Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer
File: 5NzsWVobtnOJciNlasY5uVNS3XM.cer (raw, json)
Hash identifier: PiMCrCTbvMfLemtZ6XEymQy6LClP2K8Vjo2FX8xqbig=
Subject key identifier: E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0259A6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Jul 2025 18:43:24 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 135517
AS: 149297
IP: 2400:f8c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 11 Aug 2025 04:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154022 (0x259a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 31 18:43:24 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91D604E, serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8f:b1:bf:ed:2a:ba:69:5f:c5:ec:2b:57:87:
18:f6:06:6f:84:0a:8e:c5:16:95:47:27:85:26:a4:
2c:12:f3:5b:48:9d:f3:a5:ee:29:2a:82:de:c1:0a:
42:0b:78:63:a5:92:f1:83:cf:37:ed:76:c1:b3:19:
c7:9a:3b:0b:47:88:a2:6c:99:fa:a5:ee:31:81:fd:
d9:06:d6:8b:e6:3b:13:fa:4c:96:78:97:5c:9c:07:
c4:70:83:15:ea:6e:7d:77:03:0d:c1:bd:54:a2:7f:
a9:19:50:6b:7d:e2:b9:2f:dd:dc:31:fc:15:81:a6:
e4:bb:37:5e:d1:8a:e8:86:b4:ab:13:01:c0:d5:80:
b9:39:fb:3b:58:ba:20:1a:d1:cf:8f:3a:10:59:18:
11:6b:f5:c5:ba:96:a6:16:61:4f:44:6e:c2:03:cf:
71:ea:6e:f4:52:ff:e1:d3:04:48:b2:2e:c6:6c:93:
80:8a:70:70:11:e6:9b:f7:d7:04:73:ff:2c:5f:27:
23:de:b1:3f:cc:3d:81:48:8c:33:91:42:76:29:17:
38:55:20:2a:7b:4c:bb:19:1e:21:ed:fc:19:e5:78:
9b:11:f1:c2:1b:a2:50:cd:13:76:88:75:cf:9a:32:
a8:d0:65:16:2a:94:6f:d5:78:97:93:1b:fc:d7:9f:
28:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135517
149297
sbgp-ipAddrBlock: critical
IPv6:
2400:f8c0::/32
Signature Algorithm: sha256WithRSAEncryption
77:53:c5:a4:4c:9b:76:e9:0d:fa:31:0e:2d:e2:d1:b1:fb:17:
fb:6e:0a:39:b9:cd:6b:72:de:2d:2a:3d:83:d3:c7:41:87:79:
4c:35:a6:ea:4e:f7:ae:0b:f1:5a:10:d4:d3:19:49:a1:15:92:
dd:32:c5:87:c9:a7:99:90:69:6d:ec:56:d7:83:e9:5d:3e:ee:
86:6a:24:cb:84:8f:a3:94:7b:2a:5f:1e:bd:a4:3e:c7:e8:f9:
d4:49:d2:77:8d:8a:a9:cf:3e:da:18:1d:c6:a2:42:4f:05:c6:
58:e4:91:9d:96:ce:53:0d:32:1f:1e:bb:1c:20:5f:4d:6e:0e:
70:76:3f:f7:9e:5f:55:9d:2e:2f:d9:fe:5e:59:b1:9f:2e:d2:
97:99:ec:25:db:a5:be:0a:b5:26:6f:ce:67:6b:b6:9a:9d:ee:
4a:e7:55:a1:66:77:9f:00:d4:e7:71:3a:b4:49:d9:6e:4a:9e:
35:14:a9:35:c8:9f:44:71:cf:59:18:0f:c1:16:0e:34:9b:09:
a7:47:5f:b6:cd:f5:45:0c:39:4b:de:83:bb:f3:d7:11:c8:0f:
03:42:6e:70:75:8a:b2:c6:25:94:fc:11:bb:aa:58:4d:82:c5:
6a:7a:dc:7b:be:d7:62:c6:26:f3:a1:2c:a3:64:95:71:1b:ac:
4f:4b:96:97
-----BEGIN CERTIFICATE-----
MIIGIDCCBQigAwIBAgIDAlmmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDczMTE4NDMyNFoXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDYwNEUxMTAvBgNVBAUTKEU0RENFQzU5NUExQkI2NzM4OTcyMjM2
NTZBQzYzOUI5NTM1MkRENzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDMj7G/7Sq6aV/F7CtXhxj2Bm+ECo7FFpVHJ4UmpCwS81tInfOl7ikqgt7BCkIL
eGOlkvGDzzftdsGzGceaOwtHiKJsmfql7jGB/dkG1ovmOxP6TJZ4l1ycB8RwgxXq
bn13Aw3BvVSif6kZUGt94rkv3dwx/BWBpuS7N17RiuiGtKsTAcDVgLk5+ztYuiAa
0c+POhBZGBFr9cW6lqYWYU9EbsIDz3HqbvRS/+HTBEiyLsZsk4CKcHAR5pv31wRz
/yxfJyPesT/MPYFIjDORQnYpFzhVICp7TLsZHiHt/BnleJsR8cIbolDNE3aIdc+a
MqjQZRYqlG/VeJeTG/zXnyj7AgMBAAGjggMVMIIDETAdBgNVHQ4EFgQU5NzsWVob
tnOJciNlasY5uVNS3XMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQ2MDRFLzkxQjVDMEMwRjRFRDExRTk4Q0JGQTAxM0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFENjA0RS85MUI1QzBDMEY0RUQxMUU5OENCRkEwMTNDNEY5QUUwMi81TnpzV1Zv
YnRuT0pjaU5sYXNZNXVWTlMzWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDAhFdAgMCRzEwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAPjA
MA0GCSqGSIb3DQEBCwUAA4IBAQB3U8WkTJt26Q36MQ4t4tGx+xf7bgo5uc1rct4t
Kj2D08dBh3lMNabqTveuC/FaENTTGUmhFZLdMsWHyaeZkGlt7FbXg+ldPu6GaiTL
hI+jlHsqXx69pD7H6PnUSdJ3jYqpzz7aGB3GokJPBcZY5JGdls5TDTIfHrscIF9N
bg5wdj/3nl9VnS4v2f5eWbGfLtKXmewl26W+CrUmb85na7aane5K51WhZnefANTn
cTq0SdluSp41FKk1yJ9Ecc9ZGA/BFg40mwmnR1+2zfVFDDlL3oO789cRyA8DQm5w
dYqyxiWU/BG7qlhNgsVqetx7vtdixibzoSyjZJVxG6xPS5aX
-----END CERTIFICATE-----
Generated at Mon Aug 4 08:31:03 2025 by rpki-client