Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer
File: 25LUPJBhJQWzr0bpZKaMyfXzsq8.cer (raw, json)
Hash identifier: X7pBXDw6mYISy7EAi4sSGrGHUMKYdrZz9vWbEIFSaFE=
Subject key identifier: DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023EBE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 13 Apr 2025 00:57:02 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 149765
IP: 103.185.226.0/23
IP: 2400:6ae0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147134 (0x23ebe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 13 00:57:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A918213B, serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b7:78:19:7f:dc:5b:8d:45:36:f2:a9:e0:5b:
0c:b5:d8:e2:c9:08:25:37:79:22:93:04:4b:79:92:
e2:2c:bf:ca:c6:96:89:40:e2:cf:fa:c4:57:1b:18:
72:74:3e:57:08:50:e9:ab:07:95:8a:34:a9:cc:3f:
0f:5e:d3:39:12:8a:67:77:42:43:18:4d:46:fe:27:
6b:b2:07:9a:76:a4:c9:77:60:02:aa:95:5e:8c:76:
e5:f4:68:f8:51:86:0d:d2:e4:f0:ea:44:ed:d8:27:
7a:66:3e:d3:54:0c:26:96:fd:a4:59:6f:c1:22:4d:
c2:b4:49:57:9e:30:49:ed:17:57:2f:8c:c3:ff:97:
db:45:3e:cc:15:64:b7:e5:8a:ab:26:ad:4b:e2:20:
73:4e:18:8c:76:c6:92:cb:69:79:c1:dc:8d:50:a0:
99:15:80:8a:a1:95:d7:41:27:7c:dc:c7:f8:42:27:
10:57:bc:38:a2:e1:3b:c7:5c:06:10:cf:2d:ff:76:
c0:43:75:1d:2b:67:1c:0c:f1:5d:78:e0:ec:ee:5b:
3a:b2:d6:5e:26:ab:6f:04:e0:55:28:e9:4e:a3:ae:
a4:1b:6a:53:a5:d8:e5:cc:17:c1:e9:5a:20:8a:d4:
2f:17:95:c4:b4:f8:44:c8:66:d7:95:32:0a:ad:75:
e6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149765
sbgp-ipAddrBlock: critical
IPv4:
103.185.226.0/23
IPv6:
2400:6ae0::/32
Signature Algorithm: sha256WithRSAEncryption
13:87:f3:00:5d:0f:0c:a2:74:99:16:bc:e1:fa:5d:be:c9:43:
24:8f:f3:41:37:99:e7:c3:40:29:21:34:60:b2:d5:0e:0f:f4:
50:9e:8d:ca:7c:d4:21:43:d1:57:60:2c:d0:a5:00:4f:39:39:
bc:6d:07:16:27:ce:a2:fa:eb:05:88:2c:7c:4a:44:c9:01:f5:
6c:00:03:3d:ce:f2:51:a8:96:a5:38:79:69:ed:9e:9e:3c:05:
a5:33:8a:43:26:79:bd:bc:75:8d:19:04:47:c1:23:23:17:4e:
b7:92:35:1c:3a:0b:3c:a9:66:f3:7b:9d:dc:e1:f3:1f:c7:09:
d8:62:84:ec:a7:34:4e:b9:a7:2e:09:a2:54:8f:cd:b6:13:11:
19:74:7d:17:1d:79:0f:f0:e2:9d:f7:63:78:5f:06:25:1b:69:
a8:5d:03:4f:c1:49:e4:91:96:d8:dc:c8:2a:52:17:16:93:94:
47:97:6c:31:81:bf:0c:cb:f4:16:80:a4:0b:f7:12:d6:8b:e3:
2a:e8:57:8b:6a:2c:da:4c:55:73:1f:86:11:79:0e:3c:06:31:
d4:44:5b:fe:c4:7c:7a:bd:4e:39:33:5b:55:7d:ac:83:71:a2:
a3:b6:94:51:30:99:84:f8:4a:67:04:09:c4:6a:f0:2e:f0:7f:
45:fc:6b:19
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAj6+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDQxMzAwNTcwMloXDTI2MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxODIxM0IxMTAvBgNVBAUTKERCOTJENDNDOTA2MTI1MDVCM0FGNDZF
OTY0QTY4Q0M5RjVGM0IyQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDXt3gZf9xbjUU28qngWwy12OLJCCU3eSKTBEt5kuIsv8rGlolA4s/6xFcbGHJ0
PlcIUOmrB5WKNKnMPw9e0zkSimd3QkMYTUb+J2uyB5p2pMl3YAKqlV6MduX0aPhR
hg3S5PDqRO3YJ3pmPtNUDCaW/aRZb8EiTcK0SVeeMEntF1cvjMP/l9tFPswVZLfl
iqsmrUviIHNOGIx2xpLLaXnB3I1QoJkVgIqhlddBJ3zcx/hCJxBXvDii4TvHXAYQ
zy3/dsBDdR0rZxwM8V144OzuWzqy1l4mq28E4FUo6U6jrqQbalOl2OXMF8HpWiCK
1C8XlcS0+ETIZteVMgqtdeZtAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQU25LUPJBh
JQWzr0bpZKaMyfXzsq8wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTgyMTNCLzA3MDc2RkEwRDlDOTExRUNCRTAwN0Y2QUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4MjEzQi8wNzA3NkZBMEQ5QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpC
aEpRV3pyMGJwWkthTXlmWHpzcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAkkFMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ7niMA0EAgAC
MAcDBQAkAGrgMA0GCSqGSIb3DQEBCwUAA4IBAQATh/MAXQ8MonSZFrzh+l2+yUMk
j/NBN5nnw0ApITRgstUOD/RQno3KfNQhQ9FXYCzQpQBPOTm8bQcWJ86i+usFiCx8
SkTJAfVsAAM9zvJRqJalOHlp7Z6ePAWlM4pDJnm9vHWNGQRHwSMjF063kjUcOgs8
qWbze53c4fMfxwnYYoTspzROuacuCaJUj822ExEZdH0XHXkP8OKd92N4XwYlG2mo
XQNPwUnkkZbY3MgqUhcWk5RHl2wxgb8My/QWgKQL9xLWi+Mq6FeLaizaTFVzH4YR
eQ48BjHURFv+xHx6vU45M1tVfayDcaKjtpRRMJmE+EpnBAnEavAu8H9F/GsZ
-----END CERTIFICATE-----
Generated at Fri Apr 25 22:57:45 2025 by rpki-client