Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15_gsJykSoRmkoOPxCvPQ9KjKtI.cer
File: 15_gsJykSoRmkoOPxCvPQ9KjKtI.cer (raw, json)
Hash identifier: JPTUC3qr2DqZZz3UctpXG9GlMeQ5E+4Mw32EbfKzNho=
Subject key identifier: D7:9F:E0:B0:9C:A4:4A:84:66:92:83:8F:C4:2B:CF:43:D2:A3:2A:D2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023664
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9127DE3/4E1EEABAFC3711EFB1C07286C4F9AE02/15_gsJykSoRmkoOPxCvPQ9KjKtI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9127DE3/4E1EEABAFC3711EFB1C07286C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 08 Mar 2025 16:06:38 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 133023
AS: 135027
IP: 103.219.62.0/23
IP: 103.251.134.0/23
IP: 2407:af00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144996 (0x23664)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 8 16:06:38 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9127DE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:50:01:6e:3b:02:ba:44:ce:a9:7b:d5:83:a7:
49:1a:d4:75:11:e0:52:3e:aa:28:58:4b:10:ee:04:
90:f4:84:31:64:05:3c:3a:20:d3:f6:b9:a0:2a:00:
f6:2a:a2:9b:e3:aa:70:3e:b3:9c:99:c7:96:d6:70:
b1:8f:0b:36:7c:aa:fa:96:6d:64:04:4d:f6:d0:26:
a1:ea:81:4a:a9:d8:74:9c:4e:8e:26:0c:98:fe:7f:
eb:20:c4:bd:0c:39:9d:21:a6:c1:04:25:0f:7d:13:
d5:5f:2e:53:53:e8:43:e6:f0:50:fa:d9:d1:8d:2c:
56:5e:00:e5:cf:d1:c1:99:e4:39:56:c3:25:7f:a1:
b8:e4:6e:d4:b3:b8:d1:73:db:40:0a:dc:2f:21:6f:
76:e3:ff:fa:d9:a8:c6:d6:4f:f1:25:7b:61:6f:c6:
ff:a9:b9:20:c5:bc:60:e0:32:b5:c9:39:44:b9:b4:
e7:8d:b0:6b:49:0f:64:8b:8f:f6:4a:91:86:8d:73:
77:20:5a:58:08:98:de:4f:2f:44:e5:f8:f1:22:fb:
21:e4:0d:75:d0:30:29:50:11:fc:3b:ad:11:e1:e4:
15:f1:7c:e2:f2:f8:02:2c:79:11:74:a7:a0:65:07:
c5:4f:f0:30:40:93:b6:d8:a9:fb:29:af:22:84:03:
28:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:9F:E0:B0:9C:A4:4A:84:66:92:83:8F:C4:2B:CF:43:D2:A3:2A:D2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9127DE3/4E1EEABAFC3711EFB1C07286C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9127DE3/4E1EEABAFC3711EFB1C07286C4F9AE02/15_gsJykSoRmkoOPxCvPQ9KjKtI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133023
135027
sbgp-ipAddrBlock: critical
IPv4:
103.219.62.0/23
103.251.134.0/23
IPv6:
2407:af00::/32
Signature Algorithm: sha256WithRSAEncryption
2f:eb:9f:48:1c:40:50:2a:fe:4b:11:00:94:75:7f:83:cb:86:
df:b0:50:d9:d6:ac:45:03:a8:07:76:de:83:3e:64:3b:00:35:
e7:f0:64:7b:09:74:aa:b7:cf:be:2c:35:a9:78:15:f4:3f:45:
53:78:4f:f2:f8:9b:c2:56:ce:d0:dd:7a:4f:ae:b5:0d:a5:ab:
a8:dc:ac:24:bf:5e:83:4a:af:b1:b0:c5:57:c4:3b:36:c3:58:
27:e0:12:0e:36:fb:b8:7c:cb:6b:42:b0:84:67:35:42:f9:f2:
6e:a3:a2:6e:5b:82:bd:ef:7d:bb:8e:d0:5f:ec:ad:34:36:19:
fc:50:e5:81:7a:e5:94:bf:ec:29:9d:15:58:55:58:36:23:56:
99:06:4d:22:48:d5:9e:c1:86:5e:a2:b8:94:0e:51:2e:38:71:
51:b2:d6:91:01:4d:1d:ee:7e:87:4a:f0:a9:b3:fc:eb:0c:6f:
9c:2b:d5:08:7f:b9:44:06:ed:21:8e:47:5e:e8:36:b7:78:e6:
fe:89:50:57:8f:06:b3:a1:95:58:13:45:2c:22:ee:13:9b:c8:
14:70:8d:ff:89:19:4b:c3:5a:6f:75:ca:31:6d:14:61:cb:2a:
59:73:a8:a1:33:78:df:98:2a:04:0f:a1:82:a1:01:ac:ff:51:
c0:a8:51:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:08:01 2025 by rpki-client