Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcjytuAdCoLRPDUYjDyT5vUUupQ.cer
File: IcjytuAdCoLRPDUYjDyT5vUUupQ.cer (raw, json)
Hash identifier: 1eA4bJKEdZLB8rW1F55WpQYbxfrJjsqFgIGHGRfRX38=
Subject key identifier: 21:C8:F2:B6:E0:1D:0A:82:D1:3C:35:18:8C:3C:93:E6:F5:14:BA:94
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025841
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/IcjytuAdCoLRPDUYjDyT5vUUupQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Jul 2025 03:50:51 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 139828
IP: 202.27.48.0 -- 202.27.59.255
IP: 2404:9f00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 Aug 2025 05:57:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153665 (0x25841)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 28 03:50:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91A9C62, serialNumber=21C8F2B6E01D0A82D13C35188C3C93E6F514BA94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b5:27:56:e6:30:23:2b:1b:18:50:7a:63:77:
0a:d1:1f:0d:c4:54:09:01:b2:5d:d9:02:df:97:4a:
fd:9e:d6:0b:88:83:65:df:87:46:ca:88:ab:28:e6:
3e:db:a4:7b:e0:16:3e:65:79:6c:a8:5c:87:e4:9a:
cb:7b:68:3d:e4:cb:c4:78:8f:95:91:b2:38:f4:39:
58:a3:2c:a7:cf:64:c3:87:1c:60:8c:d6:4e:b0:dd:
90:84:3d:ed:13:cd:06:ba:59:0b:dc:5e:4b:6c:48:
6c:43:8a:98:ea:91:be:cd:30:f7:6c:a3:e4:52:be:
e3:46:87:5b:04:77:c4:1d:7a:6c:70:87:d3:48:14:
21:37:f2:3b:7d:42:03:5d:ea:39:ee:38:dc:43:78:
da:73:16:f1:ef:9d:0a:b7:1a:26:d0:60:33:15:90:
32:d3:8a:96:af:6d:32:82:f1:eb:9e:2d:8f:e6:31:
a7:e9:17:d0:10:e3:19:bd:b1:e4:6d:c9:2e:92:93:
ce:53:37:d9:56:f1:ea:44:7a:1f:3c:c2:50:f1:e8:
a9:68:54:64:aa:37:79:6c:76:8f:76:23:78:77:40:
5d:a3:fa:12:ad:7c:f0:20:ac:98:0d:1d:5c:63:66:
27:99:76:8c:86:dc:85:37:5b:81:e3:98:4d:73:35:
15:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C8:F2:B6:E0:1D:0A:82:D1:3C:35:18:8C:3C:93:E6:F5:14:BA:94
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/IcjytuAdCoLRPDUYjDyT5vUUupQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139828
sbgp-ipAddrBlock: critical
IPv4:
202.27.48.0-202.27.59.255
IPv6:
2404:9f00::/32
Signature Algorithm: sha256WithRSAEncryption
d0:20:bd:56:4f:71:72:9f:49:26:77:cb:10:0a:c5:8f:ed:b5:
8d:c3:60:69:79:62:6a:27:15:b9:b1:a9:5c:a9:ef:13:4c:ed:
57:0b:58:0c:f3:18:c2:c4:4a:28:98:7e:d8:b0:6d:ff:7a:94:
c4:df:50:93:38:8b:f1:43:04:13:e2:a7:6c:f7:8a:24:44:f6:
7c:ee:6e:1e:25:7f:2c:3c:d0:bb:0e:49:64:0c:a8:34:94:78:
a6:ad:a9:89:54:e1:56:75:40:db:f7:a3:32:75:ea:df:e2:e3:
36:81:61:b1:80:ce:44:70:6f:12:c2:13:14:2a:27:9f:32:f4:
32:22:0a:67:5a:99:c1:c2:51:66:c0:15:0b:74:e9:a2:cc:d3:
82:33:bc:4c:38:fe:01:f8:17:cb:cd:5f:14:17:de:93:28:2d:
fc:35:d1:0f:0d:c8:af:38:31:6d:8f:46:ee:c8:1e:ce:76:e3:
37:3b:af:44:1c:6f:1c:d5:e7:47:61:63:0e:4a:d6:75:7e:70:
ba:50:94:7b:ba:ef:6e:19:d7:84:24:8e:b7:43:cd:0e:ad:03:
bd:74:16:2f:3c:99:4a:e5:ff:82:8c:c6:13:b5:b0:48:7c:91:
c7:11:cc:b5:33:93:6e:b4:b5:27:7f:6d:ef:fb:07:c9:52:6c:
e3:b4:40:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:50:17 2025 by rpki-client