Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgxyzFd72N5TouywCYwi81pRqp4.cer
File: FgxyzFd72N5TouywCYwi81pRqp4.cer (raw, json)
Hash identifier: uAZwVeq1rkXv5+kGM6uh7rPDucdkSMYGFb8nNw5nNzE=
Subject key identifier: 16:0C:72:CC:57:7B:D8:DE:53:A2:EC:B0:09:8C:22:F3:5A:51:AA:9E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0232A3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C8066/18A5124894F511EDB10BC27DC4F9AE02/FgxyzFd72N5TouywCYwi81pRqp4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C8066/18A5124894F511EDB10BC27DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 21 Feb 2025 18:50:55 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 137406
IP: 103.107.156.0/22
IP: 2403:8c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144035 (0x232a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 21 18:50:55 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91C8066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:12:09:97:b6:5b:fc:e1:98:c5:cd:05:09:b8:
33:33:0d:d7:65:7f:65:e0:f2:88:37:e7:5c:a3:c7:
94:83:14:7c:28:c0:a1:02:a4:db:4b:56:77:00:f3:
87:7a:50:da:12:0a:f1:6e:55:fc:69:05:14:20:62:
37:ab:94:63:f3:f2:3d:37:56:fb:c5:5c:6a:22:ca:
c3:d3:bf:24:b1:d7:ac:39:2b:a4:22:8d:25:8b:91:
66:c5:79:66:cd:06:81:ff:1c:8a:72:ae:48:f3:71:
f7:91:e2:6c:2b:35:93:8e:65:0f:84:08:09:fc:e2:
d1:0c:1b:d1:2f:3a:5b:71:4b:01:39:67:00:39:d6:
fd:4c:2d:2b:3f:1d:95:52:7c:81:bc:8a:5e:93:a1:
71:49:77:07:1d:9f:f3:b9:4f:7a:27:c8:9d:af:5f:
6d:8b:05:ef:b6:cf:fe:a7:94:d4:bc:ea:0c:83:e5:
66:4e:8a:4c:04:b5:cd:a3:21:65:be:22:0e:8b:9a:
4b:1c:cf:5f:90:2f:19:b0:76:c4:93:8f:9a:68:0f:
c7:6d:26:8e:78:79:0e:4b:8f:8f:dd:36:4b:1a:f8:
e7:28:3f:e0:8d:01:1f:9e:3b:5f:3d:a4:11:e9:f1:
04:fa:42:58:d0:08:ab:e8:fc:49:84:63:d9:1d:91:
5c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0C:72:CC:57:7B:D8:DE:53:A2:EC:B0:09:8C:22:F3:5A:51:AA:9E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C8066/18A5124894F511EDB10BC27DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C8066/18A5124894F511EDB10BC27DC4F9AE02/FgxyzFd72N5TouywCYwi81pRqp4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137406
sbgp-ipAddrBlock: critical
IPv4:
103.107.156.0/22
IPv6:
2403:8c0::/32
Signature Algorithm: sha256WithRSAEncryption
25:73:b0:5f:0e:44:d1:f9:18:5f:d0:aa:ee:88:e3:74:c5:7c:
aa:f5:74:e5:17:46:d0:9c:61:bf:1f:32:9b:66:61:d9:bb:54:
32:d4:2e:c2:6e:1f:84:05:02:da:14:f0:5f:3f:b1:2d:f9:89:
a5:ec:77:cc:1d:b6:f5:d9:91:62:b2:9e:76:2d:e7:ff:bf:f0:
37:48:a1:91:c3:bc:4c:f2:c2:68:40:3d:01:f4:58:49:7e:1e:
8f:26:4e:3e:c9:31:f5:8e:45:ef:cb:8f:4b:ad:a8:5d:2b:49:
41:fe:a9:d1:a4:5f:11:31:95:fd:9c:3a:71:e8:61:0b:8b:cd:
eb:01:30:b3:29:44:ff:95:7d:d2:d7:3d:52:a2:8d:64:ef:79:
de:13:59:be:e0:95:37:fc:5d:35:ba:59:7d:fd:6f:91:9c:71:
43:cd:a3:3d:08:2b:16:70:64:dd:87:3d:00:5f:ec:13:f7:db:
1a:03:6c:fa:df:3f:e4:4e:06:92:de:96:66:2d:66:75:fb:45:
96:a9:96:fa:2d:0f:58:92:59:01:61:57:ac:de:2a:ee:db:cd:
0f:28:48:9c:9f:71:84:38:ee:02:4d:dd:22:ce:f5:86:90:8f:
88:b6:33:47:cf:af:8f:f5:0e:88:8c:da:92:08:79:b4:c2:bd:
50:ee:4f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:04:37 2025 by rpki-client