Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GF_2ZH4elndQE3e1UVR5uelGEGc.cer
File: GF_2ZH4elndQE3e1UVR5uelGEGc.cer (raw, json)
Hash identifier: SCy6foMBzRbp9Zlv6m76Bx5Qz/2oUCUtYapk2COGzPQ=
Subject key identifier: 18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022C9D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Jan 2025 17:15:34 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 103.127.4.0/22
IP: 2404:1740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142493 (0x22c9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 30 17:15:34 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9193C85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:98:4e:8c:59:f7:8a:a6:66:63:03:64:b7:1b:
d8:5e:bd:07:4e:a8:52:86:62:5e:3e:83:5d:40:44:
5f:c9:7b:f2:df:07:e4:0a:4f:3d:4d:35:54:a9:f0:
12:51:c5:42:4d:1c:ca:b2:5c:de:6c:47:38:af:c1:
d0:22:bb:19:56:fb:df:bb:80:4a:45:3a:0b:66:96:
6c:ae:9f:5d:09:43:2a:33:a6:c3:16:1f:51:b1:bc:
ea:4b:4e:e0:07:ad:48:b4:a1:0b:65:ea:3e:20:ed:
f9:4d:2b:d1:e2:29:c6:05:09:bf:e4:20:cd:05:cc:
8f:8e:5b:ec:e9:1f:62:b3:87:b8:4b:dc:5a:2e:03:
98:05:3c:de:60:e3:83:2b:3b:77:8e:65:2c:fa:20:
29:d9:31:f0:18:07:de:4c:b1:a9:a7:75:39:78:7a:
60:8b:6f:95:d9:86:c9:80:7b:29:3e:36:7f:1b:76:
bf:42:c5:00:a5:cd:1d:66:92:76:d3:95:79:e7:6d:
1c:f1:05:e8:1b:38:ab:60:64:b6:85:6b:10:5a:48:
a6:b2:6d:83:19:88:70:49:03:ad:9c:dd:a6:8c:be:
54:dd:19:f6:ff:26:64:54:79:87:3c:91:d1:f5:6f:
ba:91:5e:cd:9f:75:06:c0:17:e7:82:5b:ca:5e:9b:
ea:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:5F:F6:64:7E:1E:96:77:50:13:77:B5:51:54:79:B9:E9:46:10:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9193C85/4FF4CB72FDE011E88EDE4513C4F9AE02/GF_2ZH4elndQE3e1UVR5uelGEGc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.4.0/22
IPv6:
2404:1740::/32
Signature Algorithm: sha256WithRSAEncryption
3a:a2:4c:5f:52:ba:14:ef:c6:34:b4:e3:6c:ed:9a:ee:2c:30:
bd:48:4a:be:cd:9e:32:63:e6:21:15:7f:e4:29:d5:e2:3b:e0:
8e:42:c0:71:13:37:8b:3a:51:a9:19:69:f5:33:40:6a:91:b5:
9d:d2:e5:37:95:9d:c4:53:a7:0d:8d:cc:db:3c:2b:75:29:d3:
93:89:52:d1:32:ad:99:66:19:44:99:41:df:a6:2b:fc:57:22:
b5:7a:4f:f1:aa:99:3c:54:4e:e1:0b:a2:1b:9d:98:61:dd:b4:
92:f1:5b:99:44:4c:e0:8d:de:55:92:0a:a3:be:b7:66:b5:a3:
7b:ce:18:ed:07:e1:3b:5f:f7:30:71:2a:70:e8:0a:e6:0c:4b:
27:66:82:8f:65:b8:d0:35:71:e8:b7:2b:8c:fc:e9:64:3d:57:
7f:c2:69:e5:c1:a6:6f:41:d2:a5:e4:a4:0d:e9:5e:ec:fa:26:
77:a8:25:6c:32:11:fe:5c:83:49:7e:a6:4a:92:4f:e7:ce:d9:
d7:4c:16:c2:5c:f5:ca:da:af:8e:90:6a:3c:25:2b:19:15:f2:
2b:3e:f3:bb:75:d6:83:b3:bd:aa:c5:fd:e5:5d:d7:c3:a8:27:
16:e5:c3:69:dc:38:74:eb:b2:a3:77:3e:5a:18:0d:56:15:3c:
3a:36:c4:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:11:15 2025 by rpki-client