Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T191psKYj1i2AwEqjbRFofN9XXI.cer
File: T191psKYj1i2AwEqjbRFofN9XXI.cer (raw, json)
Hash identifier: ciIOSxc3Ke1HLqGowIMVq1cVA3Zo2omerOM1DhW9btg=
Subject key identifier: 4F:5F:75:A6:C2:98:8F:58:B6:03:01:2A:8D:B4:45:A1:F3:7D:5D:72
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023A57
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 28 Mar 2025 06:54:09 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 152740
IP: 117.18.106.0 -- 117.18.109.255
IP: 117.18.112.0/22
IP: 117.18.119.0 -- 117.18.122.255
IP: 202.181.154.0/23
IP: 202.181.160.0/22
IP: 202.181.170.0 -- 202.181.173.255
IP: 202.181.178.0 -- 202.181.187.255
IP: 202.181.216.0 -- 202.181.218.255
IP: 202.181.220.0 -- 202.181.224.255
IP: 2401:dba0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 17:46:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146007 (0x23a57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 28 06:54:09 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A914C3FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a0:0e:c5:d9:ef:20:3f:d8:54:11:cd:13:35:
73:f9:bb:5b:22:2c:92:0e:13:8f:50:cf:b3:71:e4:
2d:c2:57:8b:12:e3:6e:d0:2e:f8:0c:bc:76:3d:14:
0d:c6:05:ff:39:f1:e5:fd:20:45:9f:c3:0b:2c:57:
a3:e3:88:06:58:15:e7:12:3f:9f:ca:e8:f2:2b:0a:
d9:8f:3b:2d:88:a4:bd:67:20:c0:aa:3b:ea:db:1b:
4e:b8:e3:62:58:12:eb:06:d3:4c:de:88:65:b2:98:
18:09:67:2e:38:c8:1a:e4:86:f6:d9:7e:22:30:d5:
b9:b4:73:8c:9b:c4:9b:fc:9f:c4:02:9e:a3:46:9c:
65:8e:31:b1:f9:4b:93:35:18:67:49:f2:10:c4:8a:
2d:fb:b9:39:5d:08:f1:63:43:18:d9:c4:8b:9d:6c:
3c:80:a8:61:d9:d1:1b:d2:20:42:db:e8:49:0e:a2:
b4:4a:12:4f:a6:6c:50:fb:ed:fb:19:7e:96:28:1a:
1c:c9:8e:76:e8:30:69:5b:37:54:82:89:fe:a5:93:
13:98:cd:4e:df:24:45:56:99:ee:c0:de:64:37:37:
c6:0c:1f:a2:26:5f:0e:a8:56:fd:93:c1:34:f1:6b:
c9:1e:cc:78:94:04:eb:a1:c1:8c:76:72:80:2a:b7:
4b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:5F:75:A6:C2:98:8F:58:B6:03:01:2A:8D:B4:45:A1:F3:7D:5D:72
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152740
sbgp-ipAddrBlock: critical
IPv4:
117.18.106.0-117.18.109.255
117.18.112.0/22
117.18.119.0-117.18.122.255
202.181.154.0/23
202.181.160.0/22
202.181.170.0-202.181.173.255
202.181.178.0-202.181.187.255
202.181.216.0-202.181.218.255
202.181.220.0-202.181.224.255
IPv6:
2401:dba0::/32
Signature Algorithm: sha256WithRSAEncryption
d3:a7:83:ea:1d:93:d2:7e:ca:29:38:94:8c:71:b4:85:d3:a6:
1c:da:c2:ff:4b:d3:2e:64:c7:15:cf:13:ff:9c:29:37:9b:3d:
e5:05:06:f9:ff:42:7b:78:7a:1f:9e:9a:f4:f6:77:fc:84:6e:
27:f6:77:07:89:31:1a:8a:bf:eb:8e:25:3b:da:c6:d3:8e:3d:
48:63:c8:79:e4:4c:ff:d8:6a:05:bb:12:d0:62:81:86:0b:a6:
23:26:36:a8:7a:30:90:2f:01:74:f7:1a:78:ed:3c:15:f0:a2:
4d:0c:ed:13:3c:aa:cb:18:1e:50:2f:c4:b8:f2:da:36:c7:78:
b7:0a:69:b1:96:56:46:bd:05:5d:14:c5:a0:a1:40:11:e3:04:
68:b9:bd:b7:fe:48:0e:cb:8f:b0:fa:7a:d6:c6:ce:31:a6:d5:
e8:6e:2d:ea:80:5e:d9:85:78:ca:db:00:a5:78:b4:3d:ca:84:
3d:94:f9:69:d7:a1:d8:4b:79:47:53:e8:28:5a:6a:20:aa:f9:
b3:d7:8e:e4:5c:46:cf:72:f4:7b:73:d9:75:33:56:b0:1b:4c:
88:73:52:69:b9:4b:36:69:a5:a5:17:c7:45:7e:4a:1e:b2:b0:
59:af:76:68:04:21:43:37:83:0e:f8:e1:bc:35:f8:3b:21:73:
61:08:d0:f0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:13:19 2025 by rpki-client