Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer
File: ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer (raw, json)
Hash identifier: LybeUuwXVek0iKqi2VpxJSbsNPjrndi5rCwJIjjj4lE=
Subject key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024DC2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 12 Jun 2025 07:37:20 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153325
IP: 103.151.248.0/24
IP: 103.251.25.0/24
IP: 116.206.148.0/24
IP: 116.206.150.0/24
IP: 203.19.243.0/24
IP: 2001:df4:4140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Jun 2025 16:13:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150978 (0x24dc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 12 07:37:20 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3a:2f:97:04:43:b3:4c:fc:11:6c:b0:ae:fe:
06:33:b5:91:70:c2:33:9c:6c:92:81:51:54:6c:69:
c4:9d:99:47:5f:29:ce:d4:1a:b6:85:c2:63:32:d2:
b7:c6:64:ec:48:47:b8:9e:85:7e:d2:d3:8c:60:4d:
94:2b:41:93:9f:e6:df:c6:ec:df:c4:a8:93:5a:42:
82:14:05:e8:06:ad:d0:a1:63:e5:03:31:eb:80:76:
4a:fe:f8:d1:2f:65:94:94:63:c6:41:85:14:51:5b:
a3:cd:36:21:79:41:87:f0:c5:be:89:da:cd:e9:f9:
0b:a9:2a:ed:4f:5f:62:59:6d:a1:e5:96:e6:21:8c:
81:1e:e1:a0:a6:81:3a:0b:32:a1:d4:98:82:bc:5a:
c5:8e:e7:f9:5e:51:04:66:bc:cb:c5:d1:c0:c2:c8:
b6:06:44:7b:20:00:87:ae:52:f9:df:91:82:1e:f6:
39:6d:79:3a:31:f5:93:32:ce:b6:70:47:2c:e2:79:
88:24:9a:36:37:e2:0b:68:27:36:bf:f1:82:a6:e9:
65:b8:bb:0f:09:79:3f:2d:86:e0:19:4d:34:5b:85:
16:85:d7:f4:02:38:aa:ae:e1:af:14:50:f0:81:0d:
b3:33:44:b5:95:b4:61:6f:db:da:ed:c7:e3:67:db:
d8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153325
sbgp-ipAddrBlock: critical
IPv4:
103.151.248.0/24
103.251.25.0/24
116.206.148.0/24
116.206.150.0/24
203.19.243.0/24
IPv6:
2001:df4:4140::/48
Signature Algorithm: sha256WithRSAEncryption
7f:25:a4:11:3b:38:2a:b6:ee:59:3c:61:1e:fd:05:c3:d3:92:
74:c4:ac:c2:e6:dd:95:02:6c:01:4e:9f:d7:ef:41:7c:0b:d5:
85:4e:3f:5a:80:dc:ba:ae:99:ea:32:5a:e1:b8:59:e8:91:75:
62:e6:33:47:8f:c8:09:fc:60:4c:a8:c6:b6:fb:91:cf:19:83:
34:ae:57:98:48:44:8b:f9:a0:4f:60:7e:1f:89:11:74:fa:86:
21:51:96:7a:e3:c4:d7:b5:d3:c2:61:68:29:ae:83:9d:0a:5a:
99:81:7f:a7:61:5f:6c:b6:d6:7a:aa:37:78:2c:65:6c:7d:62:
9c:7b:89:1b:39:ef:3e:36:0e:5e:d4:3a:f1:eb:0a:7b:3f:19:
4f:ac:63:f3:98:02:9b:bc:09:70:b1:d1:63:fc:03:0c:ef:8f:
c4:0a:ac:00:fe:25:aa:a0:06:ed:54:e6:e4:34:78:f1:3e:02:
0c:da:ad:37:94:61:2d:89:4a:b3:fd:23:87:4b:17:ae:3f:32:
45:e8:11:fb:9f:ed:35:f2:7e:b3:ca:6a:ff:b9:7c:ed:b5:70:
48:aa:84:ac:f0:5e:77:a9:59:bc:86:80:8e:65:e8:ba:a5:d6:
3b:d0:5f:0c:db:09:ed:f4:3d:db:45:34:06:8c:60:5f:ef:f2:
fd:82:6b:3e
-----BEGIN CERTIFICATE-----
MIIGQzCCBSugAwIBAgIDAk3CMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDYxMjA3MzcyMFoXDTI1MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTE5MzIxMTAvBgNVBAUTKDY1RTE3NzBFNzg4NTUxMEExOENFOTBE
OEFBREQ5RURFN0Q1QjM1NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDlOi+XBEOzTPwRbLCu/gYztZFwwjOcbJKBUVRsacSdmUdfKc7UGraFwmMy0rfG
ZOxIR7iehX7S04xgTZQrQZOf5t/G7N/EqJNaQoIUBegGrdChY+UDMeuAdkr++NEv
ZZSUY8ZBhRRRW6PNNiF5QYfwxb6J2s3p+QupKu1PX2JZbaHlluYhjIEe4aCmgToL
MqHUmIK8WsWO5/leUQRmvMvF0cDCyLYGRHsgAIeuUvnfkYIe9jlteTox9ZMyzrZw
RyzieYgkmjY34gtoJza/8YKm6WW4uw8JeT8thuAZTTRbhRaF1/QCOKqu4a8UUPCB
DbMzRLWVtGFv29rtx+Nn29jPAgMBAAGjggM4MIIDNDAdBgNVHQ4EFgQUZeF3DniF
UQoYzpDYqt2e3n1bNVMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTUxOTMyLzUyMUM4RTVDNzIwNzExRUY5REM4QkEyMUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1MTkzMi81MjFDOEU1QzcyMDcxMUVGOURDOEJBMjFDNEY5QUUwMi9aZUYzRG5p
RlVRb1l6cERZcXQyZTNuMWJOVk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlbtMEgGCCsGAQUFBwEHAQH/BDkwNzAkBAIAATAeAwQAZ5f4AwQAZ/sZ
AwQAdM6UAwQAdM6WAwQAyxPzMA8EAgACMAkDBwAgAQ30QUAwDQYJKoZIhvcNAQEL
BQADggEBAH8lpBE7OCq27lk8YR79BcPTknTErMLm3ZUCbAFOn9fvQXwL1YVOP1qA
3LqumeoyWuG4WeiRdWLmM0ePyAn8YEyoxrb7kc8ZgzSuV5hIRIv5oE9gfh+JEXT6
hiFRlnrjxNe108JhaCmug50KWpmBf6dhX2y21nqqN3gsZWx9Ypx7iRs57z42Dl7U
OvHrCns/GU+sY/OYApu8CXCx0WP8Awzvj8QKrAD+JaqgBu1U5uQ0ePE+AgzarTeU
YS2JSrP9I4dLF64/MkXoEfuf7TXyfrPKav+5fO21cEiqhKzwXnepWbyGgI5l6Lql
1jvQXwzbCe30PdtFNAaMYF/v8v2Caz4=
-----END CERTIFICATE-----
Generated at Sat Jun 14 18:14:43 2025 by rpki-client