Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer
File: siw9CrzTkZSGo-YejXiJI5Ir9qU.cer (raw, json)
Hash identifier: 2rsDvDeVQVX0aFhMGYJ15AgpAsQy4b+J+6SxPXZNHvE=
Subject key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026002
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Aug 2025 17:40:52 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 38324
AS: 133617
IP: 103.118.40.0/22
IP: 103.236.224.0/23
IP: 2001:df2:ac40::/48
IP: 2403:27c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 15 Sep 2025 08:42:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155650 (0x26002)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 27 17:40:52 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A917A66F, serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e4:c7:41:81:97:b6:b0:ba:09:98:cb:cf:4a:
92:6c:67:84:ff:24:ea:db:3d:c5:a3:a4:c9:2a:6c:
01:c1:9f:c9:bb:01:de:95:08:3c:8a:61:25:46:a4:
26:c6:3e:55:80:6e:2d:b0:25:da:3d:77:c8:f7:21:
aa:25:48:0e:1e:d1:d0:d6:1a:b2:f1:b0:98:a9:4b:
5d:d8:43:87:4b:6e:54:2d:cd:b6:12:0e:47:f4:57:
8b:e9:b5:62:dc:c2:b4:85:6a:03:1e:8c:c5:8d:0a:
dd:db:95:d0:fa:31:92:57:d5:2d:3e:ff:9f:33:12:
ca:af:2c:6e:68:cb:d6:58:b8:d0:b9:84:10:9d:96:
ac:24:b4:24:c8:d5:19:fb:73:dc:87:22:49:64:c0:
24:92:1a:4b:8a:e8:9d:01:ee:fc:9d:2f:82:8e:c5:
e1:69:d7:7d:44:9a:fa:fd:16:0c:ca:72:c0:08:e9:
a0:95:c5:71:98:54:72:e5:1d:5b:80:87:4f:d2:c5:
7a:e6:9f:da:de:68:29:c5:88:4f:0d:66:4b:91:a0:
f0:84:bf:c3:33:cc:62:52:83:ec:7b:09:ae:01:8e:
e6:35:e4:6b:c7:5d:1e:7f:c4:58:7b:48:e7:74:ae:
fa:cf:05:ef:91:aa:c1:3e:54:77:cd:e1:a6:20:52:
a3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38324
133617
sbgp-ipAddrBlock: critical
IPv4:
103.118.40.0/22
103.236.224.0/23
IPv6:
2001:df2:ac40::/48
2403:27c0::/32
Signature Algorithm: sha256WithRSAEncryption
0c:ef:d9:77:fa:2d:56:2c:8c:1c:34:90:6b:89:00:d3:75:fe:
ff:1e:11:10:6d:d6:5a:32:6d:b9:47:70:fc:da:7e:10:00:51:
06:b4:44:5f:9c:b0:de:86:a6:3a:b0:8a:d0:35:bb:9e:19:da:
d5:50:6e:ce:b4:9e:a8:1d:a3:e1:f9:05:96:cf:b4:cc:9c:f5:
38:40:62:fe:f7:8d:41:ee:35:88:a0:26:bf:d4:a3:17:a4:ca:
4f:f3:ab:b1:76:ba:6c:a5:c0:a6:48:8d:91:78:b5:5c:71:b3:
cb:1e:8a:96:f0:6f:ee:1f:e2:17:00:82:34:60:bd:05:c6:91:
5a:76:d7:07:06:62:c2:91:f1:41:5c:96:a7:da:14:a7:04:60:
0b:e0:20:e2:80:28:2e:1a:97:38:f9:14:24:a8:d3:cc:20:dd:
21:15:5c:a8:4e:2d:e6:75:05:84:32:99:f1:62:16:e5:00:ec:
eb:52:99:be:75:94:1f:28:8c:b0:5c:26:37:38:23:9d:69:1c:
45:2a:d4:d1:ae:97:60:e5:ec:74:0e:1d:9a:9b:53:be:5e:87:
9f:a2:5c:7a:ae:ab:3b:e8:94:71:2c:3c:6a:24:7f:d0:61:ea:
50:b5:b4:05:76:59:88:db:2c:12:f7:05:7d:29:f2:18:21:e8:
d9:c7:a3:9f
-----BEGIN CERTIFICATE-----
MIIGPTCCBSWgAwIBAgIDAmACMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDgyNzE3NDA1MloXDTI2MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxN0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYx
RThENzg4OTIzOTIyQkY2QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDU5MdBgZe2sLoJmMvPSpJsZ4T/JOrbPcWjpMkqbAHBn8m7Ad6VCDyKYSVGpCbG
PlWAbi2wJdo9d8j3IaolSA4e0dDWGrLxsJipS13YQ4dLblQtzbYSDkf0V4vptWLc
wrSFagMejMWNCt3bldD6MZJX1S0+/58zEsqvLG5oy9ZYuNC5hBCdlqwktCTI1Rn7
c9yHIklkwCSSGkuK6J0B7vydL4KOxeFp131Emvr9FgzKcsAI6aCVxXGYVHLlHVuA
h0/SxXrmn9reaCnFiE8NZkuRoPCEv8MzzGJSg+x7Ca4BjuY15GvHXR5/xFh7SOd0
rvrPBe+RqsE+VHfN4aYgUqP/AgMBAAGjggMyMIIDLjAdBgNVHQ4EFgQUsiw9CrzT
kZSGo+YejXiJI5Ir9qUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTdBNjZGLzhGQ0M5RDI4QzZGOTExRUU5N0U2RkIxREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3QTY2Ri84RkNDOUQyOEM2RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6
VGtaU0dvLVllalhpSkk1SXI5cVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDAJW0AgMCCfEwPQYIKwYBBQUHAQcBAf8ELjAsMBIEAgABMAwDBAJndigD
BAFn7OAwFgQCAAIwEAMHACABDfKsQAMFACQDJ8AwDQYJKoZIhvcNAQELBQADggEB
AAzv2Xf6LVYsjBw0kGuJANN1/v8eERBt1loybblHcPzafhAAUQa0RF+csN6Gpjqw
itA1u54Z2tVQbs60nqgdo+H5BZbPtMyc9ThAYv73jUHuNYigJr/Uoxekyk/zq7F2
umylwKZIjZF4tVxxs8seipbwb+4f4hcAgjRgvQXGkVp21wcGYsKR8UFclqfaFKcE
YAvgIOKAKC4alzj5FCSo08wg3SEVXKhOLeZ1BYQymfFiFuUA7OtSmb51lB8ojLBc
Jjc4I51pHEUq1NGul2Dl7HQOHZqbU75eh5+iXHquqzvolHEsPGokf9Bh6lC1tAV2
WYjbLBL3BX0p8hgh6NnHo58=
-----END CERTIFICATE-----
Generated at Mon Sep 8 10:39:55 2025 by rpki-client