Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer
File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer (raw, json)
Hash identifier: JL8EDn8f1/uyc0BjKaZmh4OgwZyG+wpC/C+7Pkj0Sek=
Subject key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02498F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 29 May 2025 15:57:54 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 135163
IP: 103.186.156.0/24
IP: 2001:df0:ab40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Jun 2025 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149903 (0x2498f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 29 15:57:54 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:3f:46:b2:1d:31:fd:0c:4f:54:37:b8:e5:c1:
9e:37:56:eb:bb:3d:cb:c8:27:4e:81:0e:4c:2c:71:
ed:91:e6:5d:0f:bf:cb:7b:43:88:06:af:ab:2d:f7:
ab:68:a6:8d:1e:ec:cd:fb:52:83:1e:81:92:35:d4:
1f:83:94:2a:a3:3c:80:fd:20:36:04:67:5a:8a:ad:
fb:f6:33:ef:36:5c:b2:86:70:4a:f9:ba:13:7e:00:
15:55:47:35:0b:ee:77:6a:f6:20:f9:eb:81:b3:e3:
84:d9:6c:ae:6d:0d:60:99:88:fc:d5:c5:e5:52:c6:
f8:fd:d9:42:ec:a8:b3:ac:5c:27:82:54:83:e7:fe:
b9:4e:bf:c7:5c:6a:08:1b:ba:19:d8:38:cf:9c:f0:
d0:62:fb:1e:e9:8a:e0:5b:b3:ba:31:16:7c:a1:63:
a3:53:64:2e:5c:54:7a:47:0c:fd:9e:1f:65:0a:7c:
8d:2c:90:4b:1b:ad:a1:55:a5:52:85:72:c0:f9:50:
e1:ef:fe:b4:15:43:12:41:0b:b4:83:ed:4b:04:93:
ff:93:67:13:ed:77:e5:ef:5d:bf:4a:80:8a:5d:b7:
a6:5d:44:b2:78:3f:c3:e7:1d:76:f4:66:27:4a:69:
a8:29:81:a1:e4:9c:2c:03:55:40:f4:0f:77:36:e2:
e8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135163
sbgp-ipAddrBlock: critical
IPv4:
103.186.156.0/24
IPv6:
2001:df0:ab40::/48
Signature Algorithm: sha256WithRSAEncryption
bc:2c:ec:c9:1b:1e:ef:ad:75:4c:33:26:f6:e3:bd:5b:ca:fd:
fe:b0:35:4e:a0:f6:f7:f9:f2:86:c3:31:61:40:f4:17:56:9a:
75:95:2e:2d:8d:56:71:f9:e7:e3:aa:be:76:bc:89:4d:d7:a6:
52:e5:6b:d0:58:fc:62:dc:29:1a:d4:45:d1:1d:19:cf:f7:72:
29:a7:44:a3:be:fd:40:77:d2:82:b0:0a:f3:af:51:8d:bd:df:
f5:ca:b6:41:d4:a5:eb:91:8c:8e:8a:2c:03:43:34:ec:27:94:
57:8e:28:61:55:a4:96:52:f9:61:6d:e4:13:cd:8d:79:2e:8a:
5e:d7:24:d6:e1:62:85:78:19:ca:6e:32:39:ea:f1:72:70:db:
01:39:3f:04:9f:cb:c1:d8:d2:bb:db:62:8f:07:b1:dd:c5:73:
63:22:fb:bb:be:f7:c4:d1:34:da:9f:fe:fe:d2:50:94:cb:43:
1a:35:c6:46:19:a8:42:01:14:ac:8a:1c:61:fa:c7:0a:52:18:
b4:83:24:3b:f9:f7:1a:de:61:57:97:90:7b:6e:7d:15:6e:c5:
d4:51:4d:5b:b8:e3:e9:a9:e9:da:38:64:6e:01:64:28:40:e2:
cf:d0:0d:33:c2:65:7f:f5:31:fc:2f:1e:67:21:4f:d9:9c:02:
02:08:ae:b4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 14 05:27:45 2025 by rpki-client