Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Vft7zKdAKF_IGqNg8CzjL5WBbbY.cer
File: Vft7zKdAKF_IGqNg8CzjL5WBbbY.cer (raw, json)
Hash identifier: 2kiylGHfo262chtzeo2h+fMcBYuEubjXG7a5qWj2F3s=
Subject key identifier: 55:FB:7B:CC:A7:40:28:5F:C8:1A:A3:60:F0:2C:E3:2F:95:81:6D:B6
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 60E1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/Vft7zKdAKF_IGqNg8CzjL5WBbbY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Jan 2025 12:23:06 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 192.73.21.0/24
IP: 192.107.171.0 -- 192.107.172.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24801 (0x60e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 14 12:23:06 2025 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91127C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4f:ca:5b:c2:27:9c:46:1a:6a:06:c9:12:d5:
dd:13:ea:4c:d9:32:10:3d:be:2a:aa:a5:95:c7:aa:
e8:38:d0:38:8a:e1:4b:19:4b:1b:06:d6:41:68:56:
4a:04:6a:07:03:73:08:78:4e:7b:20:0a:55:b6:f8:
6c:66:b9:4a:82:c2:d4:37:8e:a8:be:cb:33:4a:ae:
97:f8:53:1c:88:75:84:03:31:9d:11:a7:ba:42:d3:
f7:3a:a0:cc:6c:f1:c7:3a:75:ee:01:a6:b4:2e:d6:
55:6e:36:28:c7:ca:c0:df:e9:a4:6b:9a:cd:33:ae:
dc:56:cd:75:de:18:c1:b4:f1:bb:1d:b1:53:f6:9d:
45:f4:52:4e:be:1a:4e:dd:01:66:2a:a7:74:b4:1a:
92:df:fe:99:4a:44:f1:ad:76:da:31:07:ac:f4:6d:
65:37:4b:2a:2c:0a:40:14:38:cc:bd:c7:98:3d:8f:
b1:f8:56:0d:d1:4e:97:f2:10:f0:0b:86:4b:df:f9:
02:b1:11:56:d0:89:4d:2e:02:01:2d:75:e5:8f:5a:
6b:81:51:42:57:1c:11:64:04:24:49:5f:ea:b1:81:
c3:e6:43:6e:01:81:bc:6c:41:a7:79:15:e3:22:a0:
ba:bc:9d:c9:87:bc:54:d8:e5:51:c7:77:8e:43:cb:
fb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FB:7B:CC:A7:40:28:5F:C8:1A:A3:60:F0:2C:E3:2F:95:81:6D:B6
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/Vft7zKdAKF_IGqNg8CzjL5WBbbY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.73.21.0/24
192.107.171.0-192.107.172.255
Signature Algorithm: sha256WithRSAEncryption
ba:6e:3b:6d:4b:fd:96:22:19:bb:3b:5f:f6:20:4e:90:c9:fa:
d0:5f:3d:53:df:02:74:39:ea:de:57:de:73:a4:24:21:f7:4a:
44:66:a9:8d:7f:fd:eb:29:38:f1:f9:f9:f3:3c:de:3e:1d:e7:
b4:77:ac:52:6b:72:72:0e:b5:d6:a1:0a:9f:ef:d5:54:2a:73:
fb:bc:f7:2e:c8:f9:03:35:1a:2b:9a:c8:af:9a:b9:fb:c1:48:
a5:77:61:b4:4f:c3:22:b8:92:17:c6:60:30:33:cc:0e:25:e6:
c2:cc:1e:62:68:1e:e0:af:b0:e8:a2:04:f8:f3:74:ca:d7:be:
52:ee:b6:cd:54:7d:7d:12:2a:e2:d8:0f:c3:e8:de:04:ef:3b:
68:b5:4e:9b:d3:a1:33:6d:ae:87:69:04:78:8a:69:5a:20:ad:
ac:7e:55:6b:47:90:ad:2b:37:15:57:84:83:16:10:a8:3a:12:
7a:63:b8:c8:5d:b7:2d:29:8f:0c:a2:82:23:46:ba:a9:bb:bc:
67:6b:8e:da:8c:15:88:80:2a:83:42:b8:48:18:ac:12:97:55:
65:e7:3d:7d:c4:be:54:05:e3:a2:e9:74:13:df:a5:67:f0:84:
77:50:3e:58:29:1d:65:ae:33:e0:66:bb:ea:af:b9:1a:0c:8d:
70:b5:e9:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:36:57 2025 by rpki-client