Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer
File: hNKQTEi_9V2argiHuCwzDxubKaw.cer (raw, json)
Hash identifier: 7+aE6icXpGEioPnXpmnn4rnZPLqI6iljSBjcIpyoDVo=
Subject key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024E10
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 13 Jun 2025 13:25:04 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 38528
IP: 103.109.116.0/22
IP: 203.110.64.0/20
IP: 2402:6840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Jun 2025 16:13:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151056 (0x24e10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 13 13:25:04 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:4c:07:92:3c:38:82:6e:3a:9a:9b:5e:fc:37:
f2:5e:68:ff:f9:88:03:77:ae:ae:ec:06:f0:2b:92:
a5:d3:38:00:ab:c5:d1:99:de:bd:58:32:2e:38:35:
21:1f:b4:89:72:b1:ed:3f:25:87:12:85:d4:75:04:
e3:57:a5:55:51:22:69:6e:cc:0a:d2:db:8a:46:d1:
0b:e9:e6:66:ac:4c:c7:e1:16:ec:10:94:a1:e7:7a:
fa:c3:0c:ce:51:3d:fd:8c:8f:df:f1:2d:2d:58:17:
83:81:22:d3:0a:21:b5:53:e6:c1:a8:34:ec:ef:c2:
49:6a:df:ef:7e:d5:87:33:44:5b:33:92:f6:59:8b:
a7:88:4b:c2:8f:de:30:10:34:63:1a:39:de:60:7a:
66:cc:09:88:8a:f6:a3:2f:fb:0f:7e:78:3f:1d:c0:
5c:60:af:48:36:73:d3:37:21:9d:79:45:c0:4b:8d:
2d:a4:09:03:f1:16:2b:d3:9f:66:ad:43:b4:78:ca:
e0:73:48:4e:b7:3b:51:17:f8:7c:cb:6a:ec:a3:cb:
90:db:c1:ea:98:29:1b:30:95:9e:96:d0:e1:b2:e3:
46:8e:8b:54:d4:b1:f4:bb:3a:0b:fe:33:b7:ee:ca:
6c:96:f9:10:03:d2:74:cb:6f:6e:11:49:26:ed:1e:
0e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38528
sbgp-ipAddrBlock: critical
IPv4:
103.109.116.0/22
203.110.64.0/20
IPv6:
2402:6840::/32
Signature Algorithm: sha256WithRSAEncryption
0b:3d:36:86:c3:ae:e7:e2:53:25:c7:d0:33:b5:14:56:f1:5d:
b5:65:7d:ab:f4:bf:bd:a5:01:b1:ff:24:5a:09:45:a4:a2:ca:
e0:ab:b4:98:d1:b9:0e:c8:bb:ba:ec:ba:f5:9e:cd:50:02:71:
61:df:7d:49:0a:a1:bc:78:7f:04:43:e5:a6:57:bf:d7:31:ec:
e9:23:c7:a0:c8:94:07:08:2f:10:32:32:75:81:d2:2c:bd:da:
83:b3:85:22:a8:f9:1d:30:4e:ca:5d:f4:42:ee:34:71:28:12:
48:d2:9c:b5:f9:ba:d8:ea:a3:3c:a2:41:9a:29:7c:7f:07:67:
5a:ae:a6:b6:0b:a7:d7:8c:b6:d0:df:2b:15:6d:59:52:14:55:
b2:30:b1:53:d3:c5:ae:fa:79:52:a7:01:a4:c1:f3:92:17:70:
82:e1:89:2b:73:3e:62:0b:e9:00:55:ec:3a:95:3f:9c:14:5c:
b6:f7:b7:94:6d:96:a4:09:5e:d9:2f:fd:62:f3:af:75:22:e9:
aa:da:48:5f:ed:ea:94:07:dc:a5:64:01:62:a2:70:8b:f0:de:
71:ec:59:52:67:71:b5:e2:e3:67:ee:09:f9:18:b1:53:ba:c1:
fe:47:cd:65:bd:a0:56:17:27:bb:33:33:8d:82:56:6a:4f:aa:
97:d7:84:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 17:58:35 2025 by rpki-client