Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer
File: UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer (raw, json)
Hash identifier: 3Ag18gNFtYg1gng0Xd29GYUvEHX5jqht7ZqjJuvjEts=
Subject key identifier: 50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 025889
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Jul 2025 21:52:31 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: IP: 103.139.228.0/23
IP: 2001:df0:9680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 Aug 2025 05:57:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153737 (0x25889)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 28 21:52:31 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A91E5191, serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:db:50:1a:50:9f:a0:90:db:10:e9:15:e5:73:
f8:40:dd:b1:0a:a4:59:e8:1d:36:66:ff:61:c4:18:
af:5a:f0:13:83:fa:b3:4a:77:66:d7:51:24:32:28:
77:ea:18:ee:8e:e1:a3:29:23:07:de:68:75:1c:8c:
93:45:a2:dd:ad:af:96:3b:5d:f3:9e:82:c3:6d:85:
9d:73:ec:55:63:ce:a3:3f:9d:64:d8:14:66:da:e5:
fc:52:ab:e3:d9:03:8b:58:46:18:98:fa:a8:3e:1a:
b0:75:07:15:c7:d7:85:2e:de:4b:74:be:13:5a:c0:
d0:64:0c:58:8e:09:ca:14:5e:0a:ca:f1:e9:50:52:
6e:95:6b:b0:4a:66:91:3f:16:d1:42:15:20:c8:18:
ec:f3:18:e8:2f:04:5f:a9:ad:b1:b4:05:3d:7a:97:
56:7d:dd:29:be:bd:85:15:bb:e7:5d:d1:39:98:30:
0a:8f:02:06:74:93:52:39:eb:7a:0c:53:0b:f4:67:
77:ed:cc:cf:69:05:39:6d:de:8a:29:53:ec:72:ac:
c4:4a:62:89:42:d0:32:9a:ac:89:17:44:93:ca:61:
3d:40:73:bd:36:cd:7f:68:47:7f:b4:1d:5f:c2:94:
a6:40:a2:18:98:6b:6a:33:83:47:c4:ef:42:16:59:
ac:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.139.228.0/23
IPv6:
2001:df0:9680::/48
Signature Algorithm: sha256WithRSAEncryption
d1:5b:fa:5b:16:00:77:05:7e:1e:65:96:08:e7:16:c9:4f:b2:
d1:f7:df:0b:e9:7a:08:e5:63:7e:18:ff:61:4d:36:92:c0:5c:
ec:8f:cc:2c:96:d1:a9:5f:a3:ee:3a:eb:48:37:93:c1:d6:96:
c8:e7:39:3d:74:03:36:dc:13:2b:75:e4:7c:4a:2a:e6:9d:b7:
bf:80:4c:02:53:6b:5a:e0:df:45:d7:c3:6c:98:d9:a0:d1:c5:
87:5f:76:f9:dd:f7:29:fb:65:da:73:4f:8c:97:73:1d:10:9d:
31:3d:32:27:23:d1:9e:b4:5d:57:7a:f7:ed:a8:ec:d5:8c:ea:
4c:36:ba:e3:37:c7:ff:e8:2a:b8:85:85:90:d4:e5:57:2a:1a:
65:dd:67:0c:5d:ed:19:db:1c:87:85:70:34:0e:c0:18:07:3e:
9e:f2:cc:ad:6d:8f:11:77:a1:2e:5c:17:27:49:32:0d:e3:73:
25:a8:97:d7:f8:81:f5:2c:87:00:f5:82:d3:df:51:2e:b0:90:
6b:40:c3:5c:ce:a2:c1:50:2e:59:ac:05:12:4d:0e:db:b2:e3:
c9:87:f8:7f:37:54:02:87:83:24:90:34:ec:a4:bd:c5:99:09:
05:20:7c:99:02:70:f9:25:c5:29:46:1e:4a:c7:32:7f:b2:88:
f9:4c:df:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:22:40 2025 by rpki-client