Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer
File: 38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer (raw, json)
Hash identifier: oI9C8LVmAspF9s0huGiGPnQw6n+IZn23ND4TsiyEnW0=
Subject key identifier: DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 026F6A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 27 Oct 2025 09:24:24 +0000
Certificate not after: Wed 30 Dec 2026 00:00:00 +0000
Subordinate resources: AS: 153315
IP: 103.207.30.0/23
IP: 202.40.164.0/22
IP: 2401:c0e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 11 Nov 2025 05:28:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159594 (0x26f6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 27 09:24:24 2025 GMT
Not After : Dec 30 00:00:00 2026 GMT
Subject: CN=A91516FF, serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e1:04:56:10:c0:4a:0d:f4:e0:18:c4:72:88:
97:f0:77:0e:9b:93:6b:3f:1f:a3:6f:19:88:ca:14:
f1:2a:b3:16:49:20:04:23:71:c7:b0:bf:b4:8b:3f:
34:4a:ff:37:b8:14:53:97:40:e2:75:10:4c:f3:f4:
b1:c8:c1:87:e3:56:b6:08:08:07:86:0e:03:0f:8a:
b2:26:82:b8:aa:19:a8:6f:4c:cb:64:9f:5d:ed:58:
24:6d:b7:95:66:c5:07:5f:c0:19:ed:7a:37:87:47:
f0:58:5e:ff:ab:74:d5:d8:2a:79:8e:1b:86:e4:f4:
43:20:76:f8:12:d6:05:f3:01:4c:5e:89:71:6e:fe:
4c:dd:3e:36:51:bf:84:5f:a1:83:d5:c0:f9:65:04:
80:bc:d6:d6:6c:89:78:4f:cf:8d:b4:b5:bb:fe:1f:
25:5f:d1:37:1a:b3:55:7b:17:c5:28:6d:56:cb:32:
92:0f:89:ee:1d:f6:0f:f4:c0:73:77:27:1b:8f:44:
71:25:3e:b4:71:e9:40:f5:c8:f5:56:6b:36:9a:ee:
13:c5:6d:96:36:91:01:55:44:97:f7:b7:6c:fe:c9:
6c:29:45:9d:c2:1c:3a:7b:c5:5e:69:84:f6:ef:89:
ed:f4:9a:f5:77:da:28:ed:e9:73:8e:40:4d:8a:68:
f7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153315
sbgp-ipAddrBlock: critical
IPv4:
103.207.30.0/23
202.40.164.0/22
IPv6:
2401:c0e0::/32
Signature Algorithm: sha256WithRSAEncryption
18:79:d7:ec:30:6f:37:7a:9f:52:76:b2:06:64:6e:f9:a3:40:
5c:f3:17:bb:2d:48:f3:31:b2:60:08:01:d5:3c:e4:7d:b9:3a:
fc:e8:c0:ee:7e:26:00:cc:48:4c:77:22:a6:ae:f3:da:64:de:
26:d3:31:47:2a:d9:b2:35:1c:cc:7b:6b:57:e9:f0:f0:be:5e:
d6:75:6f:1c:1e:8a:c8:83:12:62:0f:80:9b:b5:a0:9b:09:6a:
81:20:22:1c:01:8b:bd:8e:be:35:fa:11:d7:fa:ad:46:0c:5a:
50:3e:fd:1f:26:b8:44:f2:c3:95:82:5f:47:5a:f0:ac:f7:d0:
e7:d9:cc:8a:bd:56:ee:ce:d7:dd:48:02:12:86:22:1b:ef:49:
71:f5:f2:a4:b2:b5:d0:46:d1:1f:f7:5c:6b:62:1b:75:ef:03:
ed:82:2a:1e:d6:14:2e:f9:99:58:f2:f1:9c:b8:b7:8d:a7:a6:
77:73:90:e6:55:49:9f:9b:e9:e2:cb:5c:dd:91:f3:ef:02:b3:
02:76:08:a1:ae:a9:55:98:92:7c:c1:8d:c5:35:84:4f:48:63:
e1:9d:41:cd:e5:68:0c:af:73:45:a6:49:05:3c:82:b6:a3:1b:
e1:e9:5c:47:c3:6c:59:f7:f1:b8:cd:69:00:d8:2e:03:08:02:
1e:52:4c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 08:15:32 2025 by rpki-client