Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer
File: OTVm9EF4bZWNinkRjo71b8hy5cU.cer (raw, json)
Hash identifier: rgrBSeo9LMNJDj6m2auyjomc0BUUo9em/IJkxFl5xr8=
Subject key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0247D4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 May 2025 16:42:40 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 56186
IP: 43.245.240.0/22
IP: 103.13.8.0/22
IP: 202.3.80.0/20
IP: 202.92.216.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Jun 2025 14:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149460 (0x247d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 21 16:42:40 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:85:f6:8f:1c:cd:19:eb:58:33:7f:3e:5e:57:
bc:5b:60:51:12:31:6f:47:e7:93:ca:74:ca:95:3d:
44:8b:4f:4a:c6:9a:2f:a5:d7:e3:70:fc:77:51:1f:
61:0a:a2:71:e2:ad:87:58:40:e4:f3:db:62:58:70:
8a:be:37:71:a3:13:3a:c8:b4:c0:1a:ec:75:a4:04:
91:16:a8:03:29:9e:68:11:08:b9:98:3a:89:0e:87:
de:90:ca:ce:70:f1:b2:0f:b0:dc:f4:28:48:10:73:
d5:1d:a5:7b:2b:a4:ce:c1:44:d0:d1:28:e6:9f:54:
f4:c2:ff:0e:ae:94:27:8d:ee:4b:39:9e:8b:cc:da:
62:f8:5a:44:a3:18:6f:3f:3c:07:f6:42:c7:2c:70:
35:4b:30:43:ee:09:ff:23:79:90:b3:ef:29:fd:8f:
57:29:0f:f2:ac:19:04:ca:7b:17:9e:36:08:41:b8:
47:1b:eb:16:48:c4:7e:bc:b4:25:57:0b:29:2c:ce:
0a:5d:f0:55:c1:a1:b7:6c:70:f9:7c:23:78:c4:b1:
f3:1e:73:18:31:5e:eb:09:97:69:13:84:5a:d8:e5:
1b:6c:e5:5b:02:fe:76:ab:87:1a:a3:7a:69:65:ac:
c9:45:60:99:e4:6d:d5:29:a2:a8:78:8c:67:bf:c9:
b9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56186
sbgp-ipAddrBlock: critical
IPv4:
43.245.240.0/22
103.13.8.0/22
202.3.80.0/20
202.92.216.0/21
Signature Algorithm: sha256WithRSAEncryption
a4:70:f0:d7:c5:62:93:f5:5d:30:be:18:2c:d7:49:f2:64:16:
3c:75:55:c9:c2:35:57:6b:79:35:c6:78:20:c9:e9:97:dc:7f:
c5:2d:60:8e:9e:dd:31:0f:cc:3f:1d:fe:a2:ae:1e:a2:63:13:
3e:70:f1:49:90:2c:79:07:c4:0e:18:61:dd:b4:a8:2c:39:a0:
ba:93:00:11:3d:cf:d7:ab:59:d8:3f:fb:4b:8b:1c:66:2e:74:
ce:1c:76:76:7b:af:63:a4:b8:24:fe:b2:67:f7:ee:ef:f6:eb:
0b:00:bb:a5:e0:e7:32:f2:6a:6c:80:8a:d5:a9:5d:81:50:2c:
d4:72:39:2e:ca:03:c6:82:0b:cd:aa:25:ea:1f:4c:24:ed:0d:
03:0e:59:bd:d8:25:f9:1d:14:da:d9:83:3c:fa:87:78:65:bd:
94:35:b3:2a:7d:f8:d7:2d:9d:a4:f2:12:20:58:bf:16:4f:0e:
22:df:03:d8:48:70:2d:34:e3:7e:6c:2a:80:be:3c:8d:62:db:
65:c4:23:b4:6e:e0:8c:79:20:cf:03:c8:fe:54:3e:01:cc:fe:
7d:41:80:a7:27:ce:d8:a1:4a:f4:00:f3:d7:f5:3d:78:5d:26:
5f:52:a9:f0:d8:e3:f7:87:a8:46:e9:90:5f:fc:b4:a6:3d:44:
40:03:83:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 17:48:53 2025 by rpki-client