Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycf7MVXuXrRUGnY3mYlwgGpG878.cer
File: ycf7MVXuXrRUGnY3mYlwgGpG878.cer (raw, json)
Hash identifier: WYArZUBXvFX3JlcLygHNTyyeo1brgSwZa6pn2A1qFWI=
Subject key identifier: C9:C7:FB:31:55:EE:5E:B4:54:1A:76:37:99:89:70:80:6A:46:F3:BF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025F05
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Aug 2025 17:40:22 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 103.138.80.0/22
IP: 2404:c640::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Aug 2025 17:12:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155397 (0x25f05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 22 17:40:22 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A919AB96, serialNumber=C9C7FB3155EE5EB4541A7637998970806A46F3BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:68:5c:9b:9a:64:1c:c9:d2:20:00:9e:f2:bd:
ef:8d:3d:33:17:84:1b:ad:88:92:9e:08:5e:82:a3:
d8:2c:c4:19:4c:00:59:56:c4:73:39:f3:19:f4:df:
99:e7:89:72:2f:cd:1c:98:f9:96:a9:f0:99:17:f5:
77:44:7b:fe:ec:17:ac:0a:a1:04:d3:94:9f:be:6e:
db:81:9f:c5:b0:a9:c7:7e:1b:bc:ec:01:be:ba:b6:
64:ff:9c:de:8d:2e:b8:96:f2:b9:f0:49:81:e6:1f:
4e:8d:68:c5:10:1b:32:f7:bf:af:90:64:35:d5:2e:
19:b3:c9:74:c4:b3:13:d7:2b:20:fa:3a:5b:0f:d3:
3c:a9:05:0b:2f:26:38:2d:93:31:66:e0:03:5d:62:
74:4e:17:4f:14:b0:b9:6c:fa:87:25:34:75:f8:48:
36:5a:ad:73:8b:bd:99:26:92:a5:71:52:75:24:64:
01:3b:d4:b9:05:eb:a2:89:48:27:e3:00:52:c1:51:
7e:79:de:51:d1:c3:2d:6c:f5:64:af:8b:a2:24:98:
33:c5:8f:c7:50:7b:7a:d3:72:ee:6a:dd:d3:ca:88:
33:5a:ef:5e:af:9d:f6:44:f8:f4:c5:00:cc:01:0f:
81:b5:f0:78:ba:b2:ea:91:4a:ba:a6:2d:41:5b:56:
9c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C7:FB:31:55:EE:5E:B4:54:1A:76:37:99:89:70:80:6A:46:F3:BF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919AB96/116561327F7F11F08417593FC4F9AE02/ycf7MVXuXrRUGnY3mYlwgGpG878.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.80.0/22
IPv6:
2404:c640::/32
Signature Algorithm: sha256WithRSAEncryption
64:15:32:c7:15:67:f1:f4:be:7f:25:bd:7f:70:d4:a7:ef:e2:
e2:55:8a:35:a2:5f:cb:fd:3f:57:ba:6f:4e:97:88:c9:70:aa:
7d:10:7c:9a:2c:e3:7f:85:44:71:b9:aa:6e:d7:9e:09:c1:20:
4d:e6:b0:7f:d2:35:40:8e:bc:eb:b8:ed:55:ba:a6:33:2a:f4:
84:47:5a:b5:02:14:42:38:25:a0:ad:8a:58:a0:a6:5a:29:2f:
96:e0:0b:e4:37:e4:c1:d1:9b:9a:29:8e:01:6d:43:a6:b0:7a:
1f:9a:c0:7d:b8:db:a2:9f:ab:1d:15:bc:ed:02:2a:61:00:91:
9f:3a:37:27:91:e4:ed:4a:8f:4e:03:4a:10:63:43:58:3f:ea:
3a:bd:6e:57:6f:01:4e:3d:99:d3:8f:de:59:03:0e:5e:5b:55:
42:5c:d1:ad:00:ed:02:ca:7a:17:51:8b:54:e2:63:e0:2d:4c:
a8:98:eb:a7:33:41:89:44:64:09:e5:5c:b0:14:8d:e2:0c:de:
30:2b:2c:04:2e:e3:00:42:87:5d:ea:5d:2d:85:95:14:d2:ee:
1b:69:0a:82:e7:c3:16:79:1f:18:14:8f:a4:dd:c7:40:3b:f9:
99:c1:d2:77:62:0a:76:68:24:fe:b5:a2:35:f4:0e:a1:33:aa:
3e:94:9e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:09:43 2025 by rpki-client