Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer
File: PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer (raw, json)
Hash identifier: s//CHcR68tM3Lbk1weSI7y4PSafGHwyidEZey3s9gpg=
Subject key identifier: 3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023CF8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 04 Apr 2025 14:46:00 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 141459
IP: 103.160.22.0/23
IP: 2406:e1c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146680 (0x23cf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 4 14:46:00 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A914E6AA, serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fc:3d:a0:10:fe:d5:f0:76:b8:e3:7d:6b:63:
cd:b9:d7:be:6e:66:15:b9:28:cf:8e:37:b2:e4:eb:
f9:a2:a9:8a:f3:e7:f9:e7:26:f3:3a:19:08:7e:1e:
74:89:e1:40:ed:57:e4:f9:ac:60:dd:88:c0:fb:e7:
08:c0:0c:35:52:27:7b:9e:b4:dd:d2:01:5d:18:e4:
82:fe:0f:22:46:6a:33:5a:3b:88:4f:c6:c7:12:40:
5c:4b:5d:e9:75:ff:a6:f2:4f:39:88:6f:75:43:9e:
35:8b:ce:8b:5c:f0:87:54:3d:e1:b6:3f:cd:12:ca:
aa:da:57:28:7d:da:4f:1c:3f:3c:9d:9b:c6:61:fd:
13:45:de:a6:55:b7:bf:37:13:a3:46:a0:47:49:41:
8c:9f:c5:5c:b0:29:27:64:bd:0e:7c:90:bc:aa:92:
c6:92:4f:e4:fc:8c:1a:08:75:9a:b3:03:66:0d:55:
c2:84:84:1c:48:86:47:54:f6:a5:17:8f:12:44:f1:
e5:45:90:ae:5c:68:eb:d3:1c:c2:3d:a5:4f:16:14:
4f:d2:ff:4f:c6:ae:56:e7:a2:fc:6f:77:c0:86:e8:
77:03:0b:ff:a9:8d:0f:af:21:24:88:f5:d5:98:f0:
c4:28:a0:c8:58:e7:76:f7:63:44:09:63:1f:10:d5:
76:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141459
sbgp-ipAddrBlock: critical
IPv4:
103.160.22.0/23
IPv6:
2406:e1c0::/32
Signature Algorithm: sha256WithRSAEncryption
a8:db:99:7b:cb:8a:a6:13:86:3f:7c:97:70:20:98:af:d5:5c:
28:a8:70:d6:4b:b4:f1:43:e6:25:ad:ff:8f:5c:94:57:20:5a:
a5:91:4a:4d:62:d3:06:c5:96:08:12:a1:43:0b:a7:4a:5d:28:
09:70:0b:da:ee:49:f7:1d:5e:05:68:ab:4f:7c:82:8a:33:18:
3a:6c:ae:72:99:a5:ad:5e:2b:54:67:53:7a:71:c8:12:b2:f2:
f4:70:30:75:30:31:c9:53:6c:1f:db:b9:44:ca:e9:7b:5c:19:
21:5f:c4:ec:d4:fa:d9:07:3b:58:dd:3a:53:b7:6d:b2:da:b3:
18:39:84:0e:dc:ac:7b:82:f3:87:4a:8c:2d:13:cc:65:40:5b:
75:8c:77:39:e4:fc:c7:73:82:4d:d7:17:0c:3a:c6:fb:9a:fc:
dd:b5:0e:00:a7:b8:49:45:f5:4c:67:4d:7b:30:35:a4:94:5b:
2e:fd:99:50:02:c9:40:ad:de:66:3f:f7:b0:a7:53:72:93:92:
b9:ec:cb:8f:25:c3:a6:f5:ea:29:65:93:cc:b7:73:e8:3e:8d:
8a:f5:29:dc:16:d4:82:14:ce:3c:9a:06:ac:bc:2e:14:bd:0e:
5e:63:12:e0:81:6e:28:cc:23:46:58:e1:0f:0c:fe:f0:a8:78:
a1:3e:f4:10
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAjz4MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDQwNDE0NDYwMFoXDTI2MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNEU2QUExMTAvBgNVBAUTKDNENTFFREM0M0EzOTk5QjEzNzFDRTVD
MDQxNDIwODNGRTI4N0QwRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDj/D2gEP7V8Ha4431rY825175uZhW5KM+ON7Lk6/miqYrz5/nnJvM6GQh+HnSJ
4UDtV+T5rGDdiMD75wjADDVSJ3uetN3SAV0Y5IL+DyJGajNaO4hPxscSQFxLXel1
/6byTzmIb3VDnjWLzotc8IdUPeG2P80SyqraVyh92k8cPzydm8Zh/RNF3qZVt783
E6NGoEdJQYyfxVywKSdkvQ58kLyqksaST+T8jBoIdZqzA2YNVcKEhBxIhkdU9qUX
jxJE8eVFkK5caOvTHMI9pU8WFE/S/0/Grlbnovxvd8CG6HcDC/+pjQ+vISSI9dWY
8MQooMhY53b3Y0QJYx8Q1XZzAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUPVHtxDo5
mbE3HOXAQUIIP+KH0PIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRFNkFBLzhFREIxMDdFQURBODExRUJBN0M5RjU2N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERv
NW1iRTNIT1hBUVVJSVAtS0gwUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiiTMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ6AWMA0EAgAC
MAcDBQAkBuHAMA0GCSqGSIb3DQEBCwUAA4IBAQCo25l7y4qmE4Y/fJdwIJiv1Vwo
qHDWS7TxQ+Ylrf+PXJRXIFqlkUpNYtMGxZYIEqFDC6dKXSgJcAva7kn3HV4FaKtP
fIKKMxg6bK5ymaWtXitUZ1N6ccgSsvL0cDB1MDHJU2wf27lEyul7XBkhX8Ts1PrZ
BztY3TpTt22y2rMYOYQO3Kx7gvOHSowtE8xlQFt1jHc55PzHc4JN1xcMOsb7mvzd
tQ4Ap7hJRfVMZ017MDWklFsu/ZlQAslArd5mP/ewp1Nyk5K57MuPJcOm9eopZZPM
t3PoPo2K9SncFtSCFM48mgasvC4UvQ5eYxLggW4ozCNGWOEPDP7wqHihPvQQ
-----END CERTIFICATE-----
Generated at Fri Apr 25 22:40:23 2025 by rpki-client