Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer
File: PurfFFrim0gkCj-6OvvZSajxU10.cer (raw, json)
Hash identifier: iecAGpAPLdroC8W1NMyxgXsjaJVZGPxeAcuJF4IELY4=
Subject key identifier: 3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0222F7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 16 Dec 2024 19:31:05 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 203.13.208.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140023 (0x222f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 16 19:31:05 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91F823E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:64:b1:93:9f:0b:83:f5:cb:d0:8d:2d:06:1b:
6d:35:e0:1b:42:d0:fe:14:cb:88:97:7d:a6:95:a4:
1d:10:ce:cb:26:ef:39:2c:88:0c:e1:3c:9a:57:2b:
44:43:d1:70:06:df:5a:10:94:7d:d9:da:25:89:4c:
2f:7f:10:f9:e5:59:a6:64:0b:de:16:28:01:e1:c5:
14:31:f2:cf:0f:6f:43:03:3f:1e:51:49:09:56:63:
fd:a5:63:52:d1:42:5b:28:39:9d:cf:7c:fe:02:8d:
19:d2:33:7c:b4:ca:74:c2:c8:53:4b:d7:32:81:6b:
9b:b0:85:bd:90:1e:22:a8:41:b9:bb:da:5a:36:c6:
e8:01:05:3c:69:1c:c6:3a:77:fb:23:d2:5b:3d:6e:
b8:5c:45:64:4f:30:d0:f7:cc:5f:36:b2:26:49:20:
65:d3:9d:7d:9b:0a:b8:c5:cc:26:ba:2a:ed:0b:97:
54:85:92:c9:76:2c:95:6e:30:a8:78:d3:3a:da:e6:
17:6c:eb:7a:fb:76:f5:7c:6d:a7:22:3c:5e:97:1c:
db:72:da:11:3d:20:ce:90:d3:e3:25:2f:c9:60:26:
9e:54:ec:a0:06:fa:d5:87:17:5d:bb:01:02:b3:83:
6a:37:89:6e:f7:75:ba:e3:76:cd:b0:af:e8:d8:fd:
a0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.13.208.0/21
Signature Algorithm: sha256WithRSAEncryption
62:8b:0c:14:ce:f3:6d:48:23:78:75:87:7b:f5:e1:2d:c6:f4:
80:da:86:c2:05:cb:e2:72:df:c6:77:f4:41:14:33:6f:e7:91:
2b:78:4a:b6:08:c3:cd:8c:93:7e:77:2d:38:5a:18:7d:27:7d:
20:76:76:91:5a:33:fe:1e:67:b0:72:52:1c:42:8b:c4:da:9b:
b7:5e:ce:ef:8c:6a:9d:a5:5e:54:83:7b:54:89:da:a3:ea:ee:
e8:fa:ef:2c:70:02:ac:75:a8:4d:33:27:38:60:76:92:ea:25:
c5:05:0e:83:79:13:a1:46:a9:d1:27:4b:ea:62:bb:5e:45:98:
83:bf:8c:87:26:3b:72:dc:c4:c0:69:52:ec:18:4d:8d:0a:64:
17:f1:d3:ca:b0:48:06:3b:bc:c2:c1:48:7f:e0:51:5f:98:90:
1e:92:00:4d:c1:1e:28:f6:ab:eb:10:f9:ce:bc:50:82:17:6d:
7a:89:3d:07:e1:d7:6a:19:1a:f9:a9:35:7e:51:b8:f0:08:4c:
ed:99:58:09:b4:30:a0:bd:6c:67:84:5b:6f:59:39:ad:be:14:
77:26:f2:66:3d:fd:18:64:08:70:2b:19:79:fd:88:6c:66:02:
ae:f5:11:9a:0b:06:8f:44:b2:e4:16:72:0d:d9:be:ad:27:38:
5a:51:67:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:15:38 2025 by rpki-client