Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer
File: rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer (raw, json)
Hash identifier: 9NFtdXAjkFhCbaY3bh9TCxeMVMymKkABAMMqRi/JmQ0=
Subject key identifier: AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02703A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 29 Oct 2025 16:51:24 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 17458
IP: 202.44.112.0/22
IP: 203.83.48.0/21
IP: 2401:a440::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 10 Nov 2025 16:50:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159802 (0x2703a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 29 16:51:24 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A917138D, serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:aa:3d:3e:0c:3e:95:af:f9:04:d5:7e:a2:f6:
92:fc:17:ae:62:8f:ea:45:92:58:f1:3b:f2:2d:5c:
a8:c4:a0:e8:31:5e:5e:d1:ae:6e:ca:b7:bd:48:86:
a4:26:2d:96:d8:43:3b:82:7d:23:62:6c:a0:5f:03:
ae:bf:ff:4c:2c:6c:9c:ff:f8:c9:f4:bf:8e:d6:a5:
1c:a7:15:4b:73:c8:1e:d3:a2:24:ac:c8:e7:b5:21:
1b:fc:97:4d:66:ee:00:a0:e8:11:59:ab:f5:84:f2:
de:58:51:64:57:af:68:53:95:5c:6b:be:26:f2:51:
2a:cd:30:18:81:6b:c2:de:e1:76:f5:05:7b:d1:07:
e4:ed:9f:fa:e2:44:1f:7e:dd:57:a3:fc:7b:3b:f3:
29:fb:8b:80:81:d7:8b:39:6e:19:35:d8:d7:2d:4d:
05:c9:c8:99:62:2f:e1:a6:e3:ab:cd:b9:02:77:33:
21:7e:cd:1f:3f:6e:06:47:98:49:bf:32:98:d0:33:
22:83:f0:ab:f3:59:7a:e4:19:c3:f1:14:47:9f:08:
cd:5a:05:7a:78:b6:a9:1c:ec:63:24:4b:18:9b:83:
86:f8:6a:15:fb:40:23:70:f7:c6:2f:90:a6:5d:7e:
96:60:b0:3e:20:34:85:0a:eb:9c:49:e4:94:aa:f3:
ae:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17458
sbgp-ipAddrBlock: critical
IPv4:
202.44.112.0/22
203.83.48.0/21
IPv6:
2401:a440::/32
Signature Algorithm: sha256WithRSAEncryption
20:1f:f5:78:d1:4b:3d:97:3d:80:d2:3f:dd:c9:76:95:71:2c:
ec:bf:4e:78:f7:15:91:bd:65:0b:e2:ea:45:15:12:80:86:57:
25:51:c0:48:32:d3:f2:19:a3:11:2e:e1:04:76:7c:f6:5d:db:
77:e2:d0:80:f2:1f:50:34:d4:43:d2:85:2c:9e:7c:5b:28:b0:
15:62:ca:16:1f:1f:f7:3d:ac:dc:d6:60:c6:b1:16:26:b0:61:
55:a9:c8:89:e0:ca:22:c5:19:e8:35:fd:ee:02:75:23:65:6a:
33:d8:ee:39:7f:8b:d9:59:31:56:a5:79:16:7a:1f:7e:9f:c4:
e5:94:c6:cb:6a:55:41:25:d0:e0:a1:a9:27:ed:18:03:1a:16:
1d:2c:b0:df:4a:92:84:f4:13:75:57:e9:8a:31:af:1f:6d:bb:
6f:88:9d:a0:7a:be:09:9a:a5:37:14:f0:b9:89:fa:80:ae:0b:
6d:45:b1:3f:33:53:6d:56:06:99:d7:6e:b2:d1:24:d3:82:46:
8f:68:2a:68:12:5b:8f:49:58:b2:25:e6:32:9f:f0:dd:65:e1:
3b:3b:64:b6:a1:42:11:54:d7:d8:d4:b6:9b:e1:2a:55:8f:a9:
53:31:31:fe:02:57:c3:c8:b4:c0:28:df:83:b3:0d:4e:be:7d:
9b:a9:ce:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 18:11:24 2025 by rpki-client