Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SkOJ_pH5oSTHdvibsh7gfD5-ZHk.cer
File: SkOJ_pH5oSTHdvibsh7gfD5-ZHk.cer (raw, json)
Hash identifier: apI2X92qOkhd4951CjJQhcINdiY6DMmKSt5Xz9DiPOE=
Subject key identifier: 4A:43:89:FE:91:F9:A1:24:C7:76:F8:9B:B2:1E:E0:7C:3E:7E:64:79
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0264D9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916CDAC/82C0AA208F3911F08632A039C4F9AE02/SkOJ_pH5oSTHdvibsh7gfD5-ZHk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916CDAC/82C0AA208F3911F08632A039C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 11 Sep 2025 18:02:47 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 23885
AS: 24185
AS: 38538
AS: 136025
IP: 202.8.26.0/23
IP: 202.46.208.0/20
IP: 203.9.66.0/24
IP: 203.190.176.0/21
IP: 2405:ba00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 26 Oct 2025 18:03:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156889 (0x264d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 11 18:02:47 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A916CDAC, serialNumber=4A4389FE91F9A124C776F89BB21EE07C3E7E6479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2b:78:d2:83:ef:49:54:6d:e5:a7:8d:e6:26:
69:e0:5e:06:af:d2:83:b2:97:f5:37:39:ee:d1:57:
ec:18:7c:0f:11:af:a2:03:a6:e6:a9:fb:95:e1:30:
c9:2b:8b:0a:ba:a0:4a:6f:61:84:b0:7d:ea:1d:7b:
ac:18:27:ff:04:2a:ec:d9:a3:38:4e:2f:c2:b3:e9:
92:47:05:38:bb:2d:77:8a:54:88:1d:99:74:40:87:
7f:eb:2a:bf:df:50:2d:73:72:55:75:0a:34:f1:4d:
1b:37:7e:7b:fa:51:98:c8:09:12:f9:f9:90:25:84:
04:17:aa:77:59:48:15:7c:54:21:a8:7a:62:40:52:
38:d7:58:2b:a9:f4:4b:2a:a2:40:35:3e:f1:5e:1c:
c5:d1:7f:10:ad:49:67:96:52:b4:d6:ac:25:7a:a1:
52:c6:8e:14:99:db:7d:8e:64:97:1f:8d:dd:29:12:
3f:5d:09:2f:c0:b1:69:7f:ba:1d:2e:c3:81:d3:2d:
da:5f:cc:5c:54:91:fc:e3:43:13:ed:79:c5:55:d8:
67:ad:78:c1:c4:b6:7e:2b:c4:8a:d5:8b:0c:57:26:
7e:8d:c9:3a:64:27:54:11:76:38:4e:3e:8b:24:a6:
48:9b:e4:7b:d1:38:bb:01:5d:73:cd:7c:d4:04:6e:
fb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:43:89:FE:91:F9:A1:24:C7:76:F8:9B:B2:1E:E0:7C:3E:7E:64:79
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916CDAC/82C0AA208F3911F08632A039C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916CDAC/82C0AA208F3911F08632A039C4F9AE02/SkOJ_pH5oSTHdvibsh7gfD5-ZHk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23885
24185
38538
136025
sbgp-ipAddrBlock: critical
IPv4:
202.8.26.0/23
202.46.208.0/20
203.9.66.0/24
203.190.176.0/21
IPv6:
2405:ba00::/32
Signature Algorithm: sha256WithRSAEncryption
c0:e5:bc:e7:38:d5:3b:85:b2:1b:cc:88:fd:23:8b:7b:97:48:
bc:54:69:f1:fd:d4:2b:66:98:f0:83:b5:4e:b9:c9:84:47:eb:
cd:02:ed:f0:e5:52:38:6e:80:f4:ce:09:ab:bf:35:82:ac:af:
a1:a3:fd:54:bf:dd:72:b0:d0:57:4a:b6:1e:1f:18:50:a4:a5:
97:ec:7d:91:62:aa:7b:8f:ec:2f:d3:9d:b2:4b:03:a7:4f:eb:
d2:86:96:bc:a4:08:d6:ab:f1:6e:25:bf:38:d7:84:a5:63:62:
61:94:52:92:65:71:d7:a7:93:1b:4a:61:ab:8c:27:22:cf:4c:
93:d6:7c:a8:83:6d:1e:75:96:58:39:ff:8f:ac:20:3c:cd:41:
87:55:ec:b8:0c:51:fd:f0:a9:12:0f:28:dd:29:92:d2:6b:d7:
53:cd:63:32:85:3c:f4:c5:b7:7e:38:de:0b:67:9c:d6:05:ac:
ce:c3:fc:05:e4:cd:68:d9:4c:10:46:a2:98:32:bd:3a:ca:72:
a1:90:f2:39:94:04:3b:23:75:4c:db:fc:b9:fb:90:b6:39:c5:
bf:19:dd:3c:3b:30:43:b3:75:f5:60:bf:46:0b:53:da:5d:33:
7e:e8:04:28:ec:3a:4e:95:45:d2:be:70:13:8a:f1:e8:a0:20:
70:08:f9:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:04:37 2025 by rpki-client