Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer
File: 1f9FyAWBJcJy3wRtwLjgb6owT88.cer (raw, json)
Hash identifier: gOiTuEaVXmWAyEnA5NLnW/DTOFO2rpgg/+o7P9PuLzI=
Subject key identifier: D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022D04
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 31 Jan 2025 00:51:24 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149442
IP: 103.179.140.0/23
IP: 2400:4ca0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 00:59:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142596 (0x22d04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 31 00:51:24 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91A7E29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b6:22:20:a6:d8:2d:29:08:ff:d8:76:fc:dd:
d2:be:04:6e:ab:c4:50:c6:40:a4:7c:7b:d6:c9:f6:
37:08:4e:ea:4e:b2:99:75:a9:21:1e:25:4b:69:f4:
56:45:63:d2:f6:4f:71:c2:5d:6a:2c:74:01:70:e6:
62:33:16:5b:84:f4:8a:b6:cf:a4:00:88:16:e6:4d:
b7:b7:22:4d:d6:05:f8:9b:ef:38:96:74:2b:a7:0c:
93:c2:4e:35:a8:34:79:f9:37:76:46:33:f9:e5:94:
71:48:09:e4:29:3a:76:5c:af:f6:76:54:49:ea:8a:
63:b2:23:0f:07:99:4d:f8:da:32:f8:83:6c:86:eb:
69:b6:19:6d:22:15:2c:ed:eb:76:1d:f3:f2:bf:2b:
b3:0d:72:d9:a6:2f:a4:57:66:4a:0d:99:83:52:c7:
df:f4:52:ff:0c:f9:64:12:ec:c6:c3:0d:99:3d:90:
07:7e:a6:fd:7e:c2:29:25:47:3d:dd:77:f5:98:7c:
2e:6e:c8:1a:9f:d1:da:21:b0:56:ae:ff:02:54:c0:
63:54:ed:57:65:e1:5a:46:0e:e3:01:86:da:dd:77:
07:ad:2d:ce:71:91:e2:98:88:30:48:dc:bc:7d:e3:
be:70:0b:53:d3:4d:d5:87:34:86:7a:05:3f:88:49:
b8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149442
sbgp-ipAddrBlock: critical
IPv4:
103.179.140.0/23
IPv6:
2400:4ca0::/32
Signature Algorithm: sha256WithRSAEncryption
19:75:1c:6f:28:62:20:9b:e4:ff:53:eb:a7:ac:b4:57:dc:44:
39:15:2e:81:fa:8c:d1:d5:67:62:5e:87:e7:b7:aa:e1:af:17:
0a:41:ff:07:47:27:9e:ec:de:5b:1e:9b:e9:89:ba:e6:22:d5:
da:90:a4:b4:5a:15:fa:8e:1d:9b:b1:30:95:f0:d7:5e:2b:38:
7c:0f:68:6d:a9:db:3f:71:65:e2:e2:16:3f:db:4d:b4:1b:0f:
b3:78:82:86:4d:58:b3:7b:9f:21:79:5f:20:ef:59:f8:61:36:
a8:80:fb:aa:cf:7a:92:0e:4f:d5:fc:7d:67:ca:3e:fe:32:98:
c7:55:d6:33:31:f7:ef:e0:d8:bc:ab:87:fa:c7:b8:e4:86:9d:
1c:a5:c8:af:93:5c:31:38:b1:82:21:87:7a:15:78:a7:df:eb:
c8:48:c0:6d:1a:cd:9b:d2:f2:02:80:52:e8:1f:26:1f:e2:a2:
ed:e9:7c:ab:0e:ca:d8:42:66:b6:17:c5:d0:c4:c7:dd:26:a8:
6b:ea:49:f2:1c:68:2a:91:b1:4f:9f:a1:2b:f1:ce:5c:db:92:
8e:64:02:9f:7a:31:7d:55:da:fa:4a:c5:3d:7a:c8:d9:11:a4:
ec:d4:e5:9b:60:c8:f1:d4:07:7e:08:22:3f:18:25:c9:74:18:
25:fa:98:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:57:18 2025 by rpki-client