Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmmU0Zdivg-YhPpO8NymbD9TAqg.cer
File: YmmU0Zdivg-YhPpO8NymbD9TAqg.cer (raw, json)
Hash identifier: kdsyhthL8sVpTWgijiCLN/EBDe5jkYMLQnql/MQ+pNg=
Subject key identifier: 62:69:94:D1:97:62:BE:0F:98:84:FA:4E:F0:DC:A6:6C:3F:53:02:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024311
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 May 2025 17:31:38 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 18172
IP: 103.87.255.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 23 May 2025 02:36:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148241 (0x24311)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 1 17:31:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A9157E6E, serialNumber=626994D19762BE0F9884FA4EF0DCA66C3F5302A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1c:2b:c2:9f:bb:7a:53:96:13:0c:61:72:0d:
c1:b3:54:26:8b:67:f9:bb:74:6e:bf:52:c2:57:af:
f0:e1:03:60:b0:91:b0:2a:d8:25:97:08:59:78:97:
5a:da:08:55:aa:7f:0b:e7:2e:84:6b:75:5b:67:16:
d0:f9:8c:5b:c7:49:5d:bd:57:00:3d:11:67:1e:43:
f2:fc:16:e7:34:b2:fb:6d:d1:3e:08:bf:4f:b5:d7:
ab:63:92:ae:ce:37:6b:b2:55:49:47:48:ee:88:09:
38:fa:4d:42:3f:a8:cd:8f:23:0d:be:bb:88:5b:7a:
c2:de:f4:5b:52:06:c8:5e:e5:61:54:24:1a:d5:43:
ea:4f:23:70:ad:83:d2:76:89:52:16:bf:b4:1e:b6:
02:74:70:ed:d8:54:3e:dc:32:fc:2e:43:92:b8:81:
25:d9:78:ca:d8:80:e5:18:e1:69:c0:fc:33:9d:9c:
bd:45:66:cf:0d:cf:dc:a8:d5:c5:99:54:e6:e7:71:
4c:bf:d3:b6:0d:70:56:29:dd:18:e2:6d:62:c5:60:
a2:eb:b5:0c:55:c7:50:43:89:c3:ae:fb:cd:b9:e4:
69:8a:df:8c:dd:1c:01:a6:3c:00:24:3c:0b:e1:86:
3c:f1:86:1c:a6:b3:61:20:7a:8f:03:73:a9:a6:6d:
93:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:69:94:D1:97:62:BE:0F:98:84:FA:4E:F0:DC:A6:6C:3F:53:02:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18172
sbgp-ipAddrBlock: critical
IPv4:
103.87.255.0/24
Signature Algorithm: sha256WithRSAEncryption
05:8d:a1:53:dd:ed:bd:cc:f0:36:ce:25:5b:69:3f:32:bc:48:
9d:9f:5d:4d:de:f2:18:cc:73:62:00:41:fc:92:aa:89:87:92:
0c:c5:ce:83:d7:f5:62:0d:ac:95:e9:ee:6c:98:df:1f:ca:98:
ce:bb:7c:38:1b:ab:5b:6b:3b:ac:ab:5f:3a:ec:c3:7d:82:f2:
bc:64:2b:71:d3:06:b6:aa:29:b4:b3:5d:7d:71:93:04:cf:48:
95:e2:8a:30:1b:af:36:84:91:70:c4:59:e3:a1:64:da:c6:89:
96:31:73:6b:00:a1:c6:10:99:94:5b:1b:6c:42:70:1c:66:35:
6a:ed:e5:7d:64:e8:39:be:d5:c5:9c:34:85:11:f0:04:34:bb:
fa:4a:73:ef:3a:ee:b7:f1:5c:95:89:8a:f9:89:43:c9:5c:3e:
31:97:f0:ad:0a:b6:d3:62:f1:03:69:40:d1:fb:c5:22:72:6e:
25:55:84:08:83:bc:20:a3:9c:ab:a8:42:49:d5:dd:dc:f8:e4:
96:65:0c:c1:11:1d:21:82:9a:90:e1:39:c2:b5:de:36:07:49:
09:11:4d:9a:53:b2:cd:06:a7:86:a7:61:04:77:b2:dd:d3:f7:
ea:c2:81:f4:48:c7:50:35:e7:d2:bd:ad:62:95:55:86:dd:aa:
2a:2f:3b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 05:06:26 2025 by rpki-client