Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer
File: xvdY7N3EybD3LwZcNa1UaXQycRs.cer (raw, json)
Hash identifier: XM1vrTqo7pZWJgANGUCFFXSRe7S5PgRFvb6F4hcpDrM=
Subject key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0248D1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 May 2025 22:04:42 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 142046
AS: 151188
IP: 103.224.92.0/24
IP: 103.244.163.0/24
IP: 2001:ded:c000::/48
IP: 2001:df2:45c0::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 07:11:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149713 (0x248d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 26 22:04:42 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f3:58:9a:1e:d7:27:81:88:4b:65:c3:49:b6:
db:29:3c:5e:87:7c:2a:61:eb:32:24:2b:72:94:fd:
cb:91:cd:67:62:24:40:86:7a:48:80:17:4f:43:89:
c5:44:cc:3d:9d:5e:57:ec:a6:84:d7:bf:d1:46:4e:
3c:8b:69:2a:ee:79:2f:0b:2b:9a:40:40:89:e2:19:
98:bc:ae:d0:ca:d3:ec:9e:bc:b7:4d:8e:12:40:d1:
e2:ff:16:31:d3:01:1c:81:bf:ea:f0:aa:2d:75:94:
f0:67:06:93:ee:6c:26:73:2f:74:e0:61:f2:1f:3c:
17:9f:9e:62:de:d9:a3:bd:92:26:e5:9c:f5:69:9b:
12:f4:be:43:56:42:5e:6c:c9:a3:ee:69:b2:c8:17:
ce:42:11:fc:91:68:bd:3f:47:c2:89:fb:e3:7d:4c:
02:78:da:5a:0d:ed:12:a2:ca:f6:07:fb:9b:b2:bf:
ec:b5:3b:be:b0:7d:a3:89:81:df:50:c2:4d:67:c8:
bf:26:1e:7d:ff:bf:00:7a:97:71:4b:56:e2:b0:70:
9b:7d:85:5f:bb:be:13:b5:e2:3d:91:51:13:4b:8a:
f1:ac:fb:82:e6:fc:36:ae:d5:6f:80:84:35:4e:1a:
96:34:c4:e9:27:0d:c6:16:df:16:0f:01:a7:43:fd:
9f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142046
151188
sbgp-ipAddrBlock: critical
IPv4:
103.224.92.0/24
103.244.163.0/24
IPv6:
2001:ded:c000::/48
2001:df2:45c0::/47
Signature Algorithm: sha256WithRSAEncryption
9d:5d:05:52:3e:06:30:c2:20:33:d7:16:6e:dc:0e:c8:13:c6:
b8:85:2b:85:a8:4f:e5:92:77:3a:31:bd:b2:58:47:ce:c3:36:
f7:fc:88:21:83:7a:91:49:f9:35:da:a9:db:3c:a6:53:0a:48:
f1:44:ab:3c:f5:67:44:b5:c3:c2:fb:56:c1:75:08:40:f1:50:
d0:88:3b:75:d8:7e:8b:d3:5b:cd:13:9d:70:56:8a:95:c5:28:
dd:d8:7f:e1:44:2e:f2:cf:e6:d4:be:aa:dd:a7:f0:f8:17:f4:
7d:9e:f1:5c:0f:ee:b5:f3:23:51:22:0a:ca:12:d0:f6:2f:e6:
23:12:6c:34:51:c9:6d:f7:e1:c0:de:17:27:8d:c5:13:0a:07:
6a:c0:c2:35:6d:3e:15:6c:a5:f5:59:13:34:e8:21:6d:d9:6c:
df:06:41:56:86:63:f8:0b:8f:78:01:c9:70:8f:36:91:22:07:
66:be:0e:45:93:67:45:f3:6c:82:0f:06:32:a8:c7:3b:ba:03:
dc:c6:6b:6d:da:1e:d1:d0:96:03:a3:58:32:b2:b3:48:55:ff:
11:8f:67:15:e7:b6:f9:d9:a9:63:d6:c2:2c:d9:2f:d5:62:9b:
00:51:ef:74:0d:21:35:ca:21:3f:dc:bd:c8:a7:01:da:1c:e7:
dc:a9:e9:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 09:28:23 2025 by rpki-client