Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAJQ9jg2-0wvI_SH1xS_MvdZpbU.cer
File: YAJQ9jg2-0wvI_SH1xS_MvdZpbU.cer (raw, json)
Hash identifier: LIawwENEaB4z7bzygXaYp5s+IP9u1iIfnI/0yBHyjDU=
Subject key identifier: 60:02:50:F6:38:36:FB:4C:2F:23:F4:87:D7:14:BF:32:F7:59:A5:B5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025120
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917799C/35EBD8E8554411F09342AC0CC4F9AE02/YAJQ9jg2-0wvI_SH1xS_MvdZpbU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917799C/35EBD8E8554411F09342AC0CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 29 Jun 2025 23:53:14 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 141684
AS: 151496
IP: 103.161.252.0/24
IP: 2001:df5:db80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Jul 2025 03:15:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151840 (0x25120)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 29 23:53:14 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A917799C, serialNumber=600250F63836FB4C2F23F487D714BF32F759A5B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:dd:c1:d3:d7:27:40:61:b4:af:50:3c:8c:bd:
64:16:75:ba:50:15:cc:7e:06:a3:ac:38:ff:de:27:
c4:80:13:f7:ce:8d:9f:89:d4:84:e6:67:a3:1c:a8:
de:fd:21:5a:c9:ad:88:0e:e9:3e:7c:67:77:cd:07:
d4:e4:6b:e7:b3:d6:7a:64:c0:4f:4d:cb:d6:00:13:
89:9d:2a:ec:14:aa:33:60:16:76:b4:af:06:95:70:
a7:57:a7:5f:6e:39:2c:85:0a:cc:0e:ca:37:4e:b8:
45:05:82:29:5d:e9:5c:d1:86:cd:e9:1e:ab:81:25:
d2:71:34:34:aa:3c:e1:b4:8f:56:75:31:9c:91:d7:
6d:44:4b:12:e1:c0:4c:78:70:4d:cf:92:35:de:40:
2a:0e:40:85:b4:27:1d:c1:ef:cc:e5:9b:ee:9a:97:
8b:81:4c:db:6d:77:bc:51:93:22:b9:87:c1:7d:d4:
8a:6d:ed:14:19:38:5b:bf:f9:50:a0:bb:81:51:23:
05:7c:1e:04:17:8b:6e:c8:1e:ad:c1:11:66:a3:8d:
4e:eb:ea:fe:25:da:c2:35:80:33:5c:f5:86:83:7f:
29:12:cf:f9:67:1d:9b:c7:51:b1:30:c5:b2:9c:fc:
8f:12:62:ab:af:65:87:82:63:53:58:7a:30:b3:f7:
c7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:02:50:F6:38:36:FB:4C:2F:23:F4:87:D7:14:BF:32:F7:59:A5:B5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917799C/35EBD8E8554411F09342AC0CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917799C/35EBD8E8554411F09342AC0CC4F9AE02/YAJQ9jg2-0wvI_SH1xS_MvdZpbU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141684
151496
sbgp-ipAddrBlock: critical
IPv4:
103.161.252.0/24
IPv6:
2001:df5:db80::/48
Signature Algorithm: sha256WithRSAEncryption
96:0a:c3:ce:3a:87:9c:6a:33:b7:cd:82:6d:9e:51:35:1b:e7:
1f:a4:24:f6:c9:3f:35:78:40:92:a5:46:1e:3d:de:dc:4b:09:
0a:27:95:50:29:2b:88:aa:25:1d:f3:27:55:89:3d:8c:a6:29:
86:dd:91:19:ca:76:7a:b6:31:e8:26:4c:e1:e1:e2:85:11:e2:
20:60:1b:91:57:bf:70:ad:aa:1f:1c:ee:66:85:4c:e1:80:c9:
ed:f4:01:f3:12:cf:1e:1f:d8:ca:f4:3e:c5:ca:df:0e:ba:04:
cc:a2:3c:08:d1:5e:71:71:ac:10:14:6d:26:78:7b:38:8f:0f:
04:3a:80:79:4a:81:c0:52:31:12:82:7a:25:43:b1:90:5b:6f:
3f:ef:d5:83:ad:4f:53:13:f6:eb:39:cb:bf:f7:09:e4:0f:ff:
f5:ff:aa:c6:f1:c3:f3:2f:91:d2:96:26:76:fd:0b:7c:b2:20:
ee:04:d2:0e:33:ac:ae:87:a0:e7:21:e5:61:6d:79:e9:0a:d5:
c8:21:b7:9d:ae:5a:d1:5c:b1:35:b2:78:0a:2d:ca:c0:11:d2:
49:08:39:81:b4:d4:10:94:ba:b1:21:14:17:8f:b6:98:53:41:
9b:12:73:06:0b:54:b5:50:f3:d5:d1:c1:01:6e:42:cc:3a:27:
24:75:50:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 11:29:16 2025 by rpki-client