Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tvsH4Dje8GyCC8bNIDUUVU1kPWg.cer
File: tvsH4Dje8GyCC8bNIDUUVU1kPWg.cer (raw, json)
Hash identifier: kKuz6iR1/ftg42YXDNoPlBnXk3GVoSlR5wwH1G5T+Co=
Subject key identifier: B6:FB:07:E0:38:DE:F0:6C:82:0B:C6:CD:20:35:14:55:4D:64:3D:68
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0256D1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91758EC/74D35840663011F0B9DC4E64C4F9AE02/tvsH4Dje8GyCC8bNIDUUVU1kPWg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91758EC/74D35840663011F0B9DC4E64C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 21 Jul 2025 12:44:40 +0000
Certificate not after: Wed 30 Sep 2026 00:00:00 +0000
Subordinate resources: AS: 134231
IP: 2001:df5:e540::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 11 Aug 2025 04:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153297 (0x256d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 21 12:44:40 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=A91758EC, serialNumber=B6FB07E038DEF06C820BC6CD203514554D643D68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:14:40:fe:47:23:d8:a7:b7:24:c0:79:ed:08:
9d:39:57:f7:9e:bb:8b:2e:25:a2:5f:44:bf:16:86:
1a:f1:70:85:be:9e:3e:ad:99:66:ad:8a:0d:8e:32:
95:03:31:c4:e4:fd:a7:44:4f:81:eb:33:b5:41:83:
c5:9a:95:5d:e3:44:e2:80:a2:13:86:7d:7f:33:64:
82:80:31:6c:3d:9e:95:3e:70:f6:d0:e5:84:2d:d5:
51:f7:20:40:d6:7e:66:50:f1:40:5b:36:e7:27:b5:
0e:6c:09:14:5c:f0:21:3b:3b:d0:3f:b4:aa:f7:83:
ba:64:e0:84:aa:92:f8:db:39:bd:4c:a7:54:58:a7:
40:2e:97:10:74:70:4e:2f:6d:ac:13:25:3b:2b:cf:
c0:3d:3b:48:08:cc:c0:27:d2:25:9c:89:81:26:a8:
78:f8:96:cd:0a:f6:65:65:3f:ee:59:53:f2:db:ac:
92:a8:a9:28:72:cb:3a:12:b1:f3:f8:45:15:13:82:
44:2a:a3:55:51:b6:4c:7a:88:4f:fe:ee:53:2e:94:
d4:71:26:d0:07:a9:9f:34:e1:69:a2:f8:7e:dc:94:
2a:b0:9f:f1:fa:51:bd:b5:73:ce:81:56:52:26:a3:
43:2a:3f:a1:43:a5:5f:93:da:8d:58:96:e2:ee:d9:
40:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:FB:07:E0:38:DE:F0:6C:82:0B:C6:CD:20:35:14:55:4D:64:3D:68
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91758EC/74D35840663011F0B9DC4E64C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91758EC/74D35840663011F0B9DC4E64C4F9AE02/tvsH4Dje8GyCC8bNIDUUVU1kPWg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134231
sbgp-ipAddrBlock: critical
IPv6:
2001:df5:e540::/48
Signature Algorithm: sha256WithRSAEncryption
3d:5f:87:94:5c:9b:af:84:5d:f3:02:81:ee:96:e0:2d:9c:fb:
c3:80:aa:13:97:ae:b1:35:92:0f:59:ac:0d:ea:ab:6f:a0:c7:
ea:47:36:48:c1:41:82:9e:fe:60:97:c2:91:9e:83:a8:e7:c4:
76:73:ce:36:f0:92:48:4f:19:1c:fa:80:ff:69:3a:ce:1a:18:
4d:f9:2a:25:14:0b:e7:1c:52:08:89:91:38:b5:8c:a5:c0:2c:
1b:98:6c:4a:b3:96:21:80:dc:d8:e5:98:1e:df:1e:d1:1d:2a:
ff:20:7e:c1:96:34:a9:36:2d:b9:a0:20:41:cf:50:99:cc:6e:
8c:9d:09:59:dc:e7:31:f9:ba:c5:46:23:f9:99:d9:51:98:35:
e1:3e:80:7a:29:a4:79:58:29:d2:c7:96:1d:44:7e:e4:e8:bd:
1b:71:5d:ed:99:7d:9a:e0:db:79:dc:f9:86:33:9d:7c:c2:bc:
a6:8b:06:9e:a5:1f:d7:b8:6d:8c:32:84:29:b2:2a:36:3a:8d:
20:df:bc:ee:bd:fb:b9:21:da:ae:90:08:16:db:3a:29:5d:82:
79:6a:3a:5d:8a:fb:56:08:c5:5f:30:1d:9f:ee:81:af:2d:88:
a0:73:eb:1a:7f:47:08:39:45:9b:86:a6:b4:a4:74:a2:3a:aa:
b9:76:ba:4c
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgIDAlbRMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDcyMTEyNDQ0MFoXDTI2MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzU4RUMxMTAvBgNVBAUTKEI2RkIwN0UwMzhERUYwNkM4MjBCQzZD
RDIwMzUxNDU1NEQ2NDNENjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC1FED+RyPYp7ckwHntCJ05V/eeu4suJaJfRL8WhhrxcIW+nj6tmWatig2OMpUD
McTk/adET4HrM7VBg8WalV3jROKAohOGfX8zZIKAMWw9npU+cPbQ5YQt1VH3IEDW
fmZQ8UBbNucntQ5sCRRc8CE7O9A/tKr3g7pk4ISqkvjbOb1Mp1RYp0AulxB0cE4v
bawTJTsrz8A9O0gIzMAn0iWciYEmqHj4ls0K9mVlP+5ZU/LbrJKoqShyyzoSsfP4
RRUTgkQqo1VRtkx6iE/+7lMulNRxJtAHqZ804Wmi+H7clCqwn/H6Ub21c86BVlIm
o0MqP6FDpV+T2o1YluLu2UDnAgMBAAGjggMSMIIDDjAdBgNVHQ4EFgQUtvsH4Dje
8GyCC8bNIDUUVU1kPWgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc1OEVDLzc0RDM1ODQwNjYzMDExRjBCOURDNEU2NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3NThFQy83NEQzNTg0MDY2MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi90dnNINERq
ZThHeUNDOGJOSURVVVZVMWtQV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgxXMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN9eVAMA0G
CSqGSIb3DQEBCwUAA4IBAQA9X4eUXJuvhF3zAoHuluAtnPvDgKoTl66xNZIPWawN
6qtvoMfqRzZIwUGCnv5gl8KRnoOo58R2c8428JJITxkc+oD/aTrOGhhN+SolFAvn
HFIIiZE4tYylwCwbmGxKs5YhgNzY5Zge3x7RHSr/IH7BljSpNi25oCBBz1CZzG6M
nQlZ3Ocx+brFRiP5mdlRmDXhPoB6KaR5WCnSx5YdRH7k6L0bcV3tmX2a4Nt53PmG
M518wrymiwaepR/XuG2MMoQpsio2Oo0g37zuvfu5IdqukAgW2zopXYJ5ajpdivtW
CMVfMB2f7oGvLYigc+saf0cIOUWbhqa0pHSiOqq5drpM
-----END CERTIFICATE-----
Generated at Mon Aug 4 08:26:25 2025 by rpki-client