Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer
File: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer (raw, json)
Hash identifier: 04Qw5BYxULL1TMKLgHeX74Lf33F6/daFXW8r2a7EPDI=
Subject key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02270A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 Jan 2025 12:34:37 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139841
IP: 103.146.16.0/23
IP: 2406:fb40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141066 (0x2270a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 3 12:34:37 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A911C8B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a8:26:0b:7a:20:9c:7e:b3:36:63:11:a7:96:
95:1f:6f:a0:55:b4:89:24:ca:66:f2:ac:46:f2:bb:
db:f2:0b:9f:fe:07:0f:73:c3:25:88:04:34:24:b7:
4f:3d:18:6e:f5:aa:42:64:94:83:fd:96:d4:9f:59:
f5:f2:03:e0:fe:98:97:d0:34:25:2c:7a:d4:ea:ce:
ea:23:9b:2e:66:4c:4d:75:41:32:16:c2:87:f4:a1:
c8:6f:18:1e:63:05:63:b9:54:10:39:e3:18:86:36:
6e:f0:8b:a1:4c:3b:48:30:7a:a5:07:9f:06:d2:f2:
1b:ab:c1:04:c9:d5:8e:d7:fc:44:20:82:c5:67:2c:
87:cb:f6:14:55:63:c0:3b:b4:ef:1b:46:8b:25:37:
82:c1:8b:7f:33:42:75:29:5a:82:68:79:50:27:39:
d2:49:8c:4d:bf:0e:05:b1:a2:13:bf:a2:e1:78:e2:
36:96:3d:85:fe:87:20:dd:28:f5:14:51:0e:88:89:
3d:16:65:45:30:68:4c:cc:58:1a:da:9c:d5:b5:42:
a9:d9:e6:60:4d:c1:5e:21:4a:0e:46:b2:e1:60:09:
e7:f4:df:be:4c:9c:e5:58:73:aa:8a:44:d0:9a:00:
ac:de:90:8f:69:d1:c6:ce:31:69:91:36:de:9e:6a:
33:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139841
sbgp-ipAddrBlock: critical
IPv4:
103.146.16.0/23
IPv6:
2406:fb40::/32
Signature Algorithm: sha256WithRSAEncryption
3b:bd:89:4e:10:b4:2c:bf:a8:81:c5:26:d0:51:98:a3:f1:bc:
1a:01:f9:bd:b6:b4:e5:2a:a1:de:ce:3e:10:33:ce:7b:6c:43:
70:20:e5:b1:a8:77:24:11:c7:fd:df:91:31:ac:d4:29:ff:c8:
ab:2d:46:ff:74:a2:7f:df:67:05:43:bb:70:5c:2a:9d:fd:a7:
82:ec:f8:f5:84:ee:3f:1c:0e:12:99:98:48:65:b1:7c:cd:1f:
c2:0c:f4:87:95:86:d9:f6:53:da:60:9f:b9:be:54:23:f2:8b:
36:32:f8:38:91:01:a8:49:a5:db:84:7a:d2:3c:4d:fe:a2:58:
48:ac:c9:b7:52:01:80:54:9b:2f:6f:cb:6b:09:6d:04:9e:21:
4b:e5:2f:4d:be:74:61:89:9f:a4:65:65:e3:0d:ce:23:15:9b:
03:88:d9:7b:52:c0:3a:46:f7:08:63:27:5a:e4:40:16:61:37:
e1:8b:de:ad:0c:d4:bc:bc:47:29:f3:eb:06:92:96:7a:3f:e3:
7e:c5:d4:ec:f7:2f:31:52:43:a7:67:82:6f:ad:a1:ef:7f:e6:
35:d0:e2:26:57:b7:7e:db:d2:43:6a:78:aa:bb:1a:29:cc:06:
b5:56:ad:75:8b:e9:97:44:7e:cc:ba:5b:fd:6c:e4:a7:34:c2:
9d:22:b3:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:16:46 2025 by rpki-client