Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788TGtZIDR3QTx1EduNZVFL_RBw.cer
File: 788TGtZIDR3QTx1EduNZVFL_RBw.cer (raw, json)
Hash identifier: fYIhnSAsQ8MbpBjV7PYhBDIYs8puJtVZB3oAbOlNTSI=
Subject key identifier: EF:CF:13:1A:D6:48:0D:1D:D0:4F:1D:44:76:E3:59:54:52:FF:44:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EF81
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/788TGtZIDR3QTx1EduNZVFL_RBw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 May 2024 15:06:34 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 136506
AS: 137072
IP: 103.52.236.0/22
IP: 103.59.136.0/22
IP: 103.95.28.0/22
IP: 103.215.172.0/22
IP: 157.119.52.0/22
IP: 2401:d440::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126849 (0x1ef81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: May 2 15:06:34 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9140D20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:85:44:33:ee:5a:c0:70:97:a9:db:cb:df:6d:
73:9e:b8:1d:77:6c:73:d5:5b:a0:75:f4:27:35:e4:
d9:d3:8e:31:61:b9:31:9b:f4:fa:bd:5e:68:fe:4e:
16:08:f0:70:52:ef:5a:fc:97:2d:46:df:44:81:60:
91:73:c0:6e:a1:50:11:c0:21:bf:ce:04:3a:45:5d:
9b:97:25:f4:71:15:59:9b:23:54:2e:3b:33:bf:4d:
98:dd:ea:f8:7d:a9:4e:54:69:b4:b1:94:9f:ec:1b:
6e:ff:94:11:79:df:83:56:eb:23:8d:10:0f:54:44:
48:06:df:85:9f:37:2f:54:33:db:bd:e1:bd:a7:5c:
35:d2:52:5f:c4:65:f6:d9:59:e0:83:42:86:7f:de:
26:f9:31:30:62:f5:ad:91:b6:c6:0d:ce:9e:51:ec:
b5:2d:c2:fc:55:33:8f:e0:40:7e:16:5b:de:a5:e3:
dd:1d:22:cd:57:56:61:a6:75:cf:3c:c5:71:62:5b:
7a:5b:02:7c:ed:72:dd:6f:91:a9:ae:62:9f:be:34:
44:43:48:3d:21:a2:bc:bd:ae:13:68:46:7d:eb:9e:
cf:9a:70:12:9b:aa:fb:7d:9d:ee:b6:c9:9a:66:00:
8c:44:8d:13:a3:f0:18:8c:81:c4:05:8a:a7:d8:bf:
94:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:CF:13:1A:D6:48:0D:1D:D0:4F:1D:44:76:E3:59:54:52:FF:44:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9140D20/D943A45ADBDA11EAA2CC2B41C4F9AE02/788TGtZIDR3QTx1EduNZVFL_RBw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136506
137072
sbgp-ipAddrBlock: critical
IPv4:
103.52.236.0/22
103.59.136.0/22
103.95.28.0/22
103.215.172.0/22
157.119.52.0/22
IPv6:
2401:d440::/32
Signature Algorithm: sha256WithRSAEncryption
1c:e0:8d:16:57:0b:5c:0b:de:b4:bd:a7:15:24:3e:d5:6f:c1:
cc:5a:84:d6:dd:95:d4:b4:97:23:11:30:98:d7:09:10:56:ca:
79:6c:99:c0:38:1d:ae:7c:06:de:b6:16:62:75:e5:46:34:8d:
03:47:ee:60:10:77:5f:36:80:09:17:df:75:9d:67:32:5f:79:
cf:e0:05:10:9c:4d:59:c4:40:b9:c1:74:3f:f6:c9:f7:a5:85:
c2:bf:72:57:2c:b4:f7:74:8f:8e:8a:19:56:b6:3d:2b:06:23:
48:45:44:ed:8d:99:f2:df:58:f4:36:d8:64:1c:13:3c:5d:30:
ce:b5:24:0e:3b:30:79:ef:0d:87:68:ca:c0:f4:cf:17:60:a4:
e9:50:db:04:4f:2a:28:c3:3c:b4:40:dd:51:22:4f:eb:ff:57:
4e:09:e8:0f:73:ef:6e:67:80:0c:2c:9a:10:09:bf:33:83:29:
90:68:21:aa:42:2e:a7:b8:b0:1d:19:c7:e5:c9:37:8e:f6:54:
4b:02:b7:5a:2a:d3:c3:b4:25:a8:95:4e:4f:d2:ae:b9:3a:07:
46:74:d2:43:0b:e9:99:3c:d4:98:76:3a:04:4f:47:33:08:9a:
e8:eb:ba:12:47:3f:2b:fe:33:92:73:56:64:59:ce:1e:69:57:
89:c8:2c:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:12:37 2025 by rpki-client