Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rwzf1J9d_yEleN7F2iHyHaCz-tI.cer
File: Rwzf1J9d_yEleN7F2iHyHaCz-tI.cer (raw, json)
Hash identifier: 1cMJFkpc5sF2h/4c4biZCnG9s1/1ND+Z7zx0MAfWrgo=
Subject key identifier: 47:0C:DF:D4:9F:5D:FF:21:25:78:DE:C5:DA:21:F2:1D:A0:B3:FA:D2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023838
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F2364/040566A884CC11EF84EE3E50C4F9AE02/Rwzf1J9d_yEleN7F2iHyHaCz-tI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F2364/040566A884CC11EF84EE3E50C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 18 Mar 2025 21:38:02 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 134172
IP: 45.248.84.0/22
IP: 103.224.80.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145464 (0x23838)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 18 21:38:02 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91F2364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ac:12:ca:e1:88:4c:25:5f:7e:6d:21:39:f8:
e3:8b:e9:ae:63:f1:21:41:43:c6:d7:3f:63:bc:a2:
ab:d5:96:dd:53:99:d2:be:51:1b:27:15:bf:46:0d:
e4:e5:6f:23:1f:f2:71:d4:11:c1:69:9f:db:88:20:
21:77:69:75:2c:ad:d3:58:ec:d5:3e:1b:13:d7:24:
a3:90:d6:6d:fb:2b:05:fa:80:d3:e3:73:1c:c3:42:
e5:17:f7:8d:1d:55:14:9f:93:79:86:a3:2c:5d:83:
0b:d4:6f:98:e2:f7:81:0f:ab:5b:84:9d:5e:55:c4:
98:f7:3f:bc:81:1a:c7:62:5d:f4:ff:f9:ff:64:d2:
13:de:85:ff:fb:85:6c:2c:79:77:50:63:4a:fe:b3:
74:ac:2a:f2:08:86:da:ec:a6:6d:c7:4d:3f:2e:3e:
ad:1b:06:cf:fe:8e:86:f0:f3:41:b6:37:89:5c:a7:
d9:c1:3b:71:a8:ac:28:44:52:ab:2c:2d:2e:47:be:
da:7d:61:1a:a4:eb:05:53:f6:73:63:a2:cf:1a:a9:
12:21:d0:33:5e:fb:d4:02:89:c4:53:9d:f0:bd:c5:
0c:11:97:2d:62:da:a4:56:96:f3:ef:51:eb:39:73:
08:dd:ab:42:65:65:1a:16:5f:1b:a2:90:4e:6a:50:
be:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0C:DF:D4:9F:5D:FF:21:25:78:DE:C5:DA:21:F2:1D:A0:B3:FA:D2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F2364/040566A884CC11EF84EE3E50C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F2364/040566A884CC11EF84EE3E50C4F9AE02/Rwzf1J9d_yEleN7F2iHyHaCz-tI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134172
sbgp-ipAddrBlock: critical
IPv4:
45.248.84.0/22
103.224.80.0/22
Signature Algorithm: sha256WithRSAEncryption
95:83:f9:87:3a:22:d3:83:33:48:40:ae:cc:50:6b:14:74:e6:
e6:2e:d5:14:1c:f8:98:b2:67:5b:60:0f:7d:f6:c3:2e:bf:c7:
2d:20:2e:0a:4d:11:5a:fd:93:31:59:d6:69:9a:ef:07:82:34:
bc:3b:4b:55:22:1d:66:8b:a8:b3:8c:62:39:30:c2:2c:e7:72:
67:e7:4a:30:76:0c:da:ca:14:cd:dc:4f:12:de:8e:bf:f9:1a:
8e:b3:53:cf:7d:10:27:31:f4:94:64:77:1c:a4:3a:5c:ba:b5:
0f:4f:32:65:c1:63:02:cb:1c:04:0e:d5:82:93:4c:b3:43:a3:
51:1b:19:c7:76:6d:8d:0d:e6:fc:41:a4:07:a4:a0:09:d1:79:
63:38:55:a3:68:e9:67:a0:28:0b:62:69:c2:57:cb:98:1e:64:
bc:02:4c:c0:cc:08:76:06:27:60:88:b8:43:fb:55:7b:1d:b3:
c3:6b:3c:99:c4:81:85:e7:cc:a7:5a:c9:36:49:68:ee:32:aa:
88:c1:3a:ab:94:18:10:a2:74:e9:5c:0e:3f:e3:44:22:81:37:
d8:8f:d8:35:2a:22:78:b3:f9:19:6d:6f:fa:3c:dc:92:18:b9:
0e:07:63:80:7d:16:b5:6c:c8:06:26:78:56:b7:09:ff:f4:27:
16:24:2b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:24:47 2025 by rpki-client