Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer
File: r2oY2zoHHvGMylvos1Qz31RPD7I.cer (raw, json)
Hash identifier: RAB5Q83AkS9C3QaKtgaH1rb7WNKrIrEOB6lBYMQlpsQ=
Subject key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0257F9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 25 Jul 2025 16:42:51 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 137981
IP: 103.119.75.0/24
IP: 103.143.252.0/24
IP: 2001:df5:df00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 Aug 2025 12:24:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153593 (0x257f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 25 16:42:51 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:52:a0:79:8d:61:15:7f:09:cd:43:24:20:41:
eb:97:c8:4c:c5:49:04:d0:e8:a7:95:98:90:e0:31:
b3:66:95:b1:3e:38:0b:2a:76:0c:3e:1d:71:68:7e:
8e:3a:ab:13:a0:3d:f1:4f:10:f9:f3:3c:a1:29:7d:
c8:44:4a:4e:6a:95:ac:af:73:49:58:82:2c:8e:17:
11:2c:b6:c9:dc:aa:74:79:55:7c:3b:6a:28:ec:b7:
7c:5b:4c:43:b3:4b:9b:c3:bd:a1:26:23:09:e6:cc:
09:52:cd:34:4c:a6:f3:23:36:ea:4a:31:db:9b:f1:
e6:8e:19:4d:ba:41:7f:c0:27:e3:70:99:69:c7:e7:
d8:58:75:b0:f8:b5:6e:a3:b2:82:d4:a4:a5:0d:41:
92:e3:22:bb:ae:c1:bc:ee:a0:56:41:79:c3:1a:9c:
69:28:26:2e:98:02:73:20:6e:c9:2f:a7:80:19:7c:
d8:bd:83:a8:18:52:6e:f1:67:8d:68:7f:8e:94:ab:
3c:12:7f:63:3f:23:79:b9:3d:d2:f4:1e:96:d2:50:
ec:91:3b:1e:d2:73:66:ea:da:74:ea:83:2d:58:ea:
d5:47:f6:b4:0b:1e:45:2a:ab:43:62:cc:f1:d9:17:
32:fe:c6:ba:24:d5:25:7d:3d:6b:eb:2c:b1:71:6d:
b7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137981
sbgp-ipAddrBlock: critical
IPv4:
103.119.75.0/24
103.143.252.0/24
IPv6:
2001:df5:df00::/48
Signature Algorithm: sha256WithRSAEncryption
8b:3e:7c:0d:39:71:33:30:94:ee:ab:76:5e:7b:5a:f4:83:d7:
72:81:81:f1:d8:57:99:0d:48:a9:89:28:62:5c:49:95:53:85:
39:2e:17:9d:34:c0:6e:d7:c6:67:7d:6f:bb:bd:80:f3:c5:a5:
16:ee:c9:c3:99:4c:26:1e:27:d4:7f:e1:b2:da:bd:10:f8:ec:
19:67:c1:df:f2:d2:2d:04:b3:5b:31:28:2a:48:6a:bb:bb:8d:
44:54:7a:22:86:b8:f5:80:d8:a7:14:02:6e:ef:00:05:87:0e:
59:fc:b9:4a:67:7a:37:33:be:df:52:aa:68:3c:84:27:7f:d7:
d6:56:96:51:6c:17:a4:51:53:d9:e2:61:8d:01:f3:ab:84:f5:
6d:5b:d8:6a:e8:c5:bf:ce:1e:6c:2a:ac:f0:ea:5f:31:60:49:
4a:da:ac:56:0a:62:d7:bd:88:b5:95:d5:41:32:d2:bc:90:1c:
f6:59:ac:cc:89:c0:0d:dd:a0:57:b1:3a:16:67:1f:73:fd:8b:
88:d7:0d:4d:16:b6:3c:1d:89:af:ed:b1:51:79:07:1f:dd:5a:
55:fb:a8:5d:65:bc:e1:68:84:69:8c:e7:e3:61:a2:e8:1a:5b:
c9:4b:d9:62:5f:1b:2d:c0:9c:30:db:ab:dc:ad:75:fd:0a:bb:
1f:90:9f:64
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIDAlf5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDcyNTE2NDI1MVoXDTI2MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJF
OEIzNTQzM0RGNTQ0RjBGQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCqUqB5jWEVfwnNQyQgQeuXyEzFSQTQ6KeVmJDgMbNmlbE+OAsqdgw+HXFofo46
qxOgPfFPEPnzPKEpfchESk5qlayvc0lYgiyOFxEstsncqnR5VXw7aijst3xbTEOz
S5vDvaEmIwnmzAlSzTRMpvMjNupKMdub8eaOGU26QX/AJ+NwmWnH59hYdbD4tW6j
soLUpKUNQZLjIruuwbzuoFZBecManGkoJi6YAnMgbskvp4AZfNi9g6gYUm7xZ41o
f46UqzwSf2M/I3m5PdL0HpbSUOyROx7Sc2bq2nTqgy1Y6tVH9rQLHkUqq0NizPHZ
FzL+xrok1SV9PWvrLLFxbbdDAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUr2oY2zoH
HvGMylvos1Qz31RPD7IwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThFMjBFLzIzQUFEOThFMUZDODExRUE4NDU5NEY1RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpv
SEh2R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhr9MDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAZ3dLAwQAZ4/8
MA8EAgACMAkDBwAgAQ313wAwDQYJKoZIhvcNAQELBQADggEBAIs+fA05cTMwlO6r
dl57WvSD13KBgfHYV5kNSKmJKGJcSZVThTkuF500wG7Xxmd9b7u9gPPFpRbuycOZ
TCYeJ9R/4bLavRD47Blnwd/y0i0Es1sxKCpIaru7jURUeiKGuPWA2KcUAm7vAAWH
Dln8uUpnejczvt9Sqmg8hCd/19ZWllFsF6RRU9niYY0B86uE9W1b2Groxb/OHmwq
rPDqXzFgSUrarFYKYte9iLWV1UEy0ryQHPZZrMyJwA3doFexOhZnH3P9i4jXDU0W
tjwdia/tsVF5Bx/dWlX7qF1lvOFohGmM5+NhougaW8lL2WJfGy3AnDDbq9ytdf0K
ux+Qn2Q=
-----END CERTIFICATE-----
Generated at Wed Aug 6 14:19:08 2025 by rpki-client