Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer
File: UMP9EvajMVgZtSurzBmPsNv9QTo.cer (raw, json)
Hash identifier: K77/hw3pj1NX3nMnRHNbVzy4UvfZtLyp85wPDS3hgUw=
Subject key identifier: 50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023279
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 21 Feb 2025 02:05:39 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 138041
IP: 103.161.136.0/23
IP: 2001:df5:c580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 17 Apr 2025 14:26:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143993 (0x23279)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 21 02:05:39 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91CE616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c9:dc:e8:57:5e:b8:f0:d5:00:cf:70:b3:c3:
18:46:04:82:0f:09:98:d4:c7:50:4f:7a:cd:24:e4:
cc:16:41:ce:99:3a:5a:72:9c:0b:b8:4a:3b:2e:ba:
6b:83:29:11:bc:d0:bd:c7:7e:9e:ec:f2:f5:e2:bf:
da:a6:bd:86:bf:40:46:8f:e8:56:eb:2f:de:ea:fb:
6e:68:f0:b7:a7:28:a0:38:82:83:4d:8f:b1:9d:d0:
e7:01:0a:33:2a:94:98:59:5f:7e:e2:5d:9f:06:d8:
66:d6:9d:c8:04:2a:85:0e:3f:50:39:c2:bd:46:12:
4b:45:ac:c0:3c:bd:ed:4b:a2:d0:a8:78:c3:42:83:
53:3a:2d:33:bb:5a:97:56:28:db:bd:87:c3:84:b7:
11:cf:8a:57:34:78:1d:f9:42:b9:ea:9a:52:b3:19:
bf:17:e2:ca:7c:9b:0c:07:b4:50:3a:da:fe:46:36:
57:c1:b0:fc:0e:21:90:61:45:6f:1e:f5:25:eb:e7:
c0:6e:8d:59:87:aa:8f:be:ba:6e:d7:b7:cf:bc:68:
16:ad:ac:86:e0:f4:98:38:20:b2:72:93:a1:c9:88:
b9:36:39:66:6e:a5:2a:93:13:74:ff:7b:6c:eb:03:
6c:8b:e6:b9:f4:ea:e8:97:a6:92:4f:cc:c4:ab:39:
91:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138041
sbgp-ipAddrBlock: critical
IPv4:
103.161.136.0/23
IPv6:
2001:df5:c580::/48
Signature Algorithm: sha256WithRSAEncryption
7b:5f:db:68:14:f2:e3:48:33:3f:0b:f9:f9:70:14:98:6c:ce:
d0:74:3c:b1:a8:18:17:b5:07:ae:db:4c:09:16:3e:57:b8:25:
71:75:50:b4:fc:8b:80:8b:16:34:f9:95:54:4a:74:62:7f:d4:
5b:2e:8b:2d:0a:5e:38:8f:b2:85:c1:12:44:be:1e:ca:4b:99:
e5:40:7d:b2:98:7b:9b:22:d1:91:09:e9:5e:c6:b0:ef:bc:c2:
a7:70:84:17:b6:f0:8b:c3:62:d3:7c:5d:f7:e1:96:7a:ea:40:
e5:4f:d3:d7:54:85:18:c3:b6:f9:f0:01:b8:7b:8d:a5:06:48:
68:63:84:95:94:34:10:da:f5:fe:86:d4:53:6a:c7:49:28:aa:
45:0a:6f:a5:46:75:86:48:7e:e7:81:c8:60:4c:6d:aa:21:46:
b6:9d:77:c3:88:eb:52:b6:dd:df:60:b8:65:1d:93:e5:9d:21:
0c:1e:f3:85:26:23:27:51:bc:36:32:12:5b:38:b1:19:77:32:
09:01:64:1a:bb:d4:6d:cf:33:d1:cc:c6:ae:40:18:55:63:ba:
72:04:98:50:02:dd:f7:29:e8:fb:63:77:85:46:9d:68:a9:9b:
f6:91:2d:ed:56:33:b9:e6:cc:0c:dc:7b:a4:ff:71:60:64:3b:
68:98:42:75
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAjJ5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDIyMTAyMDUzOVoXDTI2MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0U2MTYxMTAvBgNVBAUTKDUwQzNGRDEyRjZBMzMxNTgxOUI1MkJB
QkNDMTk4RkIwREJGRDQxM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC6ydzoV1648NUAz3CzwxhGBIIPCZjUx1BPes0k5MwWQc6ZOlpynAu4SjsuumuD
KRG80L3Hfp7s8vXiv9qmvYa/QEaP6FbrL97q+25o8LenKKA4goNNj7Gd0OcBCjMq
lJhZX37iXZ8G2GbWncgEKoUOP1A5wr1GEktFrMA8ve1LotCoeMNCg1M6LTO7WpdW
KNu9h8OEtxHPilc0eB35QrnqmlKzGb8X4sp8mwwHtFA62v5GNlfBsPwOIZBhRW8e
9SXr58BujVmHqo++um7Xt8+8aBatrIbg9Jg4ILJyk6HJiLk2OWZupSqTE3T/e2zr
A2yL5rn06uiXppJPzMSrOZF7AgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUUMP9Evaj
MVgZtSurzBmPsNv9QTowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNFNjE2L0E3RTQyOTE2ODRBODExRUNCMjUwMDg3MUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDRTYxNi9BN0U0MjkxNjg0QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZh
ak1WZ1p0U3VyekJtUHNOdjlRVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhs5MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6GIMA8EAgAC
MAkDBwAgAQ31xYAwDQYJKoZIhvcNAQELBQADggEBAHtf22gU8uNIMz8L+flwFJhs
ztB0PLGoGBe1B67bTAkWPle4JXF1ULT8i4CLFjT5lVRKdGJ/1Fsuiy0KXjiPsoXB
EkS+HspLmeVAfbKYe5si0ZEJ6V7GsO+8wqdwhBe28IvDYtN8XffhlnrqQOVP09dU
hRjDtvnwAbh7jaUGSGhjhJWUNBDa9f6G1FNqx0koqkUKb6VGdYZIfueByGBMbaoh
Rradd8OI61K23d9guGUdk+WdIQwe84UmIydRvDYyEls4sRl3MgkBZBq71G3PM9HM
xq5AGFVjunIEmFAC3fcp6Ptjd4VGnWipm/aRLe1WM7nmzAzce6T/cWBkO2iYQnU=
-----END CERTIFICATE-----
Generated at Thu Apr 10 20:05:59 2025 by rpki-client