Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2vWZnAdAuMks1UA3tpsETNValVg.cer
File: 2vWZnAdAuMks1UA3tpsETNValVg.cer (raw, json)
Hash identifier: /MpEdOfikL5liokEDx4+eYkKodSKGWxX5K6IuAy3EvU=
Subject key identifier: DA:F5:99:9C:07:40:B8:C9:2C:D5:40:37:B6:9B:04:4C:D5:5A:95:58
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022A55
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 20 Jan 2025 18:29:12 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 103.241.228.0/22
IP: 118.193.16.0/20
IP: 118.193.80.0/20
IP: 223.255.248.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141909 (0x22a55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 20 18:29:12 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91C31A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bd:ab:35:0d:5d:ef:fe:22:22:26:19:1b:86:
dd:cf:47:53:2f:e4:c1:82:37:5e:8d:99:dd:88:14:
75:b0:ae:2f:cd:97:d7:a0:e8:6a:4d:12:1a:01:aa:
ab:52:e2:f4:c9:3b:27:2d:f8:9a:5e:65:3a:f2:e8:
72:59:c5:1b:2d:29:96:2c:2d:f1:4a:aa:ca:d2:8e:
cd:7b:15:c8:c9:2d:e0:6b:01:52:70:47:44:4e:16:
cf:ba:3b:4c:8d:ca:fe:a2:46:a7:b0:35:53:41:12:
26:6f:de:dd:a3:80:28:57:e1:d8:eb:fd:1b:70:c6:
cf:24:b2:ab:55:b4:0d:a0:87:6f:a1:5c:b8:16:7c:
9a:a8:40:47:2a:c3:14:9b:33:2a:a5:92:cb:88:96:
a0:45:ed:9d:c1:96:eb:52:8a:80:31:1d:b9:f9:57:
ac:33:e8:32:e9:40:69:8d:57:8e:38:10:4b:37:d4:
ac:0f:aa:39:bd:62:8e:4c:8b:9f:15:38:32:53:6c:
37:98:19:87:dd:8c:2c:ad:ce:7b:60:30:6d:0d:4f:
59:dd:a2:f8:ad:d6:2d:85:84:de:fa:f8:da:7c:5e:
7e:ad:18:18:fc:0d:24:00:d7:97:9a:0c:b7:be:b6:
9b:67:88:f6:4e:0d:12:1a:a7:12:b4:63:eb:7a:3b:
e0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:F5:99:9C:07:40:B8:C9:2C:D5:40:37:B6:9B:04:4C:D5:5A:95:58
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/DE033336357211EDAE977839C4F9AE02/2vWZnAdAuMks1UA3tpsETNValVg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.241.228.0/22
118.193.16.0/20
118.193.80.0/20
223.255.248.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:ae:0c:91:03:92:6e:1c:16:eb:bf:71:3e:f0:88:99:c0:cd:
59:57:c5:3c:63:ab:ab:6e:c5:56:b9:58:e4:1f:90:c6:fe:f1:
a9:0f:8a:18:88:e1:e2:0c:a2:31:8c:79:81:a4:c2:2f:c6:d0:
91:32:b7:0b:cf:78:b5:1c:50:f8:5f:d1:a8:97:d8:c8:57:10:
93:08:b0:e9:ad:d2:cd:eb:18:2e:ae:e1:78:6a:bb:a3:a1:5e:
71:b7:77:ae:ab:3d:16:38:68:df:49:62:8e:67:59:be:54:56:
06:1c:ca:38:a4:89:0d:3e:50:d1:36:68:32:fe:d2:05:47:e9:
52:be:90:42:eb:07:25:86:e3:d4:2c:df:88:af:ac:f7:e9:c9:
8e:e6:de:0d:ac:97:00:ab:d3:b9:e3:b0:7d:d6:b4:04:26:96:
39:e8:df:e2:e2:38:ac:38:4e:54:3d:99:06:aa:ca:60:d0:84:
b8:39:42:cf:af:8d:78:87:d1:2b:bb:e6:56:04:49:1a:99:08:
bb:96:c9:e2:ab:b4:c2:c0:16:df:f7:9d:48:32:4a:6a:22:f3:
56:9f:99:ff:a0:05:23:2d:10:8f:d0:6d:70:87:78:b3:15:b5:
7a:c5:91:2e:1b:ce:4c:6c:7c:68:09:47:89:e5:9b:fc:fc:4e:
3d:95:a0:45
-----BEGIN CERTIFICATE-----
MIIGEDCCBPigAwIBAgIDAipVMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDEyMDE4MjkxMloXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQzMxQTIxMTAvBgNVBAUTKERBRjU5OTlDMDc0MEI4QzkyQ0Q1NDAz
N0I2OUIwNDRDRDU1QTk1NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCTvas1DV3v/iIiJhkbht3PR1Mv5MGCN16Nmd2IFHWwri/Nl9eg6GpNEhoBqqtS
4vTJOyct+JpeZTry6HJZxRstKZYsLfFKqsrSjs17FcjJLeBrAVJwR0ROFs+6O0yN
yv6iRqewNVNBEiZv3t2jgChX4djr/Rtwxs8ksqtVtA2gh2+hXLgWfJqoQEcqwxSb
MyqlksuIlqBF7Z3BlutSioAxHbn5V6wz6DLpQGmNV444EEs31KwPqjm9Yo5Mi58V
ODJTbDeYGYfdjCytzntgMG0NT1ndovit1i2FhN76+Np8Xn6tGBj8DSQA15eaDLe+
tptniPZODRIapxK0Y+t6O+CjAgMBAAGjggMFMIIDATAdBgNVHQ4EFgQU2vWZnAdA
uMks1UA3tpsETNValVgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUMzMUEyL0RFMDMzMzM2MzU3MjExRURBRTk3NzgzOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDMzFBMi9ERTAzMzMzNjM1NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi8ydldabkFk
QXVNa3MxVUEzdHBzRVROVmFsVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8EIjAg
MB4EAgABMBgDBAJn8eQDBAR2wRADBAR2wVADBALf//gwDQYJKoZIhvcNAQELBQAD
ggEBALiuDJEDkm4cFuu/cT7wiJnAzVlXxTxjq6tuxVa5WOQfkMb+8akPihiI4eIM
ojGMeYGkwi/G0JEytwvPeLUcUPhf0aiX2MhXEJMIsOmt0s3rGC6u4Xhqu6OhXnG3
d66rPRY4aN9JYo5nWb5UVgYcyjikiQ0+UNE2aDL+0gVH6VK+kELrByWG49Qs34iv
rPfpyY7m3g2slwCr07njsH3WtAQmljno3+LiOKw4TlQ9mQaqymDQhLg5Qs+vjXiH
0Su75lYESRqZCLuWyeKrtMLAFt/3nUgySmoi81afmf+gBSMtEI/QbXCHeLMVtXrF
kS4bzkxsfGgJR4nlm/z8Tj2VoEU=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:11:40 2025 by rpki-client