Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.cer
File: wxYxlYXuLPJHtTUDcUZ9wmncnOU.cer (raw, json)
Hash identifier: svieEB4Ne6mziCu54UJeTJZfxXwNK3j9V1Vf6eXiE1Q=
Subject key identifier: C3:16:31:95:85:EE:2C:F2:47:B5:35:03:71:46:7D:C2:69:DC:9C:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025231
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Jul 2025 17:29:22 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 9927
AS: 58706
AS: 58884
IP: 45.64.120.0/22
IP: 58.97.160.0/19
IP: 103.21.12.0/22
IP: 202.57.32.0/19
IP: 2405:d400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 09 Aug 2025 03:03:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152113 (0x25231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 1 17:29:22 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A91619BE, serialNumber=C316319585EE2CF247B5350371467DC269DC9CE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1e:53:4e:f9:7b:7b:19:d4:73:7a:e6:2b:18:
4c:65:2b:6b:cb:9d:cb:67:b4:6e:d1:de:ff:13:ca:
eb:d7:7f:22:fa:b7:4b:b9:22:25:85:eb:70:2f:6e:
2f:a3:fe:be:69:19:7b:c7:ee:f5:5d:7c:2a:33:a6:
83:4b:16:ef:ad:49:e9:cd:9c:b7:ba:5d:ee:d1:72:
35:33:18:54:f1:56:94:d0:fb:58:5e:18:0d:be:2f:
6f:d0:9f:84:6c:e1:bd:8d:9e:76:f5:ee:8c:10:51:
35:6e:33:06:e1:fa:61:c2:98:a4:44:d2:51:a7:75:
6d:aa:71:14:a9:10:27:b5:67:14:40:04:d3:62:18:
82:bb:3c:50:b7:0c:24:23:2a:b9:f9:ed:50:df:37:
9f:fc:06:29:b1:74:7e:7e:3e:90:bb:0a:ce:e8:83:
18:02:b5:b6:e2:31:59:d8:9c:fc:ec:c0:f6:bc:d3:
ad:ba:3d:56:28:e2:09:05:25:fa:10:e6:64:97:df:
f3:55:bb:ec:8d:75:e1:15:a1:fb:e8:03:c7:1d:10:
76:96:1d:cb:b5:f0:af:68:aa:2a:8e:a4:69:72:fb:
44:a8:17:96:93:be:75:e5:76:64:ac:f7:fd:df:8b:
a6:c1:43:31:f4:6c:06:b3:3e:68:54:43:ed:e0:69:
2a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:16:31:95:85:EE:2C:F2:47:B5:35:03:71:46:7D:C2:69:DC:9C:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9927
58706
58884
sbgp-ipAddrBlock: critical
IPv4:
45.64.120.0/22
58.97.160.0/19
103.21.12.0/22
202.57.32.0/19
IPv6:
2405:d400::/32
Signature Algorithm: sha256WithRSAEncryption
83:83:69:ad:7a:ad:8d:f2:92:0a:f0:f3:cc:b8:cf:dc:f2:a1:
35:b4:c7:ce:b2:5a:e9:11:ef:f7:19:3b:76:8d:fc:8d:48:68:
ec:d2:10:d7:fa:28:a8:7a:c0:33:06:f5:57:c2:57:0f:87:98:
7c:5c:78:34:61:25:76:89:c9:09:f9:08:48:d0:a4:a6:ea:45:
80:12:4d:46:ef:6c:f4:5e:cc:11:a3:94:5c:15:8d:22:1c:9b:
b9:5f:4b:c1:a2:78:4e:52:71:9c:26:0d:2c:c0:08:44:7d:5d:
d6:7c:39:16:5d:88:d2:41:21:9c:d7:d3:e1:63:d2:30:0a:76:
34:c0:d8:23:33:ed:5a:a9:38:71:2c:88:35:17:75:d0:d1:d6:
c8:4c:bf:66:0a:e9:0e:b3:b7:5e:eb:85:a7:1b:87:dd:6e:1e:
41:f1:ec:82:77:ba:c7:a4:3f:38:56:11:b4:13:96:06:5c:d7:
7b:45:b6:59:3a:39:96:e8:66:83:3b:00:3c:ce:2a:1b:ca:74:
5f:19:e9:0a:73:6b:fc:ef:e3:9a:be:86:de:1c:a7:88:2d:c3:
16:f3:b2:d6:c9:52:82:02:76:96:c6:f9:c9:97:64:ea:9d:50:
71:2d:73:de:19:9a:cf:6e:d0:4f:44:41:bb:75:f2:21:c0:ac:
37:5f:ce:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 2 07:00:34 2025 by rpki-client