Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer
File: -xaxnfv3ymrECmtqNT94V4kX4P0.cer (raw, json)
Hash identifier: HOzxyjYBR4skinqEh3optXWR+BnO/3gmKBVHVPOUubA=
Subject key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023A2B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Mar 2025 13:41:46 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 134813
IP: 103.85.184.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145963 (0x23a2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 27 13:41:46 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9146CB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:64:fd:01:3a:69:03:65:4d:f6:de:2d:d0:a7:
c2:7b:11:00:1b:ab:fd:87:b0:02:92:c3:19:fd:31:
c0:31:a0:c2:09:9e:a9:5e:b1:d4:94:2b:4b:37:c6:
c6:9d:76:2c:81:7c:e5:ab:f2:87:2e:a9:67:e7:3f:
bf:d1:b2:34:ec:68:fb:79:73:20:f2:9a:95:2c:75:
0b:02:f1:86:ae:7c:44:ef:d7:65:e4:52:ed:7e:9a:
bc:1e:2f:1b:36:23:9a:82:c3:03:82:34:07:f7:49:
8e:84:fb:46:54:ad:9e:51:bf:6a:58:ca:d3:cc:0d:
c7:ea:b8:bb:45:d5:1d:90:6c:1e:de:81:6d:32:d0:
ed:26:1a:d0:3d:b0:3b:75:ae:a2:f7:3f:93:62:3a:
4a:0e:6d:59:c4:c5:2e:f6:eb:cb:50:0b:df:e6:d7:
e6:91:97:38:3b:2d:92:10:a1:6d:e1:41:1c:21:2d:
d2:c4:a6:75:36:e1:54:ed:b0:35:0c:8f:d6:d7:8e:
61:b9:ad:50:1b:45:c4:5c:33:76:54:55:48:8e:37:
b1:2b:4c:d6:28:b4:25:ba:57:8e:c9:bd:70:bd:ba:
1e:90:ef:c3:2d:43:5a:98:8e:55:f8:ee:87:1e:83:
1c:d2:86:cb:4f:01:73:56:17:6f:e7:07:eb:55:f8:
85:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134813
sbgp-ipAddrBlock: critical
IPv4:
103.85.184.0/23
Signature Algorithm: sha256WithRSAEncryption
c7:0f:bd:8a:08:96:42:78:4a:0f:e9:57:11:8f:de:6a:8e:7f:
c6:64:7e:7d:90:a2:6f:b8:b4:d6:1e:55:ea:79:b2:80:b5:dc:
51:e3:e1:aa:5f:5c:03:a1:85:81:2a:95:a1:79:dd:9f:46:10:
a8:34:0c:ef:b2:e5:a7:95:76:4c:f4:df:f2:62:d1:11:cf:23:
fc:e7:ee:70:f8:85:42:d8:64:c4:4e:0d:70:50:83:ce:2a:6a:
aa:71:fd:a3:33:ec:37:6b:7f:82:39:2e:6d:40:49:b2:46:5b:
e1:e7:e2:8b:1c:db:aa:43:74:d4:cd:a8:f9:fe:2e:06:b3:7e:
8e:d6:81:95:b5:a1:47:31:c9:20:d8:5f:54:62:a9:15:95:4c:
4d:14:c1:b9:25:20:bc:c8:f6:18:d2:fe:d9:b0:9a:18:cc:ef:
d4:26:56:2b:74:d4:4f:69:70:ff:6d:06:e9:75:82:92:7f:16:
09:f4:d5:c0:3c:79:d5:e5:5a:6a:bc:5c:76:a1:09:39:3d:ec:
5d:8a:3b:23:06:2b:c2:b4:73:59:80:a0:e1:1f:bb:f0:ab:96:
28:e6:8e:56:a0:8b:04:bb:09:46:84:b5:05:5f:dc:29:3b:9a:
16:75:d9:19:8c:71:36:fa:c6:10:9d:22:1c:ec:22:82:7e:41:
2a:c0:76:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:11:37 2025 by rpki-client