Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer
File: yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer (raw, json)
Hash identifier: 7mo0hHDHfYv2Qly3m50We7rkkkvBP4idySYEKDT7giE=
Subject key identifier: C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024D4A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 10 Jun 2025 02:36:01 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 137474
IP: 202.93.248.0/22
IP: 2001:df4:c240::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 21 Jun 2025 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150858 (0x24d4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 10 02:36:01 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A917E1FA, serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:db:69:a2:35:bc:ba:e9:e1:69:e3:2e:e8:a4:
10:f9:b0:0c:e8:71:f3:3c:50:1e:c9:a3:63:a7:d8:
d0:de:dd:f0:7c:17:fb:76:15:57:15:e0:ea:90:07:
30:5b:6f:52:0f:7f:26:ca:37:08:c2:df:ac:11:bd:
9e:67:57:70:36:b9:c8:e6:da:7d:1f:e5:ca:19:45:
cb:e5:07:16:0b:42:65:8c:32:f3:dc:6d:d1:8c:c0:
30:84:49:d1:49:00:e1:a4:63:e4:16:29:15:ad:c5:
a1:26:b0:97:94:89:72:23:8d:0d:60:b8:15:84:a4:
7c:e8:de:64:5a:11:cf:eb:43:8d:93:62:da:2f:2f:
1e:17:39:af:92:41:a1:48:91:cc:fa:8d:7a:84:62:
d7:02:f6:71:98:4b:1f:64:63:62:5b:f3:e0:a6:aa:
de:a4:9e:d1:11:8a:6a:fd:08:ea:5c:a8:90:99:14:
97:15:0a:3b:9a:f1:52:4e:40:8d:7b:d1:d2:46:eb:
af:29:18:34:6b:59:56:bf:63:86:12:49:61:24:e0:
44:49:bc:92:08:c6:ef:66:60:22:14:2d:ff:1e:cb:
7b:c1:26:93:c1:81:f8:cf:3c:6b:da:39:0e:05:c9:
a4:68:c0:63:5a:1e:6b:7b:a5:5e:2d:88:60:e7:e2:
0a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137474
sbgp-ipAddrBlock: critical
IPv4:
202.93.248.0/22
IPv6:
2001:df4:c240::/48
Signature Algorithm: sha256WithRSAEncryption
17:68:05:55:8b:ee:20:25:b3:38:f6:bf:28:fb:a7:d3:46:bf:
6f:6f:6e:be:14:21:55:7f:08:2a:e1:6f:a3:a1:46:bf:0a:7e:
4f:c8:97:87:75:d9:4d:5b:66:35:c8:9c:63:6c:b6:e5:ec:04:
41:c8:37:7b:4f:10:8c:7f:b6:3e:0b:8c:5d:98:e3:8b:7e:6b:
b6:fe:37:2b:a1:3b:dc:d8:8c:be:2a:1e:9c:7b:71:3b:14:71:
ad:c8:8e:96:f5:f7:e0:3a:89:bc:7d:45:7e:01:eb:20:6c:6e:
0c:95:c4:55:d1:d5:85:be:ac:c8:91:c6:87:4d:13:a8:9e:30:
e7:93:d7:3b:2d:0b:e7:91:3f:56:c5:5b:af:f6:04:8e:12:5b:
65:22:e5:cc:9d:fb:ca:ea:8f:60:7a:d7:ca:fc:be:92:8a:ed:
ba:ab:5d:55:ad:31:d0:bf:31:19:6d:09:e0:11:92:65:4f:ce:
67:16:30:af:00:51:91:db:17:bd:b5:d2:a1:cb:a4:ac:91:b8:
0f:43:ed:a4:4f:01:1c:1e:97:f9:4a:d0:46:4c:3c:8b:a7:79:
83:46:e1:01:92:be:03:fa:dc:e3:95:17:25:a6:87:fb:f9:3e:
86:a0:b7:a5:58:5c:86:75:4f:05:a6:de:bd:a1:4b:0c:99:c9:
b7:64:7a:36
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 14 05:14:23 2025 by rpki-client