Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer
File: 7w5JMvxot1LjQokiqT5mq-MfNDE.cer (raw, json)
Hash identifier: mRZg5qjVoWy10ixFHe7hWOLKStcqS2B0jOBBPBi/euM=
Subject key identifier: EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6376
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 28 Mar 2025 19:24:39 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: IP: 157.20.102.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25462 (0x6376)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 28 19:24:39 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91B4B33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:10:74:a8:cc:06:55:25:45:a6:dd:e1:9e:f6:
d1:cd:fd:c5:54:1b:36:10:3c:d9:ab:1e:d8:f7:49:
6e:84:4b:29:c6:82:b7:db:d0:83:99:f9:f2:dd:52:
38:89:15:7b:02:b5:37:b9:a6:a0:8a:b4:99:d0:58:
72:06:38:aa:f1:73:38:73:b1:c4:7d:75:40:b7:77:
73:73:a8:3d:8f:e0:6d:a6:cb:cb:20:ab:7b:65:05:
5c:e3:a0:0e:8f:f4:df:87:59:28:81:b9:c5:89:59:
16:6c:b4:61:50:74:ed:c1:5c:35:34:30:f0:ff:9d:
1f:ac:02:7c:fc:f1:48:3a:1b:e2:ed:84:a9:f5:b7:
4e:3a:ee:03:ae:bc:d1:c0:0d:a4:d9:b0:88:66:d9:
45:7e:53:8e:81:71:97:95:95:74:35:4a:30:a8:12:
8d:40:81:ad:08:f6:5d:ae:78:c4:a7:88:57:17:6f:
b3:8f:30:db:aa:36:60:27:23:0b:a6:71:b5:ad:a1:
9f:2d:c4:57:70:c5:b8:88:d1:65:55:4a:5c:c1:53:
a8:4c:f1:00:b9:aa:f2:eb:99:8f:ae:16:88:20:22:
fc:6a:50:ad:6f:36:c7:02:7c:2b:f9:60:51:fc:3e:
0e:c5:9b:ba:1e:f0:91:f6:e7:a8:6c:92:11:4a:b5:
84:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.102.0/23
Signature Algorithm: sha256WithRSAEncryption
15:37:e9:a0:75:98:67:a9:c6:1d:7f:a8:e4:9d:b3:e5:75:73:
2d:5a:09:ab:82:23:1b:73:59:c4:f7:02:79:53:3c:e2:6c:fc:
6c:d4:0b:0f:c8:fa:52:25:d0:fe:26:dd:02:ba:84:8c:37:39:
79:66:5e:82:29:87:aa:b9:46:6b:23:c7:4e:d8:50:00:6a:99:
02:e8:b7:07:86:be:48:dc:28:52:b0:a2:65:a0:98:b0:b5:0d:
77:8e:73:1d:95:2f:f9:85:95:9e:0b:a3:b1:a9:63:d0:2f:cb:
76:a1:9c:82:93:33:7b:f5:93:78:d6:1e:e8:bd:0a:97:1d:34:
ef:64:8a:4d:5a:37:ba:e9:fc:49:c0:ed:98:aa:7e:04:01:dd:
2c:2c:9e:39:fb:60:1e:56:d6:bd:5a:6b:5b:bb:bd:e1:e8:45:
b6:ad:8a:fe:92:a0:f7:ef:df:ab:c6:7a:6e:dd:d7:ab:1e:18:
75:ab:79:bb:a6:fd:e5:a4:52:98:15:03:08:b3:28:50:0a:95:
84:f2:c5:21:b5:01:a3:74:d9:c4:f3:6d:5b:22:c0:ab:40:7c:
1f:4d:2e:ef:c1:40:50:e3:1e:38:46:31:28:80:b8:e2:f6:b8:
90:a8:80:ef:f6:6b:e5:e0:f1:75:a0:5a:9b:1e:38:1d:08:60:
83:93:34:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:38:49 2025 by rpki-client