Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k4ebAOS3-8ASYHB7dtXRIPRbU1s.cer
File: k4ebAOS3-8ASYHB7dtXRIPRbU1s.cer (raw, json)
Hash identifier: 7ATwkEqHnIYUwpUInesLtKXm8W4OTvKNm/Iqv4M9xb0=
Subject key identifier: 93:87:9B:00:E4:B7:FB:C0:12:60:70:7B:76:D5:D1:20:F4:5B:53:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0242C8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911678C/282315D0520011EEAA866B69C4F9AE02/k4ebAOS3-8ASYHB7dtXRIPRbU1s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911678C/282315D0520011EEAA866B69C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 May 2025 00:42:15 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 9886
AS: 151797
AS: 152111 -- 152112
IP: 103.77.210.0/23
IP: 103.122.20.0/22
IP: 2401:3620::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 11 May 2025 18:51:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148168 (0x242c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 1 00:42:15 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A911678C, serialNumber=93879B00E4B7FBC01260707B76D5D120F45B535B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e3:78:bf:7e:6c:12:8e:e0:08:b6:d4:0f:f6:
94:8e:96:7a:6f:a5:10:3b:1b:fc:f1:64:57:85:02:
a5:8a:52:bd:3c:07:11:18:15:ae:b0:d4:e0:3f:63:
86:bf:82:08:1e:f8:e1:53:23:2c:6d:78:a6:57:7c:
b2:17:40:75:ef:18:80:ad:ca:c3:bb:a2:da:1b:11:
7c:09:38:f4:3b:89:6c:79:d8:bd:a2:e4:f6:0b:a1:
c9:2c:4b:b4:1a:c2:48:01:13:d3:f8:98:cf:4b:5b:
4f:98:4f:29:66:26:47:71:de:1c:73:c1:a3:68:65:
93:20:27:bf:89:a6:39:d9:5c:52:df:3b:2d:ea:41:
fd:3a:b0:68:a3:74:ed:88:9e:f7:df:9f:0b:67:00:
84:7e:59:f9:79:41:92:0e:bd:d2:9f:49:05:cb:b9:
95:06:3b:b9:22:e8:a5:c3:a8:2d:67:50:91:9c:dd:
93:ee:f2:d2:fc:f0:94:e1:c2:22:4f:44:bf:53:31:
ab:46:81:34:25:b0:27:02:2e:b0:60:7a:4e:e7:50:
9f:be:b1:0e:f2:21:f1:12:03:28:c6:aa:a5:9d:a4:
d5:14:f3:9c:f4:dc:a2:68:e0:bd:9f:77:df:e3:76:
70:41:07:9d:a9:83:6e:95:5f:db:4f:e7:2b:9f:f3:
b1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:87:9B:00:E4:B7:FB:C0:12:60:70:7B:76:D5:D1:20:F4:5B:53:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911678C/282315D0520011EEAA866B69C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911678C/282315D0520011EEAA866B69C4F9AE02/k4ebAOS3-8ASYHB7dtXRIPRbU1s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9886
151797
152111-152112
sbgp-ipAddrBlock: critical
IPv4:
103.77.210.0/23
103.122.20.0/22
IPv6:
2401:3620::/32
Signature Algorithm: sha256WithRSAEncryption
29:bc:0c:2b:e6:b1:df:48:ea:b9:1e:f6:70:c5:93:3b:ee:68:
66:65:45:51:92:9c:db:10:3c:15:81:31:3c:85:18:ec:7e:8d:
f6:ff:65:6e:2e:3e:0d:37:5e:e8:6c:78:af:21:1f:75:d7:6d:
8c:a9:32:4c:d1:a2:e2:cb:5f:1a:78:2b:93:12:4a:2e:3a:8e:
49:56:36:82:d2:21:ab:a3:33:61:22:d6:4b:c4:ab:e4:be:1c:
fc:63:3a:1d:8b:c9:f9:e3:0c:8b:2e:32:71:38:5f:c3:90:3e:
38:0c:41:53:92:c9:c3:a8:54:0c:53:c4:f3:cf:73:5d:99:38:
66:db:dd:ef:7b:cb:90:c2:10:aa:dc:94:20:f5:d2:9f:55:04:
bb:17:cc:72:0c:a1:60:59:44:be:3e:74:5c:25:1b:c0:c8:85:
cd:b4:48:80:03:a7:5b:76:eb:c0:41:04:33:30:db:4b:36:8f:
2b:e5:cd:71:dd:47:1c:9a:67:04:53:35:6f:fd:ad:61:ea:95:
29:f4:5a:81:e6:0b:bf:0b:74:e5:b5:d7:c9:b3:ae:15:81:0e:
5b:09:f8:c6:1b:a8:2d:66:86:3a:2d:a6:72:84:5a:51:1b:f7:
75:9f:bc:20:d2:72:3e:da:ae:a7:a2:f0:6b:94:e1:a3:7a:3a:
6a:29:01:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 23:48:07 2025 by rpki-client