Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer
File: tAgYFca67ZihzJUKxvoQvGAFiQI.cer (raw, json)
Hash identifier: CdqC6V77HN5fp10MXEnGDvcGmVZzO+UNMoRArVOIInw=
Subject key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0247E6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 May 2025 21:15:32 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 103.23.172.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149478 (0x247e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 21 21:15:32 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A91A3F5D, serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d6:d1:99:50:56:c6:f5:ce:c7:11:62:05:85:
6f:f3:48:4e:ba:0b:65:4e:48:fe:89:b6:48:9f:a9:
84:df:a0:f9:4f:54:05:0d:b2:f9:c4:98:9b:3f:04:
c7:3a:fd:ae:66:7d:d4:7a:98:df:ab:e3:f6:bb:ee:
59:0e:6a:77:48:cc:72:34:47:4a:c4:3a:f9:9e:7c:
c6:97:18:00:10:3d:eb:5b:ce:cc:c7:45:74:b0:73:
f1:11:97:3a:83:16:e2:b9:fa:4c:9e:97:e6:14:b4:
a0:bd:ab:15:3b:19:bd:44:35:54:6d:53:d5:31:b2:
3d:8c:47:16:c3:f7:78:78:42:71:70:d8:6a:e6:21:
86:56:d6:b1:05:45:74:1f:6c:14:c9:20:ec:63:83:
d0:d2:e1:19:8c:b9:4b:7e:14:ca:86:de:dc:db:de:
94:9c:13:8d:5e:77:00:27:e7:89:c3:55:3b:54:37:
6b:34:33:64:0e:19:81:39:16:83:01:bc:d0:5c:23:
55:eb:fe:0f:69:3f:19:64:b8:6a:91:d8:9f:e8:82:
e8:fb:ef:c0:79:e9:ec:16:29:9d:47:f8:5b:a3:6b:
4a:0f:b3:69:05:be:32:e7:bf:c1:d3:09:8e:aa:1a:
f8:53:be:91:77:24:c8:68:4b:b6:dd:45:f4:eb:26:
f1:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.23.172.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:e6:8f:69:ed:5e:83:f4:94:3d:1e:ff:4e:79:33:2c:02:64:
4f:a7:7a:8a:d9:35:24:72:ea:26:29:f0:e0:63:a6:0c:ae:8a:
25:db:51:08:1e:35:ce:e7:45:12:f7:e0:86:6b:e5:85:cf:67:
dd:e1:85:bc:7c:9a:7e:33:41:2d:3c:36:40:93:95:ed:f5:e3:
b4:b0:6a:ef:db:49:08:7f:40:82:bf:f7:68:d7:62:1e:7c:30:
a8:ec:0a:4a:fa:db:4b:03:10:d6:3f:6e:8c:ce:bf:9d:77:81:
8b:29:6c:9c:2c:bf:a5:24:a6:b5:3c:14:d8:8e:08:40:7d:a6:
9b:2d:bc:11:2b:a6:a4:cb:5c:65:1d:4b:7f:5b:fb:49:4a:40:
74:6e:3f:6d:fe:6b:6b:ff:50:4d:4e:99:a9:9d:ad:9e:c2:02:
23:a4:ad:71:53:1f:9f:11:bd:06:16:7b:57:7c:e5:a6:a1:71:
73:a2:1a:87:ca:92:62:d0:55:d9:d3:20:14:19:3a:29:41:d6:
0e:6f:5e:00:41:bc:32:dd:fb:7c:0f:3d:ed:12:94:82:e7:78:
ef:e5:6d:41:c1:30:5b:a8:af:2a:3a:1e:24:a5:60:4e:09:03:
53:d3:2b:1b:a0:f5:d6:27:f7:ee:80:e8:e9:95:a7:f0:e4:6f:
ac:b9:1c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 08:55:36 2025 by rpki-client