Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer
File: ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer (raw, json)
Hash identifier: qlY1T8PmBq1oaDFmlGtgX/TXYJU/7EDh7Ijiwz+TMsY=
Subject key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023ED5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 14 Apr 2025 06:27:14 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153325
IP: 103.251.25.0/24
IP: 116.206.148.0/24
IP: 116.206.150.0/24
IP: 203.19.243.0/24
IP: 2001:df4:4140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147157 (0x23ed5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 14 06:27:14 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9151932, serialNumber=65E1770E7885510A18CE90D8AADD9EDE7D5B3553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3a:2f:97:04:43:b3:4c:fc:11:6c:b0:ae:fe:
06:33:b5:91:70:c2:33:9c:6c:92:81:51:54:6c:69:
c4:9d:99:47:5f:29:ce:d4:1a:b6:85:c2:63:32:d2:
b7:c6:64:ec:48:47:b8:9e:85:7e:d2:d3:8c:60:4d:
94:2b:41:93:9f:e6:df:c6:ec:df:c4:a8:93:5a:42:
82:14:05:e8:06:ad:d0:a1:63:e5:03:31:eb:80:76:
4a:fe:f8:d1:2f:65:94:94:63:c6:41:85:14:51:5b:
a3:cd:36:21:79:41:87:f0:c5:be:89:da:cd:e9:f9:
0b:a9:2a:ed:4f:5f:62:59:6d:a1:e5:96:e6:21:8c:
81:1e:e1:a0:a6:81:3a:0b:32:a1:d4:98:82:bc:5a:
c5:8e:e7:f9:5e:51:04:66:bc:cb:c5:d1:c0:c2:c8:
b6:06:44:7b:20:00:87:ae:52:f9:df:91:82:1e:f6:
39:6d:79:3a:31:f5:93:32:ce:b6:70:47:2c:e2:79:
88:24:9a:36:37:e2:0b:68:27:36:bf:f1:82:a6:e9:
65:b8:bb:0f:09:79:3f:2d:86:e0:19:4d:34:5b:85:
16:85:d7:f4:02:38:aa:ae:e1:af:14:50:f0:81:0d:
b3:33:44:b5:95:b4:61:6f:db:da:ed:c7:e3:67:db:
d8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153325
sbgp-ipAddrBlock: critical
IPv4:
103.251.25.0/24
116.206.148.0/24
116.206.150.0/24
203.19.243.0/24
IPv6:
2001:df4:4140::/48
Signature Algorithm: sha256WithRSAEncryption
35:b2:7c:f5:99:c0:c0:29:da:8c:0b:3a:33:14:89:2c:13:e3:
d4:15:ac:8e:bd:38:88:20:f2:ea:51:3f:ec:c1:43:e4:fe:2b:
bc:e5:d2:a1:6a:f0:33:27:92:9b:8b:d8:b2:33:7c:3a:cb:c4:
f5:e2:a4:dd:a4:d6:13:06:e0:f6:7b:ee:35:f3:c8:b6:85:04:
0d:79:0a:b9:cd:02:c3:72:e6:6b:c0:8a:d8:6f:ee:44:5f:33:
2f:01:a0:ef:50:cc:a0:d1:8a:6f:72:f8:15:38:53:c9:df:e7:
70:22:d8:d9:0f:17:c6:51:8e:e1:7f:90:51:e7:1e:47:08:88:
ea:67:86:db:77:a8:46:24:b9:25:aa:82:c0:d3:9c:2d:71:44:
18:cc:ca:19:db:35:f1:c1:c5:e9:fe:39:41:ef:0a:5f:60:6b:
26:c1:cc:07:77:7e:64:57:51:84:4e:ed:3f:b7:62:1d:ef:d2:
f5:93:20:ea:2d:a6:9b:7e:20:80:11:80:0a:82:a0:0a:35:65:
21:84:c9:ea:3f:b9:6c:7b:af:f9:4a:bc:8f:89:c2:7b:c0:87:
ea:87:29:05:6c:ee:d5:6f:29:f5:d7:7e:3a:2f:d3:9d:50:f7:
fd:f4:db:a2:9b:b4:1e:b3:4b:64:21:e8:ff:cf:c9:09:3d:a8:
60:a9:a6:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:56:05 2025 by rpki-client