Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MBTdOHsX8ziHOip6N_gkTZNwLqg.cer
File: MBTdOHsX8ziHOip6N_gkTZNwLqg.cer (raw, json)
Hash identifier: ROmsVfvucvl9sjKr+8ZciQvtoY1rPy1oPW8NIOqX4Vk=
Subject key identifier: 30:14:DD:38:7B:17:F3:38:87:3A:2A:7A:37:F8:24:4D:93:70:2E:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02241D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 22 Dec 2024 16:17:54 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 137192
IP: 103.104.156.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140317 (0x2241d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 22 16:17:54 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9172E1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0d:5b:43:a6:af:25:4d:03:12:92:85:41:fc:
e1:4b:77:c8:f6:51:8f:93:49:aa:e6:08:9d:06:0d:
62:7f:2c:32:be:2e:20:b6:55:bc:55:5d:af:85:33:
3c:89:70:fe:1d:28:e0:3b:13:76:28:f9:13:5c:d6:
0f:c9:5e:fc:c0:53:11:88:9d:74:7a:3b:43:57:96:
62:d4:d6:47:63:5d:c3:b4:62:5b:5a:bb:9f:76:82:
97:5f:40:f1:49:85:5b:08:e6:7b:fd:67:ac:ab:23:
07:eb:ba:f0:df:fc:84:d4:fd:7e:dc:8c:07:79:fe:
11:97:26:a8:c0:48:f5:d9:45:65:ee:27:8d:6d:0e:
3b:ea:7d:32:5d:85:9e:25:c5:1c:f7:d2:ae:4d:7f:
36:a0:3f:e8:83:9b:d6:1f:41:4c:35:98:1d:57:60:
b7:12:ba:58:60:26:f5:c8:ab:4f:a8:a2:21:6a:7c:
8e:38:fb:03:1e:c5:be:ad:72:64:77:e7:71:d8:02:
2a:d9:0d:9d:ff:1d:e3:ae:aa:11:b2:9f:28:cf:e8:
f4:93:05:40:d7:3a:94:6a:d2:6e:83:df:b9:7e:3c:
6a:9a:a4:dc:99:42:81:fb:ec:aa:51:a1:04:52:81:
1d:f4:de:04:6a:ea:fc:37:72:5d:5d:cf:ef:9d:bb:
8a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:14:DD:38:7B:17:F3:38:87:3A:2A:7A:37:F8:24:4D:93:70:2E:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9172E1E/278817C05C1311EEA907183DC4F9AE02/MBTdOHsX8ziHOip6N_gkTZNwLqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137192
sbgp-ipAddrBlock: critical
IPv4:
103.104.156.0/22
Signature Algorithm: sha256WithRSAEncryption
56:49:0f:f9:e0:5d:08:29:89:6c:44:5e:8a:cd:3e:16:cc:19:
22:85:3c:95:bc:64:23:04:f1:73:e0:77:bc:f6:e3:0f:2c:ac:
83:b9:c7:80:9f:ad:01:23:86:24:31:b8:d4:e7:70:7a:c5:9a:
ac:58:e5:90:bc:58:b4:b7:86:69:df:f5:8a:2d:1e:aa:e2:aa:
71:d8:96:e3:14:8b:c6:26:4b:57:6e:9d:a7:59:3e:e5:c6:cf:
e4:56:dc:b1:8e:03:65:e6:ad:36:46:d9:df:5e:31:68:b5:1a:
e1:2c:a0:31:42:5d:8a:61:29:2d:63:a5:38:94:6a:4f:21:1e:
b1:ee:b1:ee:36:5b:2f:fd:d3:c2:4d:28:17:02:fa:fd:f9:ad:
9d:13:6d:31:fe:18:86:20:64:a8:59:87:c8:2f:ec:fa:53:8d:
a7:30:93:bb:f9:49:61:61:a0:27:b8:1c:d9:4a:0a:68:9b:33:
a9:4f:3d:81:34:86:71:6a:24:42:c5:57:71:40:cd:b9:2f:51:
10:18:60:40:de:2e:04:4d:7e:d8:aa:c6:f4:85:a5:d6:12:fe:
d7:45:60:35:1c:85:6c:60:02:e0:5e:78:36:9c:5a:f3:ab:fa:
74:9b:81:05:46:11:38:81:e0:f4:05:af:51:37:e0:5a:80:17:
8b:df:ab:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:10:17 2025 by rpki-client