Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer
File: tg1afDY_D02TL-MXuQzmz4DSg8k.cer (raw, json)
Hash identifier: RcoiQQpNNAmaLIf4tPo2izN12hSN/ARr5JIui4aStG0=
Subject key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0244AD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 07 May 2025 12:29:29 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 140042
IP: 103.147.200.0/23
IP: 2405:bfc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148653 (0x244ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 7 12:29:29 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:73:3d:76:28:c8:4c:4c:66:5a:66:89:78:ab:
0f:cb:78:dd:0c:e3:f3:85:5d:d4:8f:04:3d:44:24:
7c:99:44:31:ee:ad:78:ed:49:b7:c3:7c:2e:2f:88:
fc:2f:5a:0f:c6:92:59:79:14:37:d2:e9:53:93:13:
a2:7d:55:cb:04:c2:a5:a5:16:84:03:55:c7:62:48:
b3:81:93:f9:07:b3:58:f7:0e:0e:2e:59:78:5b:d2:
20:37:c7:43:85:0d:14:50:34:53:25:9b:c9:c3:9f:
e5:b5:b9:7c:49:c8:48:54:43:ec:7f:64:2e:38:05:
d7:90:ed:b1:a0:4e:74:b6:3e:b2:5f:74:7e:49:69:
c1:ee:47:b4:dd:63:fd:3c:f4:41:b6:fd:e8:82:ec:
ff:36:50:02:c4:0a:28:0e:ec:15:ac:d3:cd:19:f3:
a3:cb:f3:79:50:d6:d2:29:17:c8:c0:22:93:80:d9:
93:bb:63:53:7a:54:43:fd:eb:00:5b:b5:80:d2:52:
c8:23:2c:4e:22:85:ce:9c:6e:4c:85:60:fc:f1:ac:
05:cb:b8:82:44:87:9b:37:16:07:73:16:9d:db:2b:
c1:3c:39:ca:2b:c6:88:1b:64:79:6d:69:6b:10:53:
cb:da:67:14:bd:d4:79:f7:dd:81:c0:25:34:0c:40:
21:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140042
sbgp-ipAddrBlock: critical
IPv4:
103.147.200.0/23
IPv6:
2405:bfc0::/32
Signature Algorithm: sha256WithRSAEncryption
6a:f4:f5:70:93:a5:ed:0c:4f:d7:14:aa:5d:1a:e0:e9:31:e5:
2e:d1:2e:42:60:67:32:c5:5c:5d:e2:0f:a7:16:b4:6d:5b:cb:
ff:70:2b:a3:af:c5:46:1a:a8:5a:af:83:3d:96:f9:1f:3d:de:
08:ec:58:58:b3:07:d9:ce:8b:91:a2:34:a0:4a:2c:e4:3d:ed:
d7:07:30:5a:c5:c7:0a:a8:ae:e4:38:45:0d:cd:e1:d9:9f:f5:
c0:60:01:c1:7f:8f:24:fb:1c:4b:3b:ac:d3:ef:d4:43:e8:29:
42:fe:03:00:b6:b0:fa:5f:88:f0:0c:c3:23:80:93:06:c0:2f:
37:06:65:da:24:52:45:a6:25:82:c8:3f:9f:e4:30:ce:cb:33:
ec:72:a0:8f:e9:e3:97:a7:6d:ea:22:f0:83:53:47:ff:20:91:
87:6b:c7:69:c9:1c:83:d0:56:65:cd:5e:a0:e3:d3:07:b2:03:
0b:19:e9:ac:1b:b1:48:ce:35:ad:ad:d6:f1:23:33:a8:37:22:
2b:c8:8c:27:63:d8:1d:00:ee:13:bf:a7:4d:d8:73:f3:a6:3b:
f2:0d:3e:28:c7:44:39:5e:44:a4:f0:f0:09:14:94:21:18:01:
fc:21:9e:42:aa:7d:88:47:62:d8:3c:84:a6:63:9d:8c:58:7f:
7d:4b:e5:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 09:00:32 2025 by rpki-client