Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nhu6lAj6GbXpfYLN2_-y55u7oz8.cer
File: Nhu6lAj6GbXpfYLN2_-y55u7oz8.cer (raw, json)
Hash identifier: yGgf1rcvHPBpkPHOrL3TPmS30VefvjpSzu+0gyKEhxI=
Subject key identifier: 36:1B:BA:94:08:FA:19:B5:E9:7D:82:CD:DB:FF:B2:E7:9B:BB:A3:3F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022126
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919D656/93CB77AE6ACB11ED9B633B39C4F9AE02/Nhu6lAj6GbXpfYLN2_-y55u7oz8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919D656/93CB77AE6ACB11ED9B633B39C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Dec 2024 17:53:04 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 135668
IP: 103.78.136.0/24
IP: 203.0.27.0/24
IP: 2001:df6:3a00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139558 (0x22126)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 6 17:53:04 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A919D656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:60:ae:5a:94:67:7d:c0:73:ee:e9:0c:85:09:
8b:9c:98:f9:90:64:d9:e3:3a:ae:77:a5:77:c2:51:
53:2e:db:89:6a:35:86:92:ef:69:53:5d:68:06:2c:
b0:96:47:f7:d9:60:a7:46:5b:de:37:fe:80:36:ff:
a4:c8:42:72:4b:51:43:fe:33:7b:01:ea:f8:23:42:
dc:48:d5:00:61:81:48:7d:7b:0f:31:d0:26:12:9c:
b5:58:31:3b:25:95:c9:36:34:18:23:91:5f:eb:7e:
0c:30:4e:2a:72:6b:a7:2a:ac:f0:c2:d8:dc:4c:7e:
27:99:73:9c:c3:ff:04:b0:3e:c2:d1:da:ac:7c:1a:
bb:da:b0:2f:e6:09:30:9e:59:55:15:a7:30:b5:49:
0a:16:b4:c2:08:a0:76:b2:1b:c2:03:66:ae:78:5c:
f9:00:e8:1d:d3:60:d2:f6:ad:ab:a2:43:a6:43:e1:
6c:29:9e:e1:67:a1:e9:68:8f:89:5e:a3:a1:0c:d2:
80:a1:36:01:e0:35:3a:29:ed:73:79:90:88:31:05:
31:03:db:fd:20:52:05:ce:e0:c2:0a:06:05:76:a9:
0d:89:8f:1c:5e:af:54:e4:d9:34:51:62:b6:73:10:
3e:1a:c8:e0:ed:cc:af:a2:d0:b9:2a:58:db:d8:69:
c0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1B:BA:94:08:FA:19:B5:E9:7D:82:CD:DB:FF:B2:E7:9B:BB:A3:3F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919D656/93CB77AE6ACB11ED9B633B39C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919D656/93CB77AE6ACB11ED9B633B39C4F9AE02/Nhu6lAj6GbXpfYLN2_-y55u7oz8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135668
sbgp-ipAddrBlock: critical
IPv4:
103.78.136.0/24
203.0.27.0/24
IPv6:
2001:df6:3a00::/48
Signature Algorithm: sha256WithRSAEncryption
60:16:0b:69:fa:00:5a:5f:7a:bb:68:ee:c7:c3:09:55:c5:f9:
72:f8:8b:b0:01:af:94:43:33:d2:1e:67:20:89:85:a4:da:8d:
41:e6:3c:d5:99:77:b3:5b:bd:50:2f:5d:13:c4:d2:f7:24:2f:
b3:af:08:d6:3a:6c:dd:f4:cb:fa:b1:d8:d3:4c:2d:c8:00:e6:
82:b7:60:af:44:32:06:dc:8e:fb:59:e4:4a:fe:03:ee:ac:fd:
87:f7:79:f7:fc:44:58:dc:4a:34:b1:88:72:f4:61:fb:32:ae:
b2:de:a5:4d:5b:27:df:25:86:69:7d:82:80:48:7d:19:88:de:
2a:ca:98:ee:1e:7f:4f:0e:f6:32:33:ab:ff:4e:63:16:fb:c1:
22:ba:eb:37:49:b1:d3:9c:fa:bc:f2:d5:4d:36:3b:da:01:88:
72:fa:5b:d9:2e:37:c8:40:f9:c7:1f:39:58:ba:b0:de:61:d9:
2a:05:52:91:b4:57:ed:2a:80:91:77:85:6b:74:ee:a6:61:0c:
49:b0:bb:f5:80:6d:b5:82:91:ea:1c:43:e1:c8:d1:90:94:a7:
66:31:4c:09:d5:9f:a2:18:64:83:16:07:b9:79:1f:36:fd:e8:
16:b7:2e:3f:c0:22:3a:87:99:5c:78:7d:24:33:b6:c1:fa:3a:
c0:93:75:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:15:37 2025 by rpki-client