Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYxttID--Lv1xosdQ5bdhfWTwUY.cer
File: DYxttID--Lv1xosdQ5bdhfWTwUY.cer (raw, json)
Hash identifier: flDRvqT/lEKyBI2p5EHiVpz1d1XFLaMOraDnnmpYYu4=
Subject key identifier: 0D:8C:6D:B4:80:FE:F8:BB:F5:C6:8B:1D:43:96:DD:85:F5:93:C1:46
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02424A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/DYxttID--Lv1xosdQ5bdhfWTwUY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 29 Apr 2025 15:16:13 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 45455
IP: 45.112.140.0/22
IP: 103.51.224.0/22
IP: 2407:2d80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 21 May 2025 20:41:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148042 (0x2424a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 29 15:16:13 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A9150A44, serialNumber=0D8C6DB480FEF8BBF5C68B1D4396DD85F593C146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:da:79:c2:d8:67:08:6d:66:2b:37:a2:58:09:
5d:74:3e:4e:8c:7c:21:90:22:c8:7f:88:65:ff:22:
bd:6f:0e:f7:69:d9:bb:84:a9:df:56:b0:66:18:7d:
96:92:16:95:6b:4f:06:25:17:3e:8c:76:f4:03:d5:
cc:d4:b5:b9:90:38:a3:e9:df:16:b9:95:bc:61:e3:
02:66:fc:c5:41:ec:8e:0c:99:fb:00:be:b2:f7:0f:
18:42:bd:3f:6c:af:54:e5:6e:e5:dd:80:f7:d6:83:
40:4c:4b:db:3a:34:cc:5e:c6:83:94:e6:16:e0:bd:
1a:41:6b:7a:aa:85:f3:1b:2c:38:f8:fa:e4:22:10:
7e:4c:dd:bc:56:d7:48:00:c2:8f:c2:28:56:aa:16:
ba:d3:67:86:97:8a:45:f7:cd:20:a0:0e:7e:8f:f4:
54:6f:8a:a1:de:f7:7f:0f:ae:84:a0:a0:7d:16:af:
74:4f:32:05:aa:54:b8:b7:3d:4b:96:cd:97:7b:4f:
9b:4c:47:a9:d9:d4:26:86:d7:4d:b0:bb:90:12:c1:
bf:13:dd:21:d7:1f:fd:2c:d4:92:65:f0:28:c7:73:
6f:18:02:ec:83:1a:a0:d7:51:1d:06:76:95:98:84:
84:7d:13:cb:45:a2:e3:91:cb:d1:59:dc:7e:28:20:
33:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8C:6D:B4:80:FE:F8:BB:F5:C6:8B:1D:43:96:DD:85:F5:93:C1:46
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9150A44/739775CE0A3411E98EE8715EC4F9AE02/DYxttID--Lv1xosdQ5bdhfWTwUY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45455
sbgp-ipAddrBlock: critical
IPv4:
45.112.140.0/22
103.51.224.0/22
IPv6:
2407:2d80::/32
Signature Algorithm: sha256WithRSAEncryption
ce:c7:52:7b:73:94:57:79:33:77:43:35:1c:11:5b:e2:a8:cb:
d9:44:39:b1:e4:39:e9:eb:21:94:7d:37:98:b2:0e:d1:e1:5c:
39:32:83:fa:d4:d6:a3:6a:71:f2:f4:75:79:e6:b1:f8:7d:a9:
1a:59:d7:9b:bb:9e:78:ee:33:7a:e9:4b:43:cb:66:cc:3b:75:
4f:4f:4a:38:f3:ee:65:6f:69:e8:c2:9f:8a:ff:5e:07:dc:27:
cd:f8:0a:12:3e:d5:53:66:38:a1:db:9a:94:0d:b2:7b:8b:ce:
3a:62:86:6e:f2:80:0a:39:4d:e3:05:44:0e:a0:8d:50:31:d5:
09:d2:36:d3:c6:02:59:4f:e1:e5:d2:b6:9f:ad:3a:d7:1e:d2:
9c:57:a9:bb:4b:eb:fc:db:00:52:8b:bc:91:06:13:e4:b3:93:
5c:7c:a1:c7:27:4d:53:a4:f3:f9:55:fd:cc:1f:73:02:3b:34:
58:ff:e4:97:7e:09:5b:d2:b5:ab:21:95:c0:b2:ec:29:e5:69:
82:4f:15:59:00:ca:01:4e:4a:8f:80:3a:15:3e:e8:d7:88:7b:
16:47:b8:40:91:a1:d7:f8:7d:24:dd:0e:37:24:74:f4:ea:24:
6d:a8:e8:3e:24:7a:f2:95:73:11:63:a0:7e:fa:b9:d8:9c:9a:
dd:7b:2e:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 22:56:07 2025 by rpki-client