Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-T76pqbQVK6ZfIo8_yXxacNvigw.cer
File: -T76pqbQVK6ZfIo8_yXxacNvigw.cer (raw, json)
Hash identifier: F+LnKE8Chp8aNsMLcH3batVQmEgccZxkcZOef/6Q3JY=
Subject key identifier: F9:3E:FA:A6:A6:D0:54:AE:99:7C:8A:3C:FF:25:F1:69:C3:6F:8A:0C
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6290
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/-T76pqbQVK6ZfIo8_yXxacNvigw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 02 Mar 2025 15:30:48 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: IP: 157.15.126.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25232 (0x6290)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 2 15:30:48 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A9178C1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:23:30:22:80:b7:72:a3:59:f0:7c:ef:d9:ec:
b0:de:e9:6a:69:21:8d:d8:d4:b7:22:bb:30:12:8c:
64:47:8a:00:0f:22:07:09:73:3c:25:d8:bd:d7:5d:
0e:82:61:77:70:c3:83:41:5a:35:67:3c:83:0c:80:
6d:ea:e1:a0:21:fe:9a:c1:78:04:56:83:51:61:d0:
c7:f5:09:e8:ca:41:9c:89:8c:e3:01:cb:41:02:2a:
b1:17:5f:09:98:96:b1:4b:df:e3:c5:90:92:fb:5f:
a9:8e:6d:a8:aa:91:a1:8c:86:44:51:98:7f:9a:2b:
ee:c8:b5:93:97:f0:e4:ef:44:a2:46:e2:5c:ee:a6:
13:f6:0c:ab:3d:f6:83:e6:c2:8a:73:4d:c1:7d:40:
e9:08:d1:a2:7d:0c:17:ec:07:21:4d:18:a3:85:aa:
fb:00:db:fe:52:b7:62:be:a4:1b:af:9d:70:64:30:
11:27:0d:99:5f:03:8b:0e:eb:7f:05:0a:bd:69:67:
ab:7c:4b:01:6d:40:91:e6:0a:37:63:fa:5c:b1:7f:
22:5e:67:71:b6:7e:23:d2:79:03:22:07:e9:b6:33:
b1:f9:e6:43:53:7f:77:58:09:7a:c3:1b:b1:f6:e9:
aa:c9:95:8d:b2:15:05:e9:72:91:7b:4e:8d:75:75:
34:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:3E:FA:A6:A6:D0:54:AE:99:7C:8A:3C:FF:25:F1:69:C3:6F:8A:0C
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/B989F8A2C64711EE9D68EB7FC4F9AE02/-T76pqbQVK6ZfIo8_yXxacNvigw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.126.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:bb:d4:50:2f:25:11:6f:0b:24:25:8f:0e:2d:f0:55:0b:18:
12:e0:f8:18:fa:78:74:a8:23:37:c3:f4:02:d5:15:99:cd:a8:
7a:6c:e1:f9:bd:5f:35:e2:c3:7f:64:63:d4:fa:8b:2e:23:5e:
4b:d1:ed:f8:29:7d:7c:20:63:4e:79:7e:d8:f9:ee:af:e5:ec:
78:62:c5:63:26:59:c8:a9:a4:37:e7:21:fb:5c:35:e0:d0:5a:
b6:1d:63:d4:e7:32:02:35:95:a1:70:9b:bd:5f:75:84:f0:86:
77:7a:fe:73:a0:bb:9d:ad:65:01:f3:76:60:a0:dd:72:17:2e:
e4:06:44:88:de:0a:4f:a4:00:ac:68:5f:a5:14:2a:39:c4:73:
1b:85:bf:97:06:01:e4:24:cb:f0:eb:6d:b5:e1:be:e9:63:88:
20:a6:4d:99:51:1e:e9:c6:fc:bb:b0:83:41:c3:a2:0c:56:ee:
bd:82:f4:2f:09:b4:42:a2:d7:dc:a1:74:d1:51:85:0e:81:cc:
a2:ac:e4:22:2a:e7:04:87:d4:e4:51:68:88:37:7d:5c:54:86:
a7:bc:11:e2:2d:c7:53:1b:03:de:fa:67:c0:36:82:48:93:21:
51:c1:a7:fb:c4:a9:e5:7b:11:8b:6a:43:07:07:ea:47:43:d0:
ca:a1:c7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:33:12 2025 by rpki-client