Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer
File: vY9TgeGI5FgPskcsJxoFQp4tXCI.cer (raw, json)
Hash identifier: HUTmj6vyowpSuc4F5tQVPDMp0fRpp8neWEqz+aZSP68=
Subject key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02474A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 19 May 2025 15:08:32 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 135379
IP: 43.251.84.0/22
IP: 103.216.56.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149322 (0x2474a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 19 15:08:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A915D66D, serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4c:db:9b:69:0e:1d:bf:b0:d9:85:af:f3:68:
cf:ec:e6:c7:1f:58:b9:2b:dc:ca:b8:89:52:71:5f:
fe:fd:e4:96:13:1c:c4:ba:98:22:4b:1d:80:fb:af:
b5:70:38:86:d8:cb:f9:ed:82:42:e1:14:0d:f2:d7:
47:be:5e:e9:da:f9:9e:e4:78:e7:37:cc:e6:43:67:
7f:d4:be:c9:e6:16:bd:60:04:cc:80:ef:57:c1:18:
01:43:56:d0:b7:fb:20:3a:47:86:54:c6:e4:78:e1:
60:89:69:87:b0:da:81:a7:39:f4:cc:0b:ff:1b:4f:
a9:54:39:b6:47:c5:e3:d6:cf:6d:a2:bb:56:87:b5:
f3:83:c0:e3:c4:d4:c5:2d:cd:4c:bd:6e:6c:c8:92:
b0:c2:ae:5f:97:5b:e4:9b:71:f0:d0:ed:ee:9d:26:
f3:ad:ca:56:5c:4f:d5:b8:4d:f4:8f:50:58:c3:45:
62:04:44:87:b7:7f:e0:5d:b5:a3:1b:69:fc:68:bd:
05:1b:ce:83:9b:ff:56:43:f9:9e:58:81:ad:79:3a:
1c:b2:af:ec:fc:92:0e:25:68:4b:25:13:56:d7:bd:
32:16:8e:7f:5c:b2:94:54:9f:da:4f:64:3b:a7:ef:
bf:9b:f5:5c:f6:8a:df:57:1c:08:b1:9c:cf:d7:c6:
42:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135379
sbgp-ipAddrBlock: critical
IPv4:
43.251.84.0/22
103.216.56.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:13:a7:42:77:11:8b:c1:06:ef:c7:4a:b3:d2:1a:25:fb:cb:
f4:fd:f9:08:77:f8:9f:84:aa:ea:19:fb:37:c3:d7:f9:19:f1:
24:3c:17:33:fc:d4:8e:7f:17:19:5e:8c:9f:fd:c8:cc:14:f6:
7f:a1:09:cd:0b:40:2f:2d:a1:28:e9:5a:bd:18:c1:0c:0c:2b:
fe:4f:e7:c8:0d:ca:fd:19:71:b6:2f:66:3e:d8:64:9d:52:e8:
95:57:bc:d7:c9:33:79:47:a8:03:b9:81:e1:fc:af:60:0a:71:
7a:7e:f0:2f:70:be:81:a5:d5:9a:ba:61:6a:5b:25:04:c7:df:
25:0a:13:ed:a6:eb:18:e7:e6:cd:cb:d4:83:ee:0b:d0:ee:ae:
fb:3b:1f:8a:02:f2:0c:87:14:c2:6a:22:4d:85:88:96:cb:d5:
5f:a0:09:f9:d0:ef:21:8f:f3:97:cb:64:d8:88:e2:f5:1f:03:
75:2d:6e:c2:02:0a:eb:71:b1:bc:3c:e4:39:d0:8d:2a:ca:3c:
ae:ee:86:99:10:3a:d5:b3:80:eb:69:49:9e:f3:a6:c3:b4:20:
22:3b:d8:99:05:82:71:e7:02:ae:cf:a9:de:12:f6:ba:92:24:
6c:b2:fd:ed:03:87:de:20:18:c6:80:ab:71:5c:b6:3a:1c:95:
66:8b:6f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 08:38:35 2025 by rpki-client