Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer
File: NAcoRkbqh4WDwlsPqefW7aCRMpg.cer (raw, json)
Hash identifier: qAaZDtlW2WeAUeG9+rk1DWxut44ytMD5Yi9fJCygHjE=
Subject key identifier: 34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0238F9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 21 Mar 2025 16:54:49 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 140552
IP: 103.150.78.0/23
IP: 2001:df3:6180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145657 (0x238f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 21 16:54:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A919C318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e0:b1:92:e0:6f:40:36:36:a3:4a:9c:2a:9d:
9d:94:96:03:cc:a2:97:b4:c0:b3:0d:45:37:d1:cc:
77:fb:2d:13:36:88:63:04:68:54:f8:21:3d:21:23:
8f:30:37:3c:59:43:7b:c0:b6:aa:75:56:22:78:76:
c0:36:6e:72:2b:7d:ff:77:49:d1:42:97:63:44:cd:
fe:38:e1:aa:77:fc:85:c6:2e:fb:56:f0:de:ff:9e:
2a:ae:7a:72:22:d1:e7:1f:53:fb:fb:76:a9:75:a3:
0a:44:dc:51:68:80:5d:bf:44:7a:b6:be:c6:52:8f:
35:7f:54:61:c3:52:7c:fb:13:5a:1b:24:c7:57:22:
94:61:45:9d:c9:13:e1:b2:c1:c5:55:5b:be:8f:4c:
84:16:d0:6b:5e:fb:6e:54:26:51:86:63:66:c7:16:
d8:74:24:e8:b9:0d:db:e2:a0:23:2d:b5:c3:b1:d0:
6c:a6:3a:4b:b1:d6:10:ac:cf:ea:32:cc:6d:8d:0d:
9d:f6:e2:b5:f3:05:2a:f4:7a:ba:68:5c:09:98:e7:
72:d6:8c:55:11:52:87:a7:50:48:80:a6:ff:1d:bc:
e7:56:d9:d8:ed:d7:45:d2:db:77:b0:88:b3:02:62:
49:18:d6:cb:85:0f:74:b3:d3:e1:da:ad:8e:f0:b2:
fd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140552
sbgp-ipAddrBlock: critical
IPv4:
103.150.78.0/23
IPv6:
2001:df3:6180::/48
Signature Algorithm: sha256WithRSAEncryption
5d:e0:4b:b6:3d:bd:92:44:43:d5:53:b8:cd:9c:30:93:43:c2:
da:61:f1:46:26:2b:4f:35:a0:2c:68:0a:6d:0c:94:96:b1:7d:
cd:2b:79:d5:59:ef:56:22:e7:05:a4:44:5d:63:4c:93:43:5d:
3a:86:fe:15:61:d6:a9:86:22:24:36:08:44:16:14:d2:f2:1d:
54:de:09:2a:f8:d2:09:06:37:12:05:4e:96:79:9e:ac:a6:2e:
64:9f:34:3a:03:3e:34:6f:64:bf:dc:63:f3:34:65:bd:d4:2c:
c6:96:d4:9b:70:96:c9:fb:50:36:9f:4d:3d:1b:21:f5:1c:09:
94:b5:af:ba:84:b0:6d:db:a2:d6:d3:ce:fb:9a:e1:ba:6a:43:
96:0f:12:fe:d3:6a:e9:a5:19:b2:35:e6:04:c2:1d:f9:40:04:
13:88:6d:60:2b:f7:63:5f:1d:1b:d0:55:86:a8:05:42:f2:fd:
36:74:6c:bb:45:e8:a3:46:f7:1f:d6:b9:57:55:3e:ed:99:80:
55:3b:f9:31:0f:5a:91:be:8e:5b:2e:65:85:0c:0d:6a:1a:a1:
bf:89:f6:9d:90:5b:19:92:13:f3:6d:61:7c:1b:32:bd:96:8d:
1c:b6:93:08:0e:a2:29:2c:2e:5b:bc:12:90:b7:04:92:31:f7:
38:d6:c7:b7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:22:54 2025 by rpki-client