Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MfrsXjAsGCKfmftHpyPypHmHF6w.cer
File: MfrsXjAsGCKfmftHpyPypHmHF6w.cer (raw, json)
Hash identifier: VIe4JAMXtoRii30hekn6DfdsYM59nQ6ej3vwMpc1feU=
Subject key identifier: 31:FA:EC:5E:30:2C:18:22:9F:99:FB:47:A7:23:F2:A4:79:87:17:AC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022AB7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91417B0/EB082472D88311EF954A3D70C4F9AE02/MfrsXjAsGCKfmftHpyPypHmHF6w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91417B0/EB082472D88311EF954A3D70C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 22 Jan 2025 05:44:21 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 153550
IP: 2001:df4:f7c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142007 (0x22ab7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 22 05:44:21 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91417B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ca:1b:46:6e:bc:24:83:a2:e3:16:73:86:60:
8e:17:7a:4b:3f:93:11:8c:63:2f:d4:4e:18:fc:c5:
a8:02:11:1d:39:ac:d3:f1:1d:cd:e0:65:2b:06:de:
3e:9d:75:81:7f:34:ba:0b:af:0b:e8:7d:8c:70:47:
6d:90:6c:96:83:ad:35:e2:17:74:0d:18:a4:e2:2f:
d6:af:a5:15:55:ab:5c:39:7f:c3:ed:d5:3d:f5:64:
bb:fa:91:08:be:0e:3f:b9:72:41:6f:5f:07:06:46:
d2:11:ca:f4:ff:d7:21:df:09:25:ad:bb:ff:c8:1c:
8a:be:78:5b:fb:8a:85:5e:1c:ce:f3:15:3c:aa:88:
dc:fe:e6:86:61:d8:84:b6:44:53:6f:05:94:f2:12:
5e:dd:f8:6d:2d:52:56:83:88:75:74:8e:67:4f:cf:
f8:84:d2:e6:f4:59:aa:e6:2e:41:25:c2:7e:b4:94:
de:e7:77:5d:70:bb:46:af:86:66:46:72:bd:69:07:
a0:4b:53:2a:b3:00:2a:ac:48:8f:c4:75:2b:e8:35:
30:40:78:65:e9:ae:d9:2b:38:8c:bc:38:fe:8a:f8:
fd:a8:ad:b2:df:5f:8f:12:30:46:a9:8c:0f:61:44:
a1:00:50:b8:20:c3:89:4c:2e:7c:30:9e:5b:0d:b7:
e6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:FA:EC:5E:30:2C:18:22:9F:99:FB:47:A7:23:F2:A4:79:87:17:AC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91417B0/EB082472D88311EF954A3D70C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91417B0/EB082472D88311EF954A3D70C4F9AE02/MfrsXjAsGCKfmftHpyPypHmHF6w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153550
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:f7c0::/48
Signature Algorithm: sha256WithRSAEncryption
c0:8b:81:b1:e2:0b:9e:bc:b9:26:da:0a:34:75:df:2b:fe:fb:
e4:46:fb:d5:f8:d0:cb:e7:14:56:61:a6:ce:29:80:99:58:f2:
2c:73:22:ff:91:7c:1b:5f:db:90:08:2f:a9:b7:e7:20:ad:07:
90:3f:06:a1:ca:1d:16:f0:e3:b9:94:52:6f:f1:1c:63:60:1e:
2b:3c:5a:0a:08:31:33:fa:f2:0a:6e:13:3d:b5:41:4b:d3:c2:
68:c6:b6:45:05:93:81:b1:ea:9b:fc:f2:ec:4f:d1:67:88:43:
f3:3c:f5:ea:c7:75:56:de:0a:6c:13:18:62:99:5e:c2:e3:dc:
a9:4e:67:10:98:72:5d:c0:5a:61:9b:36:59:b3:dc:90:a0:26:
9f:ad:ae:cb:7e:bb:7b:1c:6f:93:56:10:72:a2:9b:ac:d9:00:
7d:0a:1d:ff:65:bb:51:89:0f:36:67:47:4c:28:20:c3:39:52:
b2:30:95:19:37:e9:8a:b5:99:4b:3d:81:55:14:0e:d5:65:2c:
07:1f:b0:4c:e4:01:90:d8:b6:f2:de:ab:d3:e3:41:20:58:e4:
32:d0:99:f1:0e:a8:0d:e7:c9:1f:1e:31:b8:54:d9:22:99:9a:
0f:9d:f6:04:ff:1c:04:d7:10:86:43:ad:5c:88:07:0d:ff:eb:
9d:4b:e3:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:01:33 2025 by rpki-client