Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer
File: xhVwDXyIi-a6dQrezZTYhkaC42E.cer (raw, json)
Hash identifier: S45FBVruhPRm8tUFPRWZIBQ67vQHaCiQkuGIDgMrlkc=
Subject key identifier: C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 63CF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 07 Apr 2025 01:49:28 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 160.187.6.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 00:20:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25551 (0x63cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 7 01:49:28 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91D0C14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:23:33:79:8d:08:cb:d4:94:29:32:f1:b1:b2:
3d:58:a8:45:bc:2c:57:3f:36:49:fa:9d:d5:a1:0f:
96:00:32:b6:7d:cf:8b:45:72:35:5f:e7:67:59:b1:
6b:b9:9e:7e:1f:16:98:2b:b5:0c:e3:01:31:d8:b8:
65:40:59:32:b8:74:7a:dd:17:96:a2:fb:e7:c6:da:
75:05:4c:9c:41:e5:61:e1:b9:59:a9:db:3d:2f:a2:
2c:48:b0:29:90:2d:11:3c:b8:d2:2f:27:9a:eb:50:
38:ec:72:5d:93:2f:0d:38:a1:a6:8b:5f:e6:db:1e:
2e:4d:c3:08:f0:72:dc:e2:b9:15:88:74:da:78:ba:
01:2b:9e:1a:9f:aa:d9:02:f6:ce:7f:20:e3:1c:32:
1c:1c:45:94:dd:4e:72:c1:b7:6a:3f:f5:0e:6e:aa:
d9:63:e4:ae:c3:48:37:9f:66:74:7f:17:e2:18:bd:
35:09:28:43:e4:32:81:6a:10:99:25:86:ff:0e:7b:
7e:be:04:f6:33:3b:a9:0d:3b:81:5f:d3:6c:26:03:
1c:75:43:20:ed:31:22:31:25:46:b9:88:bd:26:f9:
5a:33:96:82:cb:a4:2e:29:f6:b5:08:aa:b2:a9:fb:
14:4e:b5:17:da:3a:d5:78:06:46:61:64:f3:d3:d9:
e5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.6.0/24
Signature Algorithm: sha256WithRSAEncryption
90:18:37:d5:a1:17:24:83:9a:4e:7b:1b:46:45:64:5e:46:00:
f1:da:69:b3:a3:14:48:bb:3e:28:6b:b0:0a:61:5d:73:8b:34:
68:3b:e0:d9:d1:d5:a0:0b:a5:77:0e:27:12:01:04:d2:0d:69:
a2:f4:e2:40:14:43:d5:4f:57:d9:b8:de:be:cc:48:dd:41:b4:
68:7d:5a:8f:9a:01:87:80:17:db:ab:3f:d4:0f:34:9c:4e:b8:
9c:bc:21:b1:7a:f6:42:c5:2d:4d:99:9e:60:34:f5:b3:c0:b4:
51:be:03:9c:eb:5a:88:b2:51:6c:02:44:3a:c8:22:74:f1:d7:
80:18:fa:63:5a:17:9d:f6:cf:c8:8e:3e:ba:fd:64:62:14:5a:
4a:be:c8:80:f0:fb:56:85:b6:b5:82:36:26:5f:a7:d0:d8:b7:
4e:82:a0:8a:b4:b8:61:78:14:17:f6:20:59:cb:d1:ad:43:42:
22:ab:36:69:7d:29:8f:ab:41:16:62:08:68:d8:60:68:67:91:
dd:8d:86:87:dd:ce:e8:47:dc:57:a9:2f:50:c9:1e:28:30:fb:
cd:b8:4a:bf:bf:e8:66:e0:9d:a3:a2:9d:13:a2:a9:6b:a5:e8:
34:c4:3c:97:66:e4:dc:da:ec:f6:e9:a9:c5:ab:70:9a:71:28:
72:70:8a:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:44:28 2025 by rpki-client