Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tVGhYNO-3KVi6d395AkzcktpuQA.cer
File: tVGhYNO-3KVi6d395AkzcktpuQA.cer (raw, json)
Hash identifier: TVJObghhTEBeTX25qrLma15nYyK6kQMM9EwoAzkIL80=
Subject key identifier: B5:51:A1:60:D3:BE:DC:A5:62:E9:DD:FD:E4:09:33:72:4B:69:B9:00
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026099
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/tVGhYNO-3KVi6d395AkzcktpuQA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Aug 2025 03:07:09 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: IP: 103.234.44.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Sep 2025 14:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155801 (0x26099)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 29 03:07:09 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91933FE, serialNumber=B551A160D3BEDCA562E9DDFDE40933724B69B900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d5:2c:70:29:f6:37:96:c7:51:a3:40:f3:dc:
bb:bc:f9:0b:3f:97:81:af:e8:db:45:19:6e:8d:4a:
04:6f:a8:54:da:28:36:70:b7:08:65:9a:0a:1d:20:
fa:9f:bf:24:62:b3:46:bf:08:b8:ff:9c:41:92:dd:
d3:99:68:a7:1c:a1:cf:25:59:aa:e8:14:96:56:96:
03:38:b7:50:d3:f9:36:db:72:0e:af:3e:96:81:05:
52:00:0c:67:f5:90:f9:e2:6e:61:2e:d0:1c:d5:98:
d8:ad:8c:fd:69:d7:de:32:40:81:03:94:bf:52:c8:
0f:81:77:b4:94:fe:ad:ee:26:7b:9c:86:26:14:7a:
24:58:5b:3c:c3:f2:7f:63:f1:83:ee:11:29:31:91:
3d:6f:66:9c:6c:d7:cb:e0:0e:6d:ce:86:23:e1:24:
87:c0:47:3b:29:67:d5:60:25:91:d0:49:cb:a2:f0:
e1:21:08:9b:0b:72:26:a1:a4:53:c5:07:c7:99:38:
1a:b1:b6:a0:24:80:bc:58:67:69:29:56:ac:f7:2b:
82:46:3b:53:9b:f3:b9:7c:77:14:b1:75:0f:98:60:
c7:f2:14:c2:2d:40:b8:aa:3d:ab:84:ac:a0:ee:b2:
97:53:db:43:50:ce:62:6d:82:c3:3c:0d:a3:1d:e5:
24:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:51:A1:60:D3:BE:DC:A5:62:E9:DD:FD:E4:09:33:72:4B:69:B9:00
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/tVGhYNO-3KVi6d395AkzcktpuQA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.44.0/22
Signature Algorithm: sha256WithRSAEncryption
19:cf:d0:e0:d5:61:fe:e7:92:15:48:23:ad:bf:95:1d:8b:fa:
02:e0:d9:d1:e2:52:22:99:7b:94:3d:70:ea:75:43:10:da:18:
24:0c:74:c7:a6:93:41:d0:a4:c7:24:ad:73:95:80:67:08:84:
e5:f7:7d:f4:50:45:bb:83:63:e2:5e:e9:06:c6:9a:6b:61:59:
91:27:5c:5f:9e:f4:c3:03:a7:87:cb:85:df:6b:c7:2b:57:10:
97:f1:41:59:b7:85:f6:a1:59:4d:5b:90:a2:cd:24:ef:41:f2:
31:99:5a:9b:ff:87:a0:bb:71:f4:f6:dd:37:07:79:1a:d1:1f:
73:ba:e0:4e:e4:b7:08:0d:05:a0:2e:4b:45:b9:f0:b2:72:20:
24:c3:be:7c:77:6a:43:7e:7b:1f:52:32:30:3f:28:a3:52:78:
c8:ed:e4:eb:b6:fb:b4:9f:20:0c:91:4b:f5:1e:76:a3:27:9c:
f8:be:cb:a0:6d:a1:c0:f5:f4:85:08:48:c6:24:43:e4:af:a9:
bc:0a:6d:6f:1f:d3:5b:6a:77:01:37:b9:58:4e:d2:71:c3:53:
cd:69:90:79:1b:34:54:04:0a:d2:6f:a3:96:64:4e:c0:90:c6:
17:80:9d:02:6f:60:1c:dd:c1:7d:60:63:85:69:1d:59:b5:93:
2c:a0:5f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 16:02:13 2025 by rpki-client