Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJoqNkM0qd26Sm1EBB15pdMrr6s.cer
File: MJoqNkM0qd26Sm1EBB15pdMrr6s.cer (raw, json)
Hash identifier: 5XZvkPmneGT2p7H9n/0d/brEOpjpw1ioiuCkxowLqtg=
Subject key identifier: 30:9A:2A:36:43:34:A9:DD:BA:4A:6D:44:04:1D:79:A5:D3:2B:AF:AB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022044
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AC100/E43DC5CAF2BC11EC88AC9452C4F9AE02/MJoqNkM0qd26Sm1EBB15pdMrr6s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AC100/E43DC5CAF2BC11EC88AC9452C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Dec 2024 22:16:45 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 138388
IP: 103.124.96.0/22
IP: 2403:ddc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139332 (0x22044)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 3 22:16:45 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91AC100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fe:9a:55:02:58:fa:e5:45:94:78:6d:ee:44:
61:4f:ae:ba:ff:a1:3b:e2:a6:0e:9b:b3:cb:05:7d:
19:bb:d3:98:c7:28:2f:2b:f3:be:eb:f8:c9:da:00:
fc:53:cf:60:50:32:48:f7:fb:de:93:af:2c:55:64:
1c:2b:bb:a2:20:91:20:97:9e:ef:a8:f1:ed:9c:ed:
a4:6a:40:1b:3b:9a:ee:eb:59:62:bd:5d:cb:da:ac:
c0:a4:cc:8e:e0:ad:59:e7:8b:df:09:5c:3e:5c:23:
af:42:14:ff:9a:75:78:45:e8:c1:81:69:46:82:91:
49:06:b4:19:54:25:3a:b9:69:04:72:42:e7:e4:a7:
1d:84:9e:53:0c:b6:67:50:17:6a:d9:33:28:d7:f7:
21:e4:69:5a:b8:e8:7f:ef:3e:c1:0a:05:a6:5c:57:
90:37:08:4c:9a:d0:0e:b1:cd:63:0d:2e:c1:9c:8f:
a5:1d:23:2f:a2:9f:d3:f8:3f:55:9f:00:6a:b9:80:
6b:a2:fe:3d:08:2e:1a:7a:db:e7:32:4c:ba:33:b5:
ab:5d:42:d8:d7:4d:24:5b:01:c1:7b:45:81:e8:ca:
a6:64:f7:a4:ad:8f:6b:c3:8b:06:fb:88:35:bd:0e:
9d:99:92:7a:ba:3d:56:b2:23:95:02:26:27:0f:f1:
ca:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:9A:2A:36:43:34:A9:DD:BA:4A:6D:44:04:1D:79:A5:D3:2B:AF:AB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AC100/E43DC5CAF2BC11EC88AC9452C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AC100/E43DC5CAF2BC11EC88AC9452C4F9AE02/MJoqNkM0qd26Sm1EBB15pdMrr6s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138388
sbgp-ipAddrBlock: critical
IPv4:
103.124.96.0/22
IPv6:
2403:ddc0::/32
Signature Algorithm: sha256WithRSAEncryption
c5:d4:d7:96:7b:6f:d2:42:73:3e:50:5c:44:50:b2:6b:6f:51:
ef:8f:40:b6:be:21:ba:8c:de:30:79:88:39:32:7f:f7:b0:5c:
0b:9f:a6:5f:21:1a:30:a7:84:18:19:b5:49:93:f2:cc:f0:53:
5e:0d:39:d2:7a:49:41:63:5f:ca:05:b7:79:4b:41:3a:cd:ff:
f3:78:f2:72:90:0e:78:12:35:64:50:fe:d9:a1:e9:de:45:87:
6a:5d:2b:47:74:cc:43:bf:c7:6e:2f:06:49:e0:66:2e:e8:49:
4f:df:ed:9a:cc:2b:00:de:13:88:8b:60:f1:ed:00:a6:2c:c8:
6b:e1:4a:c0:8b:60:34:14:32:f3:af:66:a3:77:e2:62:e5:3e:
98:46:14:e9:60:5e:ac:46:73:4e:c8:17:dd:53:c3:32:0a:97:
71:1d:22:8e:e9:58:68:46:31:17:ae:db:ba:7d:20:26:81:04:
a4:76:db:51:64:59:b2:3d:96:4e:71:40:43:63:30:d6:91:36:
ed:39:87:99:0d:e4:c5:c4:84:a1:3b:c1:b0:1f:53:f8:26:96:
9f:6a:42:5e:73:69:2d:db:28:36:85:d9:d8:57:5b:2e:e4:41:
eb:3c:f8:37:47:04:b4:6c:59:92:cb:59:64:bc:33:bd:6f:a4:
7a:08:4d:72
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAiBEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIwMzIyMTY0NVoXDTI2MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUMxMDAxMTAvBgNVBAUTKDMwOUEyQTM2NDMzNEE5RERCQTRBNkQ0
NDA0MUQ3OUE1RDMyQkFGQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC9/ppVAlj65UWUeG3uRGFPrrr/oTvipg6bs8sFfRm705jHKC8r877r+MnaAPxT
z2BQMkj3+96TryxVZBwru6IgkSCXnu+o8e2c7aRqQBs7mu7rWWK9XcvarMCkzI7g
rVnni98JXD5cI69CFP+adXhF6MGBaUaCkUkGtBlUJTq5aQRyQufkpx2EnlMMtmdQ
F2rZMyjX9yHkaVq46H/vPsEKBaZcV5A3CEya0A6xzWMNLsGcj6UdIy+in9P4P1Wf
AGq5gGui/j0ILhp62+cyTLoztatdQtjXTSRbAcF7RYHoyqZk96Stj2vDiwb7iDW9
Dp2Zknq6PVayI5UCJicP8crrAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUMJoqNkM0
qd26Sm1EBB15pdMrr6swHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFDMTAwL0U0M0RDNUNBRjJCQzExRUM4OEFDOTQ1MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBQzEwMC9FNDNEQzVDQUYyQkMxMUVDODhBQzk0NTJDNEY5QUUwMi9NSm9xTmtN
MHFkMjZTbTFFQkIxNXBkTXJyNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhyUMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ3xgMA0EAgAC
MAcDBQAkA93AMA0GCSqGSIb3DQEBCwUAA4IBAQDF1NeWe2/SQnM+UFxEULJrb1Hv
j0C2viG6jN4weYg5Mn/3sFwLn6ZfIRowp4QYGbVJk/LM8FNeDTnSeklBY1/KBbd5
S0E6zf/zePJykA54EjVkUP7ZoeneRYdqXStHdMxDv8duLwZJ4GYu6ElP3+2azCsA
3hOIi2Dx7QCmLMhr4UrAi2A0FDLzr2ajd+Ji5T6YRhTpYF6sRnNOyBfdU8MyCpdx
HSKO6VhoRjEXrtu6fSAmgQSkdttRZFmyPZZOcUBDYzDWkTbtOYeZDeTFxIShO8Gw
H1P4JpafakJec2kt2yg2hdnYV1su5EHrPPg3RwS0bFmSy1lkvDO9b6R6CE1y
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:12:44 2025 by rpki-client