Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer
File: F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer (raw, json)
Hash identifier: qOk1A5PQg09W6cqYYzVb4Tq7GxCKrDb29a+AS3e1dIY=
Subject key identifier: 17:60:FF:71:E1:6B:CF:EE:E7:B8:D6:71:0D:63:60:67:99:AE:F7:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023C14
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Apr 2025 06:54:42 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 138687
IP: 103.136.148.0/22
IP: 2404:95c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146452 (0x23c14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 2 06:54:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91CB09E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:77:6c:cc:1f:57:cb:5f:11:f6:92:6c:06:00:
58:df:7a:f4:c4:1f:69:84:a4:6e:08:90:9a:22:e8:
76:c1:4d:1d:67:95:62:e9:8c:c9:11:e8:80:0c:70:
ec:cd:aa:c4:c4:77:90:68:48:8b:67:09:cb:83:09:
6e:a6:5c:68:7a:78:71:49:6c:8f:c2:e2:75:1c:31:
0d:80:a1:d8:63:f7:cd:7f:0a:02:6d:95:d2:88:a6:
e6:73:fc:f0:38:8e:c6:87:65:32:a4:3c:13:2d:97:
63:a0:de:23:5a:17:8a:0a:2e:2d:23:ff:2c:91:a6:
64:82:c1:e7:2c:4f:85:bf:5d:2d:c9:b3:f5:78:2b:
c5:45:d8:59:66:2c:1a:85:72:e4:a1:9a:20:68:8c:
2d:9b:be:de:4e:31:cb:93:b1:86:14:87:fc:10:ad:
a1:eb:74:a2:1f:fb:ce:d8:84:b5:ff:3b:c3:f9:9b:
b2:14:4d:c8:72:d8:d6:80:e6:62:f0:37:53:87:48:
e2:0b:11:b7:9f:34:24:75:04:a9:bd:26:a2:fb:e8:
ac:bf:df:16:b1:7c:8e:9e:d0:94:c3:70:94:32:b9:
71:00:92:92:45:3d:d0:e6:f2:f0:67:10:39:ee:c5:
7d:ae:5a:3a:1a:30:01:52:a5:72:66:86:14:ad:0d:
7c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:60:FF:71:E1:6B:CF:EE:E7:B8:D6:71:0D:63:60:67:99:AE:F7:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138687
sbgp-ipAddrBlock: critical
IPv4:
103.136.148.0/22
IPv6:
2404:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
c2:4a:b2:9a:7f:5e:ce:68:a7:f9:40:76:a0:e1:4c:f0:b0:18:
4f:e4:96:f3:a5:cf:e2:44:82:e8:e3:76:ac:1d:e7:e2:0c:da:
3f:e1:6f:87:1d:56:40:4a:ec:24:13:42:0c:77:41:b3:8c:ff:
32:66:4d:cf:f2:a2:d9:9b:e4:4e:db:b6:7a:ad:bf:63:ae:14:
f6:6d:45:97:a2:43:5d:58:e0:5f:04:d8:e1:44:2c:d1:20:e9:
71:1a:dd:b1:8a:d9:0a:b6:0e:0e:a3:5a:40:a5:6d:3c:46:9e:
42:5e:de:09:ae:07:cf:18:c6:a1:79:79:d2:b9:f6:d2:04:06:
a1:71:e8:6e:1a:c6:53:b9:2f:7d:61:af:af:66:70:44:f8:d5:
2c:04:26:dc:71:78:11:ca:de:72:de:9b:78:02:a2:fa:44:c0:
c0:6f:22:9d:bd:ce:8f:c0:ac:df:95:5b:9d:a2:57:32:22:f1:
a2:82:63:e3:a1:84:f9:e1:df:16:6f:02:a5:b3:76:7d:f1:1e:
a9:c0:24:43:97:01:2c:0c:c8:cf:a1:2d:5a:51:8e:b9:48:e0:
a7:7a:aa:b3:c8:93:01:53:d4:90:bb:e7:6a:c6:dd:9d:1a:a7:
5f:a6:30:a5:13:ba:5b:0e:c0:e3:74:2f:c1:56:ab:11:b4:14:
a6:b1:ad:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 01:57:19 2025 by rpki-client