Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PHaPDCMj1G0yHorJk-dbCxuCHlQ.cer
File: PHaPDCMj1G0yHorJk-dbCxuCHlQ.cer (raw, json)
Hash identifier: Isnx/PF3NQeg1ZzcVuKzxUUSJq0wNKfqlzMpPVrnQzY=
Subject key identifier: 3C:76:8F:0C:23:23:D4:6D:32:1E:8A:C9:93:E7:5B:0B:1B:82:1E:54
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0240A5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919089B/1BCD43B6B11111EF8E23056FC4F9AE02/PHaPDCMj1G0yHorJk-dbCxuCHlQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919089B/1BCD43B6B11111EF8E23056FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 24 Apr 2025 07:20:14 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 150688
IP: 203.30.75.0/24
IP: 2001:df5:71c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147621 (0x240a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 24 07:20:14 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A919089B, serialNumber=3C768F0C2323D46D321E8AC993E75B0B1B821E54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:11:df:86:ee:76:e2:bb:d3:29:77:be:8f:a9:
c2:0e:c5:7d:db:fb:96:a9:c4:65:55:99:c0:33:85:
94:c7:b8:c2:c5:c2:82:74:e1:48:d9:e3:d6:0f:f3:
f0:5e:81:8d:d3:28:57:26:fd:a3:0f:0b:3e:f8:2f:
81:96:4c:f7:e9:d7:f8:04:28:87:fb:9d:f6:b6:10:
cc:48:8d:0f:80:c8:42:0f:c2:a2:9a:e2:f7:b2:14:
2c:5c:20:b3:c3:b8:94:21:27:9d:38:19:39:b5:99:
fc:cf:8e:45:2a:00:c5:c1:59:b9:d1:63:5e:12:ba:
83:f7:f3:1a:28:94:95:4e:45:fc:71:fa:7c:96:8d:
86:e6:53:fb:d5:5a:69:b4:db:68:b8:88:b9:28:54:
65:f3:60:cb:91:3d:9d:29:d1:f4:42:83:a7:80:c0:
68:5b:94:bd:84:11:86:9b:63:66:36:e3:1d:c5:97:
a1:9c:f4:08:4f:e7:14:fd:e1:bc:74:19:48:e3:0e:
50:c2:56:90:15:dc:aa:e9:b5:95:72:ad:7f:e8:60:
cc:07:46:03:68:86:17:4c:5e:a2:a2:d5:72:d6:09:
63:e3:5f:fe:b1:78:73:3f:fe:10:12:a7:13:1e:2f:
7d:99:ce:db:11:7a:21:57:f6:27:2b:2e:af:c9:79:
d1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:76:8F:0C:23:23:D4:6D:32:1E:8A:C9:93:E7:5B:0B:1B:82:1E:54
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919089B/1BCD43B6B11111EF8E23056FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919089B/1BCD43B6B11111EF8E23056FC4F9AE02/PHaPDCMj1G0yHorJk-dbCxuCHlQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150688
sbgp-ipAddrBlock: critical
IPv4:
203.30.75.0/24
IPv6:
2001:df5:71c0::/48
Signature Algorithm: sha256WithRSAEncryption
12:81:59:a1:58:0b:99:24:ed:b3:ae:5a:0a:af:3b:3f:35:03:
ee:20:9c:17:2c:a4:27:dc:5b:62:9d:24:07:5e:12:13:f5:68:
a2:32:be:d7:11:7e:62:b4:11:80:4f:26:18:55:81:6b:2f:a7:
ec:f8:f6:5f:21:e2:85:a7:15:02:69:cd:3a:d1:38:63:81:d1:
86:92:9f:39:dc:de:73:3c:91:12:8f:9e:66:97:d6:8c:b1:c8:
83:54:fd:57:5a:09:f9:4b:e3:df:82:31:b3:3c:84:e3:92:3a:
9a:f0:68:ba:27:bd:fc:f8:a6:ac:75:98:ed:96:fa:1a:a7:2c:
98:0c:3b:48:d3:26:d8:8b:9a:2c:08:71:e0:79:13:1a:45:72:
87:f6:12:1a:d1:f6:70:b9:59:3c:5a:2f:e0:8e:90:76:b4:f8:
6d:68:54:9a:58:1e:77:85:07:df:aa:99:6e:80:f2:03:95:92:
10:20:ed:d7:b7:67:b7:30:18:68:2b:d3:ae:53:f5:b6:bb:53:
47:b3:49:b5:e9:8d:f8:97:b3:5e:11:38:ce:70:e4:3e:fe:0a:
7d:b1:ff:83:8e:b9:51:74:3f:6a:a7:b4:59:24:af:79:cb:9b:
a2:f9:a7:1f:90:00:7f:ad:15:48:a1:0e:78:62:c1:fd:5f:ce:
f1:58:d9:8c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 25 22:39:33 2025 by rpki-client