Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeXcIVUGn_MX5e44x1t4icIhl-M.cer
File: QeXcIVUGn_MX5e44x1t4icIhl-M.cer (raw, json)
Hash identifier: F6NhSHPwNCDVNzoDIkEgFEvnJYxybqyPOePl93Is1yg=
Subject key identifier: 41:E5:DC:21:55:06:9F:F3:17:E5:EE:38:C7:5B:78:89:C2:21:97:E3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02326C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/QeXcIVUGn_MX5e44x1t4icIhl-M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 20 Feb 2025 17:10:02 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149414
IP: 103.178.220.0/23
IP: 2001:df0:3e40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143980 (0x2326c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 20 17:10:02 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91B72D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:82:b7:88:6a:33:1a:27:d7:c4:f6:10:95:4e:
46:2b:3f:fa:c6:db:4e:0d:fd:b8:89:d1:a1:c5:7a:
eb:a6:cd:45:6f:e2:35:99:40:53:5e:9a:ea:a9:33:
22:43:0b:f9:e8:71:29:10:c7:ff:d5:ab:0d:0c:03:
fa:15:fc:97:fe:2a:2e:c5:46:67:76:3b:da:b3:d5:
d3:26:47:95:f9:c1:da:2c:19:86:b8:c4:a3:9d:5e:
df:02:59:8e:7e:11:65:3a:5c:40:95:5c:c0:f8:0c:
d6:c7:34:c0:17:c1:03:f7:c7:76:80:7b:51:d8:9b:
47:d2:3b:7b:32:3b:98:29:1b:d7:ff:e8:4d:25:67:
0e:f8:c9:9e:12:8d:f8:28:6a:9c:b5:a4:cb:2e:2b:
86:79:b1:89:4c:25:5b:d4:73:0f:2c:35:7b:ec:c8:
93:a9:13:61:ba:27:b0:89:3c:f6:f0:8e:2a:dd:69:
74:9b:eb:95:3b:bd:52:ad:46:a4:df:80:0e:10:5c:
d5:4c:b3:50:3e:41:bb:ab:a0:70:3b:da:60:41:3e:
e7:92:68:8e:f0:c4:48:43:0e:50:44:2b:7a:00:24:
25:35:bb:ee:eb:84:3b:e6:5e:0f:8d:f9:f0:af:ef:
a6:f7:19:49:1d:11:95:b5:1b:a8:32:e6:0a:c7:48:
84:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E5:DC:21:55:06:9F:F3:17:E5:EE:38:C7:5B:78:89:C2:21:97:E3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/QeXcIVUGn_MX5e44x1t4icIhl-M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149414
sbgp-ipAddrBlock: critical
IPv4:
103.178.220.0/23
IPv6:
2001:df0:3e40::/48
Signature Algorithm: sha256WithRSAEncryption
0a:2c:a8:49:81:2c:8f:fa:b3:fc:93:d5:5f:db:53:4c:c7:16:
a3:0a:00:37:41:21:63:f1:ac:18:22:cf:5a:60:6a:3c:5d:b9:
b9:a5:31:bb:43:49:99:8e:cf:68:d6:cd:b5:6a:8a:db:8f:e3:
fe:20:5f:f7:d4:f7:ad:be:bb:ac:13:a9:78:f5:70:e6:18:3a:
6d:9d:e0:42:8a:c7:f5:93:e8:5a:be:1e:06:19:34:0f:70:09:
63:f6:c1:91:62:09:89:a0:d3:47:c7:12:e8:21:c0:af:3b:b0:
17:31:b9:ad:f8:54:6e:62:0e:3f:4e:1d:3a:e9:50:1b:65:76:
e6:25:d6:97:cc:02:7b:64:70:ec:d8:28:9b:51:dd:b7:fd:5a:
cd:68:bf:8d:ea:58:ab:96:74:dd:5e:e1:60:06:6e:3c:07:b8:
9c:20:aa:af:1d:6d:35:f4:4b:1e:6b:4b:4f:d4:ba:44:3f:e7:
3a:e8:7d:8c:15:d8:f3:4c:3d:dc:79:94:bb:63:67:33:1f:ef:
c7:0f:eb:bd:6f:35:cf:37:13:30:77:36:a4:78:df:51:73:0c:
cf:d2:68:64:98:22:4f:52:a3:8a:e6:34:e8:05:10:7d:29:4e:
05:76:7d:bc:9e:04:f0:db:ea:e1:8d:26:2d:ef:38:80:94:0f:
11:df:d7:2f
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAjJsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDIyMDE3MTAwMloXDTI2MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjcyRDkxMTAvBgNVBAUTKDQxRTVEQzIxNTUwNjlGRjMxN0U1RUUz
OEM3NUI3ODg5QzIyMTk3RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCagreIajMaJ9fE9hCVTkYrP/rG204N/biJ0aHFeuumzUVv4jWZQFNemuqpMyJD
C/nocSkQx//Vqw0MA/oV/Jf+Ki7FRmd2O9qz1dMmR5X5wdosGYa4xKOdXt8CWY5+
EWU6XECVXMD4DNbHNMAXwQP3x3aAe1HYm0fSO3syO5gpG9f/6E0lZw74yZ4Sjfgo
apy1pMsuK4Z5sYlMJVvUcw8sNXvsyJOpE2G6J7CJPPbwjirdaXSb65U7vVKtRqTf
gA4QXNVMs1A+QburoHA72mBBPueSaI7wxEhDDlBEK3oAJCU1u+7rhDvmXg+N+fCv
76b3GUkdEZW1G6gy5grHSIQBAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUQeXcIVUG
n/MX5e44x1t4icIhl+MwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI3MkQ5L0FBMjNGQTk2Njk3MTExRUNCNjI1OTMwQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCNzJEOS9BQTIzRkE5NjY5NzExMUVDQjYyNTkzMENDNEY5QUUwMi9RZVhjSVZV
R25fTVg1ZTQ0eDF0NGljSWhsLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAkemMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ7LcMA8EAgAC
MAkDBwAgAQ3wPkAwDQYJKoZIhvcNAQELBQADggEBAAosqEmBLI/6s/yT1V/bU0zH
FqMKADdBIWPxrBgiz1pgajxdubmlMbtDSZmOz2jWzbVqituP4/4gX/fU962+u6wT
qXj1cOYYOm2d4EKKx/WT6Fq+HgYZNA9wCWP2wZFiCYmg00fHEughwK87sBcxua34
VG5iDj9OHTrpUBtlduYl1pfMAntkcOzYKJtR3bf9Ws1ov43qWKuWdN1e4WAGbjwH
uJwgqq8dbTX0Sx5rS0/UukQ/5zrofYwV2PNMPdx5lLtjZzMf78cP671vNc83EzB3
NqR431FzDM/SaGSYIk9So4rmNOgFEH0pTgV2fbyeBPDb6uGNJi3vOICUDxHf1y8=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:14:36 2025 by rpki-client