Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t_5qQk21ZSYbRzpxIx1Z4hjcRQQ.cer
File: t_5qQk21ZSYbRzpxIx1Z4hjcRQQ.cer (raw, json)
Hash identifier: l+5RW6dVtSplai/h0MGh/690t8H8GdbnLgv56X1BiYQ=
Subject key identifier: B7:FE:6A:42:4D:B5:65:26:1B:47:3A:71:23:1D:59:E2:18:DC:45:04
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025E35
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A9197/4F3C798A069D11EEB8798D14C4F9AE02/t_5qQk21ZSYbRzpxIx1Z4hjcRQQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A9197/4F3C798A069D11EEB8798D14C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 Aug 2025 03:38:50 +0000
Certificate not after: Sat 31 Oct 2026 00:00:00 +0000
Subordinate resources: AS: 140942
IP: 103.153.172.0/23
IP: 2401:d720::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Aug 2025 11:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155189 (0x25e35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 19 03:38:50 2025 GMT
Not After : Oct 31 00:00:00 2026 GMT
Subject: CN=A91A9197, serialNumber=B7FE6A424DB565261B473A71231D59E218DC4504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f5:85:a4:f7:88:72:60:91:e6:02:66:84:ee:
45:73:de:55:c2:49:2a:4d:05:58:49:51:65:2e:66:
6c:2c:83:6e:5b:da:8c:12:10:f1:fe:bd:01:3b:e1:
79:fb:ef:19:ab:d1:e0:d7:8e:df:b7:2a:e4:29:a5:
be:95:cf:6c:0a:e4:2f:7a:78:70:47:f6:07:5f:5d:
81:70:d9:c5:94:fa:fa:b1:57:18:27:58:42:c7:f6:
26:15:b8:67:29:02:77:08:55:c6:67:94:b8:63:85:
66:2c:56:95:d5:4d:a1:1f:2a:67:9e:59:db:63:ee:
ee:ef:fa:fd:d4:3a:aa:dd:ab:ef:be:e8:93:f9:b0:
b0:02:32:5f:87:1e:7c:ce:2f:3a:ed:51:1b:b8:10:
8f:f1:c0:f0:e4:77:b4:ea:a9:ae:9f:e6:84:3e:8f:
dc:f6:46:ec:24:ce:3c:b2:3a:ab:b9:7e:68:71:10:
26:4d:77:74:24:64:a1:f7:0c:52:da:bc:6d:38:69:
ed:d4:b8:56:9d:59:89:e8:49:18:69:c4:f0:a3:76:
34:ac:cf:96:db:b7:f2:44:82:84:b6:90:6a:6a:40:
bd:02:80:ac:1a:46:61:cd:83:fe:db:ea:fc:d6:65:
1a:f5:d8:b6:74:90:d0:8d:46:0f:b6:25:04:09:3b:
39:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FE:6A:42:4D:B5:65:26:1B:47:3A:71:23:1D:59:E2:18:DC:45:04
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A9197/4F3C798A069D11EEB8798D14C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A9197/4F3C798A069D11EEB8798D14C4F9AE02/t_5qQk21ZSYbRzpxIx1Z4hjcRQQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140942
sbgp-ipAddrBlock: critical
IPv4:
103.153.172.0/23
IPv6:
2401:d720::/32
Signature Algorithm: sha256WithRSAEncryption
14:1d:9b:60:a3:5b:11:63:e8:93:6e:c6:f8:b3:7b:c9:a1:69:
f4:c6:8d:67:ef:9b:7e:4e:e1:45:68:53:4d:9f:25:84:bf:90:
13:ed:01:2a:4e:de:a0:82:da:fe:3a:eb:1f:51:96:97:15:7a:
b5:39:14:a4:9d:4c:41:68:9b:91:e3:00:36:0f:8a:05:88:ef:
86:b9:90:00:0a:31:bf:09:04:e7:d3:09:f7:d3:01:0a:54:ee:
1e:56:44:12:ab:85:24:2c:cb:50:c4:27:37:99:51:ca:03:a8:
3d:98:a6:80:67:41:08:69:47:d2:06:ba:de:c1:e5:ab:97:cd:
b3:7e:9d:f4:43:6f:21:14:18:6d:4a:d3:22:96:6c:63:45:eb:
e4:f2:ff:75:78:2c:05:6e:dc:ea:0e:14:9a:d7:e7:0f:41:e0:
31:f9:19:52:85:a6:04:52:96:bd:43:75:98:13:00:c9:91:21:
a8:2d:77:75:5c:e9:f3:2a:e6:76:47:3a:58:3d:d9:b3:88:59:
c9:17:65:6e:03:0e:2c:03:ec:b8:39:ed:4f:92:4c:59:c7:3c:
2d:5b:b2:d7:de:00:cb:e7:3f:d5:9d:8e:c2:7e:e4:9f:c4:af:
1f:37:e4:1f:8f:88:56:79:fd:48:bd:17:b4:fd:76:ff:e4:ea:
50:1c:86:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 22 14:28:21 2025 by rpki-client