Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer
File: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer (raw, json)
Hash identifier: Va7QyxUnd2WRpwyza7VpIUHs6v4MbmOZIwjA0okxcBU=
Subject key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023493
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 02 Mar 2025 15:31:37 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 10104
IP: 2001:df3:6c40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144531 (0x23493)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 2 15:31:37 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A9178C1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d4:f8:8a:d0:77:0b:d1:fd:68:3b:71:11:0d:
bf:50:8c:92:3a:4a:ad:f2:53:be:d3:8e:ad:f8:15:
92:87:c1:52:73:f9:9f:d1:11:f4:67:93:cf:0a:99:
72:9a:02:e4:c4:ec:93:30:47:bd:7a:eb:3e:f3:f9:
e8:93:b7:34:8a:1d:2c:86:7f:9d:bc:4d:d0:85:d0:
bb:6c:21:98:ac:32:d3:10:1a:0b:8c:68:4b:3e:0a:
f9:a4:d8:2c:4e:37:91:40:33:a1:90:cc:56:4b:76:
4a:a6:74:88:56:bb:c3:86:88:3f:41:4d:3f:55:ae:
82:41:34:36:42:42:ef:d1:d8:6c:52:ec:5a:49:c1:
b2:36:b2:d5:b0:c2:cb:1a:22:82:68:09:31:01:27:
f3:f2:7c:33:62:c8:0a:8e:de:bd:8f:ec:0a:bf:09:
c9:12:d0:e9:9b:aa:ba:4d:a6:1f:7f:4c:cb:3a:c5:
b9:2b:ec:35:f3:13:98:15:fb:23:90:f8:6a:8f:c6:
9d:57:c6:f8:e6:63:7a:e5:a7:6e:22:55:6b:ef:a0:
df:69:80:8e:87:37:18:fc:73:2b:a9:4d:60:24:6c:
db:5d:7e:60:f0:c5:ae:bc:4e:82:f2:0d:fe:28:c9:
d6:90:5a:19:d3:c3:7e:57:3b:51:db:0d:91:6b:56:
97:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10104
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:6c40::/48
Signature Algorithm: sha256WithRSAEncryption
8c:8b:b5:c5:a5:5c:3b:50:16:73:20:9d:ab:42:5d:55:1f:00:
86:65:87:7e:42:eb:24:f0:d6:86:3a:1d:5b:8d:9c:62:0a:b0:
10:e5:0d:22:03:9a:9b:c5:ea:34:24:cc:4d:0d:67:94:1d:6f:
1e:c3:9a:e1:12:f6:33:99:09:4c:84:89:9b:53:b9:87:15:2b:
ea:02:3e:83:c2:3a:a3:c0:39:7c:6d:cf:e7:11:cd:d4:99:6a:
66:d5:50:c8:d7:78:6f:3d:b4:b0:a2:d8:10:bb:f9:ff:4f:58:
bd:67:4c:7f:d0:f6:1b:41:9b:ec:f9:ce:57:c7:4a:8b:d9:46:
d4:80:b1:a5:f3:ee:d1:ae:5a:9e:df:03:d2:35:58:1e:ef:19:
a9:e5:78:cd:23:d3:35:90:ed:69:ad:47:f9:7e:ee:b6:e9:0b:
fc:72:9d:61:f7:4f:e4:eb:85:1a:33:3e:51:53:1d:8d:f8:30:
60:e8:4e:da:e0:18:35:ab:40:42:48:e5:12:66:77:ef:9f:10:
0a:25:88:eb:76:40:85:77:1e:fe:57:24:95:87:b5:5d:79:99:
a9:d4:c7:79:4e:f5:46:31:a0:d3:5d:b8:45:2d:4b:38:be:26:
24:2c:9f:03:f9:f8:be:0d:3a:df:8c:6e:20:5a:c7:fb:5f:05:
67:37:e0:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:15:32 2025 by rpki-client