Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKUVwakT2JtBNGdMhnzua0muFJ4.cer
File: eKUVwakT2JtBNGdMhnzua0muFJ4.cer (raw, json)
Hash identifier: cMPJimCUhxwanE9cyjQu846pYqyUuce/Z6wiBallrLw=
Subject key identifier: 78:A5:15:C1:A9:13:D8:9B:41:34:67:4C:86:7C:EE:6B:49:AE:14:9E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A470
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki-rps.cnnic.cn/repo/A1055385718764929025/0/78A515C1A913D89B4134674C867CEE6B49AE149E.mft
caRepository: rsync://rpki-rps.cnnic.cn/repo/A1055385718764929025/0/
Notify URL: https://rrdp-rps.cnnic.cn/rrdp/notification.xml
Certificate not before: Mon 16 Mar 2026 03:28:26 +0000
Certificate not after: Wed 31 Mar 2027 00:00:00 +0000
Subordinate resources: AS: 132617
IP: 103.245.23.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 Apr 2026 14:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173168 (0x2a470)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 16 03:28:26 2026 GMT
Not After : Mar 31 00:00:00 2027 GMT
Subject: CN=A918C4250000, serialNumber=78A515C1A913D89B4134674C867CEE6B49AE149E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:98:ab:97:a3:3f:66:de:b3:bf:b1:a6:b8:ca:
87:70:a3:f9:78:b5:5c:76:21:dc:ee:e9:d2:7c:f0:
14:0a:cb:ff:e5:15:bb:10:59:8b:88:59:69:04:07:
da:c4:35:2c:58:4b:d2:62:cb:70:16:de:e4:0b:0a:
a2:f9:15:41:27:a4:70:a1:87:7a:d0:72:e5:25:2a:
81:71:14:3c:f4:77:e3:46:4c:e1:a9:76:e4:e2:cf:
ab:e1:77:05:e0:24:eb:87:96:95:e1:b3:4d:b6:dc:
97:4d:cf:da:bb:26:e5:c1:c0:b1:de:6d:4a:9a:4c:
a3:39:82:3b:ab:24:ca:07:1f:97:90:b6:78:33:c4:
75:a8:90:c5:84:f2:92:d2:ed:a7:2a:bc:0e:11:f0:
72:e7:64:b0:4f:e1:7e:11:0a:54:62:bd:47:73:7f:
1e:95:6f:42:34:0a:a1:41:a0:8e:b2:7a:0c:b3:90:
99:c9:a7:d7:87:74:4e:03:78:6e:f5:41:2c:0d:a1:
ce:6c:18:04:fe:45:fc:84:62:00:37:34:82:b1:d6:
fc:73:17:af:d8:b2:6c:cd:fc:a5:46:83:20:4b:9d:
b4:ef:92:2c:be:1e:4f:a8:8a:89:26:a8:a7:f6:0c:
bf:32:ab:1e:c9:d5:fc:fc:5a:8c:bd:65:94:a5:09:
b9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A5:15:C1:A9:13:D8:9B:41:34:67:4C:86:7C:EE:6B:49:AE:14:9E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki-rps.cnnic.cn/repo/A1055385718764929025/0/
RPKI Manifest - URI:rsync://rpki-rps.cnnic.cn/repo/A1055385718764929025/0/78A515C1A913D89B4134674C867CEE6B49AE149E.mft
RPKI Notify - URI:https://rrdp-rps.cnnic.cn/rrdp/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132617
sbgp-ipAddrBlock: critical
IPv4:
103.245.23.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:b5:a2:ae:95:88:61:c8:71:63:6f:22:12:f3:93:30:d7:fa:
9d:bc:65:d5:fe:67:b2:9a:ee:f7:7f:e6:8c:3a:12:3c:f9:13:
01:6b:f1:3e:f8:42:43:e9:17:3c:2b:bb:60:7d:d2:0c:a3:ea:
36:67:5b:e4:a5:cc:b9:d7:af:9f:0e:d0:c6:ba:26:f3:c7:55:
d6:30:25:9b:89:51:69:83:1b:d7:31:ae:13:0c:35:30:9f:dd:
b1:05:62:02:6e:e3:f6:5d:8d:b5:90:bb:14:c6:6f:ff:e1:09:
be:eb:79:24:84:7c:5f:8d:9f:23:a5:2c:a8:a3:49:19:f6:6a:
99:12:66:be:fa:c5:a2:b7:ee:e2:a2:e5:fd:ca:1c:fc:de:0f:
4c:74:ae:cb:bc:28:07:62:c1:b6:f8:61:8b:10:1e:fd:3f:e6:
9d:62:fd:f7:35:6a:e9:9e:0c:f7:4b:f2:10:c9:ab:3f:f1:28:
9f:9b:1c:11:c4:4a:e5:95:af:48:33:ae:48:52:5d:dd:36:b5:
35:8e:a1:3b:56:a8:43:ec:df:78:5c:f1:b4:e1:80:34:f8:af:
01:5d:fb:c7:c6:d1:6e:4e:28:e3:c3:a4:5f:c9:74:55:eb:1a:
42:5e:cb:d8:ce:d6:dd:a9:c5:94:50:6d:25:a5:a4:77:45:35:
98:3c:e4:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:49:56 2026 by rpki-client