Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKBb-WKVthwuROndPExIxFm56Vw.cer
File: rKBb-WKVthwuROndPExIxFm56Vw.cer (raw, json)
Hash identifier: TZdtyc3zhcrolffyVndafYTPVUC2E9l+jBPcS6s89JE=
Subject key identifier: AC:A0:5B:F9:62:95:B6:1C:2E:44:E9:DD:3C:4C:48:C4:59:B9:E9:5C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026256
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91547EC/2E65979687DD11F0B74CFE76C4F9AE02/rKBb-WKVthwuROndPExIxFm56Vw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91547EC/2E65979687DD11F0B74CFE76C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Sep 2025 09:14:13 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 137866
IP: 2001:df0:f1::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 26 Oct 2025 18:03:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156246 (0x26256)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 2 09:14:13 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91547EC, serialNumber=ACA05BF96295B61C2E44E9DD3C4C48C459B9E95C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cc:80:88:ac:30:0f:47:4e:7d:e7:58:b5:84:
06:01:12:c2:11:ee:94:08:7c:16:64:34:4f:96:51:
95:f7:d1:a0:b7:69:dd:f4:5a:b9:b3:33:b5:79:e3:
6c:34:b3:45:c1:0a:b1:1a:d5:ca:c4:f7:6f:ce:01:
a4:79:6e:7a:d3:87:f5:23:e4:42:15:a5:11:1e:a3:
16:07:fe:be:b0:26:1b:f9:5a:c3:7c:49:78:c8:91:
d8:f9:7b:79:0b:65:ba:e8:d8:04:e5:09:71:70:d7:
41:89:8b:b0:c0:9d:2a:d3:ce:aa:2f:e7:14:f5:c7:
17:fb:13:d5:90:4f:d1:bb:e7:4f:98:08:75:a0:66:
4f:78:c2:7a:e7:41:18:5d:a4:56:c7:c0:9f:60:61:
01:da:d7:d2:b4:a9:c0:f1:a7:e8:77:b4:81:97:f9:
e1:0a:ff:7c:33:9c:b9:39:58:b6:25:f5:b9:a2:04:
d6:f0:c0:92:0b:91:11:7b:5b:d1:16:bf:af:2b:bd:
ed:a5:0c:85:4b:d0:fb:09:92:fb:e8:f4:4d:bc:95:
56:47:74:db:45:13:dc:9c:ca:12:c9:12:e0:74:f0:
28:a0:39:74:4c:cb:7b:43:53:2e:ba:ad:c1:4e:c4:
01:eb:27:de:b8:89:f6:c8:08:b9:ad:04:26:2e:e1:
c7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A0:5B:F9:62:95:B6:1C:2E:44:E9:DD:3C:4C:48:C4:59:B9:E9:5C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91547EC/2E65979687DD11F0B74CFE76C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91547EC/2E65979687DD11F0B74CFE76C4F9AE02/rKBb-WKVthwuROndPExIxFm56Vw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137866
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:f1::/48
Signature Algorithm: sha256WithRSAEncryption
35:73:e7:71:37:a0:83:a0:c5:cd:57:c3:86:49:25:3a:bf:7c:
1e:3d:eb:bb:7e:cb:05:ba:ab:d2:26:a6:ed:4a:16:f2:a8:0a:
a6:c8:ba:d4:5d:29:b7:32:f7:99:f6:05:f9:6a:90:b2:2c:47:
6e:3d:50:31:73:53:30:89:e7:87:23:3e:14:cf:4a:0a:97:bf:
63:50:a5:2f:de:3f:93:45:9e:53:93:b4:a8:34:a3:f1:ac:3c:
60:59:c7:91:eb:1e:35:bc:da:f7:45:c7:d2:3b:9d:2a:75:3a:
c0:0f:bb:21:03:1b:3e:41:34:50:37:e0:ce:b8:84:0e:c4:77:
1e:c4:9a:0e:8d:66:de:23:1f:e5:99:f7:58:da:b2:56:07:38:
a7:7c:ef:75:e5:d7:c5:f9:85:91:06:08:1e:86:d0:c0:62:16:
6f:0e:59:bf:ff:01:0f:9f:c1:9e:69:ce:ed:b3:d0:44:a7:7c:
10:61:9a:d5:a0:52:b2:cb:6b:d8:5d:e2:8d:c9:2c:74:7a:0b:
6f:ed:dc:5e:ac:16:13:0e:07:60:ca:ae:a0:ed:e2:41:d2:ca:
99:ee:36:06:e8:1d:2e:92:fa:e4:81:fe:64:3b:c5:86:20:a5:
8f:e9:52:00:01:92:f1:2f:23:f8:c6:98:19:86:c9:13:cb:3b:
b9:9c:38:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:04:37 2025 by rpki-client