Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer
File: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer (raw, json)
Hash identifier: gA47TXtMw9Gl40WYeW2Hf91xcPYqC6GgKeZ4QBC8d+Q=
Subject key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024B94
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Jun 2025 01:59:05 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 58981
IP: 43.252.40.0/22
IP: 103.151.160.0/23
IP: 103.228.28.0/22
IP: 103.251.236.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Jun 2025 14:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150420 (0x24b94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 3 01:59:05 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A91DC017, serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:fc:05:2d:20:99:09:8a:ee:ac:be:ef:11:36:
4f:61:46:48:a5:b3:f9:2c:1b:41:42:06:4c:f3:01:
3b:0c:6a:ac:ec:c6:a4:0e:6c:9b:7a:8e:21:73:9a:
9f:9d:99:4a:7f:66:75:81:a2:13:4c:cf:06:e3:92:
7c:84:9d:dd:1e:f0:7e:a8:e3:df:47:64:b4:91:a9:
20:3a:03:95:8b:17:bd:a9:88:4f:ba:69:71:91:1d:
88:cf:d3:8a:3c:e4:51:75:b5:b3:91:58:33:a9:f5:
17:f0:09:6d:05:5c:a7:44:61:d1:0a:3b:f7:ca:5a:
61:34:1d:17:b1:e0:38:30:d3:32:00:5b:cb:1c:76:
4e:9e:f5:fc:de:3c:50:b8:09:a2:95:c4:53:8b:66:
f1:85:cd:19:e1:51:91:d3:a5:3f:7d:f7:7f:59:1a:
21:d7:f6:8d:14:8c:e7:f3:b2:a0:17:60:89:5a:f4:
cf:ff:a9:f6:4c:96:78:ff:22:e9:89:fe:ec:3f:98:
9e:b2:90:e4:e4:32:10:4b:2d:72:20:cd:dc:6d:75:
83:dd:16:0a:24:65:2e:52:21:82:69:94:c0:b0:c1:
c4:ec:08:a8:01:02:ec:f9:aa:e7:0d:c4:cb:3f:51:
2e:06:07:94:0e:3a:c3:49:94:53:f4:46:af:39:3f:
76:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58981
sbgp-ipAddrBlock: critical
IPv4:
43.252.40.0/22
103.151.160.0/23
103.228.28.0/22
103.251.236.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:1f:82:82:f1:00:33:6f:14:62:c7:ce:7f:8d:da:04:fe:78:
cb:f8:ea:7e:06:7d:0a:d5:8b:39:74:76:f8:6e:f1:eb:a4:a3:
51:7a:20:36:88:9b:1c:c8:23:d9:dc:dc:d9:45:a4:c4:60:52:
2a:0a:15:44:57:0c:8a:37:70:77:94:6c:47:24:a9:31:bc:a4:
c1:9a:9c:43:61:61:5a:ad:58:1b:33:55:5c:c0:a2:78:13:a1:
c7:00:67:29:f0:ca:a2:d5:82:8e:3b:73:0d:bb:8e:77:26:b1:
ce:c5:15:da:b5:c5:69:6e:d0:c8:d6:18:de:c6:77:b7:bd:7f:
46:9f:e2:22:da:6b:ed:a6:36:bd:cc:17:5e:37:46:da:a1:1c:
4a:44:06:ba:a4:18:ff:31:f4:11:43:75:2f:da:0c:5a:5a:b5:
0b:81:b6:04:91:b5:67:23:62:97:19:64:63:05:be:e7:2b:65:
d4:44:75:ea:ef:d3:ba:ef:f9:ff:7e:89:0a:39:05:1d:ef:0c:
c8:91:43:15:84:58:5d:2a:c2:ca:25:dd:68:18:50:9f:34:a8:
6c:fb:90:cd:88:d0:22:23:fb:60:fa:8c:a1:b7:5a:ba:a0:3d:
cb:5f:4f:dd:a6:fd:ab:54:41:77:c8:08:3d:50:13:c3:5d:7b:
4b:0c:bd:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 17:57:56 2025 by rpki-client