Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer
File: QgHlq32GvGha8R8C3mhAUVttgFg.cer (raw, json)
Hash identifier: CbSOmP1ksa3z1dBzeHAXg72o4e/Vwc9m8O6OY4SvQ5c=
Subject key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022516
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Dec 2024 14:35:21 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 38547
IP: 2404:f400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140566 (0x22516)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 27 14:35:21 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91454B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c9:62:21:bc:3e:a5:6a:de:ba:43:0e:78:d4:
87:74:b6:69:62:da:12:d8:3c:3e:38:04:05:2a:6f:
4d:02:1d:5a:80:70:20:9c:ba:6e:bb:26:4f:8a:b2:
68:54:b3:99:40:92:6b:98:4d:ce:ea:17:fc:62:33:
6d:46:43:1a:d9:1e:9f:95:0e:74:aa:29:d3:54:84:
a6:b4:80:5c:ea:54:7b:a7:2b:0a:72:2b:65:c7:f5:
e3:43:cf:6f:6f:d8:bb:e8:76:7c:69:28:43:6b:fb:
3d:f8:38:8f:bc:6b:67:06:d1:04:db:44:4a:92:ca:
7e:d0:1e:ad:d7:02:24:33:b4:7a:28:6d:25:61:ed:
5f:57:37:bc:39:c1:0f:41:f2:11:7a:3a:91:4e:d5:
1e:62:1d:09:22:db:b3:3c:bb:76:bc:cc:c6:9e:d1:
da:ae:84:2b:55:46:6f:3b:de:a5:68:20:22:86:55:
84:6a:29:f7:74:7c:f1:5d:dd:75:0d:6b:a2:dd:5d:
f4:0b:fb:a0:68:5c:48:df:1e:ac:07:af:3a:9b:0c:
9a:6f:da:08:6d:06:86:37:00:f2:83:9e:ad:6b:98:
9d:fd:fa:51:60:20:cd:0d:87:54:de:b8:4f:e5:42:
7c:86:2b:7b:be:9c:25:da:f2:68:e6:03:7c:8a:6a:
66:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38547
sbgp-ipAddrBlock: critical
IPv6:
2404:f400::/32
Signature Algorithm: sha256WithRSAEncryption
bd:1e:96:35:aa:c3:97:13:7d:40:46:4b:9e:cf:05:2c:1f:03:
79:7d:4d:24:fd:f1:73:b4:cc:bb:7a:dc:0b:07:48:df:a4:22:
af:79:35:f9:9b:29:65:f9:7f:85:70:c6:a4:9b:2d:0b:1f:23:
5d:6e:a7:71:b3:a9:72:7d:f9:39:76:c5:64:e4:f5:ce:5b:21:
3d:a7:a3:21:72:3f:2f:0d:5c:6e:d3:a3:fa:85:6e:42:bb:cf:
58:be:28:bd:e0:40:e0:18:81:94:2d:3c:9e:10:67:75:e0:dc:
72:5b:cb:df:29:40:fc:6a:fb:f9:a2:d8:6c:f8:a7:c1:e2:30:
98:4f:fb:8a:bb:eb:6d:14:42:d2:5a:98:e8:f4:31:2e:b2:36:
36:38:57:46:bb:d4:4d:88:84:06:dd:9d:a2:e6:e8:1f:6c:77:
c7:a1:a7:5b:51:83:98:fa:eb:a2:96:e3:0a:79:0a:70:fc:63:
73:bc:bf:45:52:95:ef:6f:a7:02:a9:f7:4f:92:7a:ed:89:6e:
07:9d:ad:ac:b9:1c:b6:72:69:09:f8:0e:f5:bc:ba:d6:c3:b9:
be:39:50:69:78:93:d1:98:f9:99:3c:47:4b:84:53:e6:1b:5b:
74:ed:6a:bc:86:a6:ab:c6:c2:f3:6e:1a:6d:f8:00:5a:b4:08:
38:07:bd:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:16:42 2025 by rpki-client