Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer
File: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer (raw, json)
Hash identifier: SWfiW5zw/KUTPHooH7c67G5fJwTfelBbLQJSSBRsJUc=
Subject key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02376E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Mar 2025 21:39:11 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 203.25.159.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145262 (0x2376e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 13 21:39:11 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91DA8C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7d:0c:c8:20:21:c3:ba:d8:98:98:89:28:86:
c8:5c:ea:49:99:04:69:12:c8:8f:5c:fe:fa:5b:20:
e9:6b:87:fe:0a:fe:58:27:7d:3b:72:c9:25:ff:85:
8f:ff:94:9c:52:37:d4:95:1a:62:9c:de:d2:7e:6c:
f9:c8:a8:51:a0:5a:8c:63:85:fe:bd:61:05:0c:25:
a7:ba:7d:f8:a3:16:e5:03:cd:14:3d:67:80:99:88:
5d:b4:8f:e7:a0:d5:ca:7a:ea:ed:b2:f5:57:b2:40:
6a:9f:85:69:4c:f5:2b:0f:f5:c4:0e:fb:5c:f7:73:
72:71:a0:ac:7b:aa:8a:2b:21:e1:44:b1:26:73:48:
bd:da:e5:24:ea:88:f3:bd:37:dc:b3:b0:f1:3b:2a:
a8:0e:3d:39:a8:00:4c:5f:d8:90:b7:d3:90:6a:ec:
73:5d:05:81:9a:ee:3f:83:ad:fb:5d:eb:81:40:6b:
57:44:3d:48:b8:a1:b3:8f:d6:54:8e:e9:07:4e:43:
03:dd:e3:89:67:6f:de:71:de:d3:33:62:fa:7b:eb:
5b:bd:25:8c:42:59:4c:2b:62:cc:e7:60:27:57:bc:
d0:b3:5d:78:76:2c:91:49:7a:dd:5e:06:02:70:68:
78:18:29:02:d9:79:8e:dc:95:95:78:92:da:9b:74:
95:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.25.159.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:c8:64:73:d7:d8:a3:c1:a3:1d:e9:09:70:cb:ee:1e:bb:05:
29:73:fb:56:8c:07:64:ac:77:a9:6a:34:93:55:4f:fa:67:4d:
46:c1:c0:f9:2f:19:59:bd:1f:5f:e1:0c:2a:86:85:b8:2a:61:
1c:0f:1b:b4:4c:85:27:7d:d9:09:5d:eb:a2:51:2d:33:2b:b2:
5f:fb:da:65:1d:f5:34:34:3f:d3:1d:f9:13:b6:ba:6a:49:db:
c9:ad:49:82:29:bd:0b:59:a4:db:e0:ea:46:0b:94:42:a2:18:
80:4b:65:00:56:15:82:1a:22:a2:11:d4:46:dd:9d:07:85:4b:
6c:7b:83:e8:62:db:20:51:f5:3c:83:10:93:bc:d6:c1:48:3c:
17:48:87:e8:8c:ff:bc:14:ac:9f:3b:00:65:8d:ff:0c:ee:2d:
83:77:e3:43:ec:94:54:83:55:eb:7f:29:00:0d:c1:02:a8:ff:
d2:5a:65:2b:5a:b3:81:43:79:9b:6d:71:4e:0a:ff:b4:1d:45:
3a:bc:55:38:8d:9d:1f:21:9f:b4:85:f6:dd:e5:88:88:b0:fc:
b5:12:b2:3c:21:c4:a6:d2:f2:f1:08:8e:49:8b:68:15:9c:a8:
4c:3b:30:a1:2d:ef:30:f8:76:a7:06:1e:c7:1b:44:e7:7d:9f:
f7:de:d7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:19:36 2025 by rpki-client