Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer
File: yil3R0MKG-s0C8o51iIv0mQZt9s.cer (raw, json)
Hash identifier: x860B41rMyby31XAT/t4iirNdFu2EkjZAYuJ3QRxxh8=
Subject key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6152
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 22 Jan 2025 05:44:07 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 161.248.244.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24914 (0x6152)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 22 05:44:07 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91417B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6d:42:21:26:d1:7d:cc:99:09:aa:fb:54:e2:
a4:a8:49:56:3d:10:3a:37:7e:92:09:e6:73:63:fc:
fa:b2:b0:df:89:cd:9d:a2:e5:6b:db:8d:97:04:6f:
d2:58:4c:1b:ba:af:20:bc:a7:dd:eb:a9:56:f8:ae:
de:4b:fb:64:9e:73:06:ab:4d:48:2a:14:f4:82:12:
88:44:bb:25:07:fd:ac:ce:dd:44:4e:e9:5a:72:16:
ff:38:46:ee:71:02:f6:b9:f6:e5:e0:d2:4e:5a:89:
5f:cf:69:c7:4c:c5:64:22:4d:2a:49:31:46:d3:42:
a7:42:47:ef:3c:93:ff:ac:b9:3f:7c:0a:ad:bc:1e:
a3:34:96:de:bd:29:12:65:12:02:ec:b4:c3:19:23:
c8:15:92:65:dc:36:29:8e:5a:30:63:07:fd:de:44:
56:7f:ec:c7:ca:0a:e8:f8:2a:b5:f5:33:2a:e1:b8:
ca:1f:8d:ed:9f:46:aa:d7:20:0c:3e:87:86:1f:2e:
1a:d8:1e:3d:dc:5b:f2:42:5c:65:eb:ec:26:71:c3:
c5:7f:34:b1:3a:c6:55:cd:f2:a3:df:b0:ca:1d:50:
21:f2:c1:06:cc:a4:ca:9b:89:27:4f:b2:b7:a4:d7:
38:81:70:26:bf:48:c6:51:33:d3:e8:82:5b:11:1d:
bc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.244.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:91:bb:0a:cc:b4:58:bf:03:49:42:4f:ec:99:91:92:e1:c4:
7c:19:45:d2:8e:ff:1f:a7:53:82:a8:6c:01:ea:3f:1b:e3:5f:
86:88:24:0e:2e:c8:1c:e3:53:3b:fa:93:02:15:37:db:6d:b2:
d0:02:90:4e:e8:6a:9e:0a:a6:e2:ac:62:d2:56:59:65:d4:94:
8b:38:49:de:d7:b5:43:95:e2:5c:88:ac:bc:46:96:f7:7e:4c:
2d:de:3c:d7:f2:04:1c:47:d6:b1:04:f8:25:98:e3:03:b6:77:
98:9c:71:ce:59:e6:ac:2a:2f:4f:22:e6:66:69:1e:74:fd:27:
ad:56:86:83:11:ee:67:7b:ac:70:35:5d:8a:a4:d9:78:96:e0:
32:51:7f:b0:3c:c8:e0:50:b9:8b:b7:b1:63:e2:17:c6:ef:29:
6f:8d:93:f2:38:48:21:8f:39:36:ca:27:35:46:e4:a4:e8:9f:
35:f7:3b:c4:fa:bb:74:62:80:39:19:1f:48:9b:48:c3:cd:93:
81:59:94:2f:cd:65:3d:79:bd:b7:12:08:89:b6:a5:25:41:cf:
0e:cb:bd:9e:5c:c6:2f:e1:f8:b8:e4:8c:4d:0d:8e:a9:59:32:
d4:0c:0d:4e:9b:65:b8:ab:a2:6a:a4:e7:e5:15:bb:5c:68:d1:
ad:b4:95:e7
-----BEGIN CERTIFICATE-----
MIIF/TCCBOWgAwIBAgICYVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjUwMTIyMDU0NDA3WhcNMjYwNTAxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTE0MTdCMDExMC8GA1UEBRMoQ0EyOTc3NDc0MzBBMUJFQjM0MEJDQTM5
RDYyMjJGRDI2NDE5QjdEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ANFtQiEm0X3MmQmq+1TipKhJVj0QOjd+kgnmc2P8+rKw34nNnaLla9uNlwRv0lhM
G7qvILyn3eupVviu3kv7ZJ5zBqtNSCoU9IISiES7JQf9rM7dRE7pWnIW/zhG7nEC
9rn25eDSTlqJX89px0zFZCJNKkkxRtNCp0JH7zyT/6y5P3wKrbweozSW3r0pEmUS
Auy0wxkjyBWSZdw2KY5aMGMH/d5EVn/sx8oK6PgqtfUzKuG4yh+N7Z9GqtcgDD6H
hh8uGtgePdxb8kJcZevsJnHDxX80sTrGVc3yo9+wyh1QIfLBBsykypuJJ0+yt6TX
OIFwJr9IxlEz0+iCWxEdvGECAwEAAaOCAvMwggLvMB0GA1UdDgQWBBTKKXdHQwob
6zQLyjnWIi/SZBm32zAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDE3QjAvRTFBQzgyMTBEODgzMTFFRjk1NEEzRDcwQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQxN0IwL0UxQUM4MjEwRDg4MzExRUY5NTRBM0Q3MEM0RjlBRTAyL3lpbDNSME1L
Ry1zMEM4bzUxaUl2MG1RWnQ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAaH49DANBgkqhkiG9w0BAQsFAAOCAQEAa5G7Csy0WL8DSUJP7JmR
kuHEfBlF0o7/H6dTgqhsAeo/G+NfhogkDi7IHONTO/qTAhU3222y0AKQTuhqngqm
4qxi0lZZZdSUizhJ3te1Q5XiXIisvEaW935MLd481/IEHEfWsQT4JZjjA7Z3mJxx
zlnmrCovTyLmZmkedP0nrVaGgxHuZ3uscDVdiqTZeJbgMlF/sDzI4FC5i7exY+IX
xu8pb42T8jhIIY85NsonNUbkpOifNfc7xPq7dGKAORkfSJtIw82TgVmUL81lPXm9
txIIibalJUHPDsu9nlzGL+H4uOSMTQ2OqVky1AwNTptluKuiaqTn5RW7XGjRrbSV
5w==
-----END CERTIFICATE-----
Generated at Fri Apr 4 11:51:21 2025 by rpki-client