Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer
File: 2DvcT6zNnbegvEa0JE6jEHBgS5c.cer (raw, json)
Hash identifier: 7KKAt0zMPBi4KcjYpbm5PV5O5mkq3VKE80HZmDgM6Bo=
Subject key identifier: D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0269D1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Oct 2025 14:38:59 +0000
Certificate not after: Tue 01 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 139833
IP: 2401:c860::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 26 Oct 2025 18:03:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158161 (0x269d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 2 14:38:59 2025 GMT
Not After : Dec 1 00:00:00 2026 GMT
Subject: CN=A914F870, serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3b:1c:52:ef:c0:08:55:cc:6b:70:f9:95:d0:
3c:38:5f:02:72:0c:88:a4:eb:f0:c0:c2:42:93:76:
91:d3:3d:a5:ec:97:e8:3f:e5:2b:a9:6a:e9:91:17:
d0:15:be:b4:73:87:02:2f:d4:25:d0:4a:6c:de:ac:
9c:e3:6e:45:14:87:14:3e:32:32:56:d5:8d:59:e6:
e1:5e:dc:9f:05:ef:4b:69:07:b0:23:88:9f:45:87:
13:bd:dd:ba:9f:72:93:77:df:2d:34:46:0e:dd:17:
bd:49:7a:0d:b7:d2:e8:28:5d:37:b8:12:3c:74:7d:
b4:30:d0:97:f4:7a:37:a9:06:3d:57:80:d1:fc:56:
02:3d:29:93:74:79:b1:e9:f0:52:e2:f1:e6:bf:7f:
78:e1:4c:47:a2:59:d1:75:10:c5:73:7e:e0:ce:50:
7b:c5:b4:01:5b:71:77:68:96:7c:e5:8e:4e:e1:00:
2f:5a:21:35:b7:28:af:01:97:03:7c:29:af:37:ad:
6d:16:01:e7:87:21:b7:e3:52:b3:dd:bf:85:b5:cf:
43:e4:fb:8d:6f:3d:a0:95:99:aa:0c:d6:ac:c5:b9:
9e:4b:c2:f0:21:a4:80:e1:9a:9e:6b:85:8f:c4:2e:
27:3f:1f:f4:6d:21:b4:f0:4f:b5:9c:04:b1:0f:2e:
19:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139833
sbgp-ipAddrBlock: critical
IPv6:
2401:c860::/32
Signature Algorithm: sha256WithRSAEncryption
4b:3b:9b:a0:77:f9:60:67:d3:96:e2:74:e1:57:1a:c0:10:ea:
c9:2c:1b:46:74:ac:10:1a:3f:b3:5d:c5:a5:9a:97:f6:ee:d6:
c1:9d:18:c1:98:37:75:2c:53:2e:70:03:8b:c8:a4:8c:81:0a:
0d:aa:47:d9:8f:3a:50:67:f0:a1:ef:6a:15:18:63:4b:ba:17:
2d:11:23:7c:a0:7f:7d:ff:8c:0f:fc:a7:31:8e:a2:b9:a0:9e:
4a:38:5a:39:22:4b:bc:9d:79:5a:ba:75:12:fe:fc:52:86:c2:
bb:fd:cf:bc:e4:62:ca:99:5d:e3:af:b5:58:15:e8:a5:4b:1a:
8d:5d:9c:f9:fa:dd:b5:fd:f7:92:f0:e2:b4:67:71:ae:a4:11:
fc:bd:a5:0a:86:d0:87:98:09:ce:e0:75:5d:e4:c6:21:9f:ea:
57:05:24:8c:77:2a:85:42:c3:db:15:a4:ca:40:b5:5e:6e:54:
3a:3a:c1:92:99:c7:53:18:65:be:d0:66:c4:34:3b:33:d5:e3:
c0:fb:1d:c0:84:5a:ba:64:64:d0:5b:5a:0e:cc:ff:21:66:c3:
1e:7d:0f:d4:3a:e7:89:de:42:35:b6:ac:d0:79:3e:80:3a:2e:
68:b7:b7:de:f4:e1:e2:17:4a:82:be:00:27:a1:7a:2b:0d:bb:
ae:85:78:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:13:23 2025 by rpki-client