Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer
File: KtUm39nH6QyjDDH8pOGCUBtwB1M.cer (raw, json)
Hash identifier: 3o1Yht12+sfw08SQzjPjZinFWQlqgJix7CDo1TPtnB4=
Subject key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021FB5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Dec 2024 20:22:27 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139787
IP: 103.145.60.0/23
IP: 2001:df1:fd80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139189 (0x21fb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 2 20:22:27 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A919AAA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:77:be:01:d3:36:7b:80:6d:ac:fe:85:d5:d0:
57:12:51:35:3b:da:10:9f:25:1b:db:04:37:99:12:
d6:10:e7:59:12:93:08:3b:8c:db:7d:3d:8b:17:8c:
a9:38:c6:4e:98:33:71:4e:73:97:ee:87:a1:75:59:
73:18:9a:48:cf:30:84:1e:41:07:95:fa:b8:8f:64:
d7:d3:a9:83:d9:50:bb:04:f6:2f:05:47:b1:c1:96:
89:f4:00:4a:4f:25:36:4b:46:d3:53:f9:df:28:1c:
af:5b:e5:0c:2d:f1:0b:7f:f1:6b:38:43:5f:ea:d8:
c9:ae:22:78:f1:37:61:76:0f:16:9e:d3:12:d8:85:
2d:09:a6:34:2d:bd:3d:56:ca:38:1c:b6:6b:5a:73:
ab:52:35:2f:c7:db:62:46:69:0d:8f:c1:a9:e3:9c:
e9:c5:a0:f8:98:59:63:00:69:46:18:5b:e0:76:ac:
46:fa:f7:08:f2:a9:82:17:00:af:57:d5:d5:49:82:
ba:49:af:7c:5b:b8:82:d1:cd:62:8b:c7:de:c9:80:
e6:19:fb:44:5e:70:99:1e:29:87:3a:fa:18:92:38:
e4:df:a2:7c:0d:65:90:67:ed:8b:17:a6:9f:8e:2d:
7b:f5:d9:e8:a0:ec:50:6f:60:09:75:02:67:7b:79:
6b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139787
sbgp-ipAddrBlock: critical
IPv4:
103.145.60.0/23
IPv6:
2001:df1:fd80::/48
Signature Algorithm: sha256WithRSAEncryption
55:80:99:51:a6:8c:fd:86:43:21:63:09:f5:2a:70:1e:df:54:
d2:e1:93:05:1e:12:c0:ff:84:f7:4a:bd:ca:42:d8:0c:2b:a7:
6b:0e:ac:0c:65:26:28:d9:0a:56:90:9b:29:2e:71:69:bb:9f:
b6:6b:ad:c7:ca:7f:ee:30:86:72:de:94:75:c8:fe:48:c7:f8:
f0:ee:0d:55:cd:ea:b9:bc:71:a2:01:c0:16:6c:da:f8:ab:23:
e2:4b:14:2f:41:dc:e0:93:9a:13:5f:86:db:c4:84:9a:8d:df:
a4:ca:69:4c:3d:13:5f:a1:44:b3:c3:80:d7:5d:41:26:a6:a9:
60:96:93:c4:8c:8d:b5:e5:91:c6:b1:cb:bd:a2:2a:fc:c8:29:
a6:f2:71:cb:87:07:95:12:4e:e2:1f:cf:87:e5:0e:a2:d8:69:
b1:6b:c2:e6:75:b7:41:38:64:27:72:77:c2:10:25:11:7e:21:
e4:7e:ac:53:f7:79:53:a1:ec:84:21:48:d1:4b:6c:70:dc:57:
b4:60:34:bd:4b:c8:a1:ea:8b:e3:5f:78:5c:5e:d8:39:40:17:
9b:db:d9:47:e0:44:75:72:5e:7b:6a:a6:c3:d1:75:a0:a5:de:
20:c2:49:65:34:fd:71:4a:30:58:f8:a1:45:32:96:05:c0:71:
ea:b5:99:e6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:37:39 2025 by rpki-client