Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer
File: NM2mWwLxdr_CSHhNqprIp74WU9s.cer (raw, json)
Hash identifier: MHPV2/uBjIkrfj3OpCouxKLiuLz6Hp5DIwUbe/b+WfM=
Subject key identifier: 34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024DB7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 12 Jun 2025 00:27:47 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 55785
AS: 55948
IP: 43.252.68.0/22
IP: 103.247.152.0/22
IP: 2403:4d00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Jun 2025 14:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150967 (0x24db7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 12 00:27:47 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A91E3DDB, serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8c:87:c2:0f:22:98:84:b0:63:e3:f4:f1:8b:
5f:e9:b1:1b:f8:5b:d2:ca:74:db:c7:be:73:32:02:
f2:85:6f:d6:84:f5:24:94:03:75:5b:e0:ea:9c:10:
6c:b5:52:01:09:8d:c7:a7:d0:eb:20:47:05:32:93:
db:ee:56:33:da:fe:e7:a5:f4:08:9f:1f:eb:a9:6a:
03:17:82:5e:eb:85:fc:ec:3d:98:35:5a:7a:b4:57:
2e:3e:12:d6:8f:e9:86:22:07:18:ef:63:42:80:43:
32:a9:a8:46:10:17:29:bf:15:15:33:19:d0:7d:16:
ae:ef:16:ab:50:e0:52:5a:3d:da:43:00:55:20:92:
f5:6d:a4:4d:a2:37:f0:af:1b:ca:17:3b:47:1e:ec:
b2:16:a3:f7:58:89:90:1c:2a:ea:49:dd:c9:27:c0:
72:0a:e6:51:d2:66:11:c6:5c:be:a0:76:7a:13:c2:
4e:07:78:83:98:a3:d4:bc:bc:58:fc:97:6d:aa:6b:
f4:38:07:52:68:83:8e:d8:e8:97:b9:a0:62:39:3e:
e0:5b:d3:e4:58:ef:ab:8f:89:83:ce:c9:e4:26:5e:
77:f6:4e:bd:04:e1:67:6e:3a:e1:1c:4b:dd:41:15:
1b:e5:b6:bc:01:bf:9e:65:93:b7:3d:91:6e:45:42:
2d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55785
55948
sbgp-ipAddrBlock: critical
IPv4:
43.252.68.0/22
103.247.152.0/22
IPv6:
2403:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
98:31:43:9b:fe:e4:57:9d:57:72:92:2e:7e:05:fc:82:47:1e:
70:be:48:e3:f3:43:7c:f8:5c:b7:43:70:db:19:e3:1f:5e:65:
0e:e5:59:79:67:2a:87:3e:5a:85:70:bd:93:54:b6:a5:c1:03:
98:0b:7c:13:71:06:1a:f9:49:f8:20:49:82:e3:22:11:31:f9:
2d:04:15:87:54:f4:9a:f7:63:d2:1e:b1:47:b5:1a:e0:14:16:
77:b1:90:51:92:32:44:cd:6b:08:72:81:93:f8:15:e9:2d:ee:
4e:34:70:af:d0:82:f2:ad:74:40:f3:e3:8a:bf:23:cd:29:6e:
e0:4d:bb:08:6a:94:a1:61:9a:25:da:03:74:8c:ee:8b:40:99:
4e:36:4c:a3:b6:5b:37:81:f0:8e:ff:a8:9a:62:55:43:56:14:
b1:7e:3c:f0:98:d9:ce:24:28:e0:d0:32:83:60:2e:2f:45:e3:
e1:ee:f3:17:3e:6b:6f:df:4f:89:ce:06:e2:58:2a:81:d4:04:
70:a1:97:93:a0:92:05:d8:04:eb:26:82:84:5e:48:ac:fa:e1:
c0:51:c8:b4:f7:07:66:f0:10:ab:bf:13:a3:27:ed:db:d6:99:
6f:ed:f7:2c:c8:46:65:ca:f7:a3:89:89:53:84:f2:ac:e5:e8:
e4:89:e8:cb
-----BEGIN CERTIFICATE-----
MIIGNDCCBRygAwIBAgIDAk23MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDYxMjAwMjc0N1oXDTI2MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTNEREIxMTAvBgNVBAUTKDM0Q0RBNjVCMDJGMTc2QkZDMjQ4Nzg0
REFBOUFDOEE3QkUxNjUzREIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDQjIfCDyKYhLBj4/Txi1/psRv4W9LKdNvHvnMyAvKFb9aE9SSUA3Vb4OqcEGy1
UgEJjcen0OsgRwUyk9vuVjPa/uel9AifH+upagMXgl7rhfzsPZg1Wnq0Vy4+EtaP
6YYiBxjvY0KAQzKpqEYQFym/FRUzGdB9Fq7vFqtQ4FJaPdpDAFUgkvVtpE2iN/Cv
G8oXO0ce7LIWo/dYiZAcKupJ3cknwHIK5lHSZhHGXL6gdnoTwk4HeIOYo9S8vFj8
l22qa/Q4B1Jog47Y6Je5oGI5PuBb0+RY76uPiYPOyeQmXnf2Tr0E4WduOuEcS91B
FRvltrwBv55lk7c9kW5FQi07AgMBAAGjggMpMIIDJTAdBgNVHQ4EFgQUNM2mWwLx
dr/CSHhNqprIp74WU9swHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUzRERCLzBFM0JEQUVDNDcyNDExRjA5NUY5MUIyM0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFM0REQi8wRTNCREFFQzQ3MjQxMUYwOTVGOTFCMjNDNEY5QUUwMi9OTTJtV3dM
eGRyX0NTSGhOcXBySXA3NFdVOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDANnpAgMA2owwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAIr/EQD
BAJn95gwDQQCAAIwBwMFACQDTQAwDQYJKoZIhvcNAQELBQADggEBAJgxQ5v+5Fed
V3KSLn4F/IJHHnC+SOPzQ3z4XLdDcNsZ4x9eZQ7lWXlnKoc+WoVwvZNUtqXBA5gL
fBNxBhr5SfggSYLjIhEx+S0EFYdU9Jr3Y9IesUe1GuAUFnexkFGSMkTNawhygZP4
Fekt7k40cK/QgvKtdEDz44q/I80pbuBNuwhqlKFhmiXaA3SM7otAmU42TKO2WzeB
8I7/qJpiVUNWFLF+PPCY2c4kKODQMoNgLi9F4+Hu8xc+a2/fT4nOBuJYKoHUBHCh
l5OgkgXYBOsmgoReSKz64cBRyLT3B2bwEKu/E6Mn7dvWmW/t9yzIRmXK96OJiVOE
8qzl6OSJ6Ms=
-----END CERTIFICATE-----
Generated at Sat Jun 14 17:12:19 2025 by rpki-client