Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer
File: hXUH8dizkVyVENUEcA7OiQsGaF8.cer (raw, json)
Hash identifier: 2Wy9nilSeubOc96SfiWqZkYX1ggGYHBp2Cd97kWkANI=
Subject key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 631D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 18 Mar 2025 03:19:23 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.191.178.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25373 (0x631d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 18 03:19:23 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A916B7FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:63:67:0f:ce:13:88:16:62:f7:d8:ff:22:10:
05:da:f3:3a:c9:de:e4:47:e6:dd:3b:cc:ef:16:55:
d7:c5:53:23:43:26:f4:88:c9:83:81:38:64:aa:5d:
6f:5f:de:1b:09:cc:33:76:82:fb:b8:31:ab:5e:c4:
fd:04:6d:9d:53:29:89:cf:6e:e7:11:b0:63:e9:db:
bf:43:2f:dc:a6:f6:19:b2:d0:81:fa:2a:42:dc:59:
ba:5a:4e:c9:95:91:c6:4f:23:e9:0b:88:71:8c:b6:
dc:bd:45:3d:e8:14:b0:37:ac:06:5e:31:91:dc:34:
fe:45:ac:4c:23:68:3c:d2:6f:57:1a:ea:3c:76:c6:
32:f2:8f:7a:b7:52:b7:e7:55:dc:59:5c:6e:27:d3:
8e:a2:12:25:67:1f:37:4c:a2:de:01:9d:25:6f:e1:
8d:b3:88:be:c3:32:2a:76:82:d6:66:65:72:29:f9:
7a:70:14:90:b8:4d:9a:0b:b5:e8:16:ce:eb:c0:27:
ee:94:94:f6:0a:35:92:ee:12:37:a4:6f:b8:3d:51:
3b:12:95:0d:4b:fa:fb:6c:ed:a5:2c:e8:53:60:49:
32:f6:51:56:7f:32:40:61:f2:c7:64:5b:14:12:f0:
da:b9:8a:ea:3a:88:81:99:e8:fa:5b:17:ac:8b:9e:
c4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.178.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:d0:17:10:df:23:6f:aa:c5:45:bb:e9:f9:10:e1:03:22:28:
ba:79:44:2f:ab:d9:84:cf:f9:8f:2e:79:ed:90:6d:95:96:64:
82:42:af:f6:48:a3:c4:6c:98:9f:b3:d2:9e:fb:f9:93:ce:8d:
20:99:49:cd:12:90:b1:2d:23:28:f7:4d:1f:f0:47:a6:43:41:
c1:e4:e6:5a:31:19:c5:ff:89:cf:f0:a3:94:02:b9:24:d7:5e:
ae:c9:42:1d:9c:e8:a2:b7:df:e9:71:b2:47:98:0a:b6:87:d7:
e8:4e:e6:19:b0:27:75:fc:8d:45:e1:77:2e:66:60:5a:85:fa:
ea:9b:c9:6f:86:af:5d:8a:4b:f4:2e:11:ba:96:f9:a2:a3:ce:
63:8d:ed:25:e5:f0:38:52:b4:4b:0d:1f:9e:f0:69:7a:6a:9b:
53:7a:c1:23:01:ec:8c:45:b9:33:78:54:82:5c:b7:09:de:1e:
c2:6b:30:06:e6:e5:4d:d9:a5:1b:2f:98:77:ff:51:ea:8b:a1:
db:3b:97:29:82:b1:ba:fd:d8:35:b5:0f:5e:4c:e9:1c:61:9d:
6b:d4:de:5e:56:a5:20:b6:39:60:f6:a8:0c:97:9a:f2:62:04:
5e:ee:57:df:66:c8:d2:aa:89:4e:08:53:b9:af:bf:74:db:f4:
b7:93:ae:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:46:34 2025 by rpki-client