:20:21:08:4f:06:
ad:fb:b2:f0:69:ab:41:20:fa:73:e5:d9:f6:db:fd:
d6:2d:9b:15:8b:d7:15:b8:ab:51:72:2b:25:34:e2:
52:cd:c8:0d:36:c6:aa:e4:7f:17:ea:bc:9b:06:a2:
d5:46:58:f4:f4:03:45:85:c2:2e:dd:70:f2:e9:cd:
0f:c0:98:7f:0b:40:9b:96:75:4c:71:41:4f:26:b5:
2e:48:a3:9b:2c:aa:e0:71:5b:36:3f:3d:2a:b7:10:
24:de:98:2d:0b:4f:dc:47:75:82:7e:97:6c:9e:3a:
37:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8B:C0:91:0F:83:1D:EC:81:8A:50:A3:21:45:F7:43:55:CE:63:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919B6FC/8892CC4A983911EBA1409960C4F9AE02/povAkQ-DHeyBilCjIUX3Q1XOY8A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142024
sbgp-ipAddrBlock: critical
IPv4:
103.165.54.0/23
IPv6:
2407:46c0::/32
Signature Algorithm: sha256WithRSAEncryption
21:89:ca:dd:64:42:ae:07:ce:b7:78:1d:60:e7:6d:1e:5f:54:
c2:27:76:85:64:30:cc:c8:f0:b7:dc:55:da:0f:28:c7:bb:d1:
b8:50:ab:e9:9a:70:9b:56:eb:e3:b9:38:33:ae:7c:89:9f:38:
08:77:14:dd:d3:78:a6:45:ca:f2:cc:45:99:cb:e0:29:75:56:
40:db:a7:45:f1:b9:af:da:a1:4e:02:58:f1:62:9f:f5:50:28:
c4:de:f9:cf:76:61:cb:7a:24:8e:9a:55:6a:b8:19:af:66:96:
99:66:2b:a8:eb:33:7e:7a:27:5f:e8:22:f1:eb:59:51:24:01:
3e:e2:24:f0:7b:02:36:ec:12:5e:52:f7:7c:43:8f:20:cc:23:
67:4d:a8:9f:05:61:82:39:e6:6f:77:1b:a5:cc:e4:fe:ec:7f:
07:99:67:c0:c8:a9:44:91:bf:e7:40:68:02:87:46:55:d5:59:
15:9c:a8:96:90:d2:b4:4e:48:88:a2:f7:c7:e0:3f:7d:d4:85:
50:bd:fd:f8:fb:89:25:a3:ee:d1:2d:52:41:c5:f3:25:bb:08:
ce:99:8e:ec:0d:ad:56:ff:a2:dc:c3:a4:67:8e:39:91:0c:58:
78:6f:67:83:c3:46:cf:5f:5c:57:e6:ca:89:8c:3c:9d:16:65:
46:4b:fe:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 08:49:12 2025 by rpki-client