Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7F7zNU5M1TSrhiW5m3MS1vTkixU.cer
File: 7F7zNU5M1TSrhiW5m3MS1vTkixU.cer (raw, json)
Hash identifier: zMMh8z9OwH51u5I4Ykn9p2Xox7jNw5tfEeHBA3hiYOk=
Subject key identifier: EC:5E:F3:35:4E:4C:D5:34:AB:86:25:B9:9B:73:12:D6:F4:E4:8B:15
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024BAD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EF175/0460AA18FBFB11EEA1EEAF1FC4F9AE02/7F7zNU5M1TSrhiW5m3MS1vTkixU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EF175/0460AA18FBFB11EEA1EEAF1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Jun 2025 05:19:55 +0000
Certificate not after: Wed 01 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 152660
IP: 203.26.240.0/23
IP: 2001:df3:9c40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 20 Jun 2025 22:15:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150445 (0x24bad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 3 05:19:55 2025 GMT
Not After : Oct 1 00:00:00 2025 GMT
Subject: CN=A91EF175, serialNumber=EC5EF3354E4CD534AB8625B99B7312D6F4E48B15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6e:b7:75:b7:bb:7a:8c:56:2b:59:7d:5c:12:
14:3b:11:db:e1:90:9d:aa:cc:22:e5:f6:e5:f6:59:
be:b7:ff:aa:98:fa:2e:3f:14:57:eb:b7:0c:49:d3:
b3:ab:ab:d5:a8:32:9a:fc:3c:59:67:1b:24:31:74:
75:5e:4f:87:e4:e0:6c:fc:c1:cc:71:92:d5:98:3b:
64:83:42:5d:e0:0c:da:6e:86:c6:e3:c4:75:c9:e5:
74:da:4f:df:5c:42:b5:af:2e:c9:73:df:84:83:09:
90:9d:a3:11:2a:54:87:4e:70:91:e8:e0:4c:00:1c:
8b:e8:72:75:f8:38:8c:3e:2c:e2:13:c9:6f:45:d4:
35:b9:72:4e:96:5b:95:d1:e6:53:d4:d9:cc:90:4b:
06:20:33:ba:a2:34:9c:fa:26:51:01:c8:8d:5a:83:
69:0b:cc:17:ab:ef:ff:47:a5:f6:2f:4e:7a:e1:b8:
a7:5a:1d:6a:c3:92:d1:0e:e3:ae:78:71:14:0f:a9:
7c:17:83:dd:f8:2a:4c:e1:0a:ae:ae:9a:be:ef:2d:
75:29:b1:9f:e9:21:df:04:d6:71:c8:c3:33:5e:8a:
3f:74:09:9c:e4:b8:e0:72:18:84:9d:95:61:5a:ae:
c2:72:ae:63:2e:6f:4e:8c:d2:ea:e9:5e:55:3c:22:
5a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5E:F3:35:4E:4C:D5:34:AB:86:25:B9:9B:73:12:D6:F4:E4:8B:15
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EF175/0460AA18FBFB11EEA1EEAF1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EF175/0460AA18FBFB11EEA1EEAF1FC4F9AE02/7F7zNU5M1TSrhiW5m3MS1vTkixU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152660
sbgp-ipAddrBlock: critical
IPv4:
203.26.240.0/23
IPv6:
2001:df3:9c40::/48
Signature Algorithm: sha256WithRSAEncryption
d1:88:73:ae:92:e9:91:eb:77:c8:db:ce:7a:c9:a3:5d:69:d5:
1e:17:b1:ec:07:7f:cf:26:31:e4:9d:da:c1:80:c8:f0:03:59:
72:85:94:ff:4a:ee:c2:11:e6:72:6f:36:04:51:b5:e9:a9:8f:
fc:46:ea:f9:12:e4:90:e8:76:54:f8:af:30:a4:79:ec:47:7e:
c5:5d:9b:c7:21:db:84:ab:2d:ec:b3:6d:33:75:dc:c1:88:80:
23:b7:3f:57:91:e8:2a:f5:d8:36:18:2e:30:8b:ef:ac:92:c3:
80:7b:80:83:d3:45:fb:8a:d9:5f:bb:ce:5e:53:06:0d:f6:9d:
9e:41:4f:3c:29:bc:7d:de:74:4d:66:69:45:43:85:d5:07:46:
b9:b2:dd:27:d1:d6:1e:8a:7b:e3:b1:fe:84:83:a3:1f:78:13:
d0:c4:97:5b:c9:2a:ae:3e:3e:90:24:91:d5:4f:97:f7:0d:86:
f2:f5:3c:2e:08:75:47:05:5a:01:26:2e:5d:41:58:58:01:78:
ee:bc:9d:78:d3:94:0e:11:ed:1c:1b:a9:6c:7d:4b:78:fa:d1:
6b:95:c3:5a:88:a4:04:68:ec:6b:0b:52:cd:ce:3a:88:aa:0d:
76:6b:88:f2:dd:9b:3b:1b:ec:5c:2d:90:b4:97:48:a8:59:7e:
c9:84:86:9d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 14 04:11:40 2025 by rpki-client