Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer
File: VFjEVinBBKqnpYcoaG-NHihyqSo.cer (raw, json)
Hash identifier: 9VGdNLfLLkrTNac8sLkepwVgNWtskgK6z7gTMNLTiTw=
Subject key identifier: 54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022925
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Jan 2025 15:03:14 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 136039
IP: 43.229.124.0/22
IP: 103.80.108.0/22
IP: 2400:50c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141605 (0x22925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 14 15:03:14 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9153C27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0c:f3:42:e5:92:73:e8:d9:dc:36:14:47:e7:
c9:ca:f6:38:82:37:7f:44:4a:ae:61:ee:07:96:67:
d2:96:e8:89:2b:4b:db:fe:7a:6c:a6:bd:48:41:fc:
96:ac:2a:c4:f7:75:ae:88:b8:4a:c5:53:5d:49:25:
d7:15:6b:e8:6f:d9:eb:d6:06:3d:66:04:ab:d6:25:
5b:7c:77:8c:53:f2:05:7f:5b:6c:b6:b9:1e:51:94:
ea:f3:05:2e:2c:a7:71:c7:bd:c0:64:b6:7c:39:aa:
a3:af:d6:11:bb:ce:fc:80:97:82:3c:4b:bd:16:50:
c0:8c:3a:07:42:ff:70:24:37:bd:3d:79:7c:e3:38:
ef:94:b2:f7:5c:dd:bb:e9:c4:5f:5f:59:01:10:d2:
42:a5:1b:99:72:51:f4:06:65:7f:d9:20:04:17:6b:
20:50:34:7b:05:c6:68:4d:98:00:1f:8a:e0:cc:34:
5d:63:b3:6e:96:55:b0:28:bd:c1:0c:98:52:1a:82:
de:07:c3:b7:44:54:4a:e8:77:c5:5d:66:8d:f7:d7:
9c:0f:1f:99:b8:bf:e0:5e:02:0c:22:a2:dc:aa:c4:
8d:2f:ef:a6:8b:99:36:85:47:08:d1:24:15:7e:ef:
29:bf:3b:f4:20:91:b0:2c:36:d0:f6:8f:95:8a:12:
b6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136039
sbgp-ipAddrBlock: critical
IPv4:
43.229.124.0/22
103.80.108.0/22
IPv6:
2400:50c0::/32
Signature Algorithm: sha256WithRSAEncryption
43:d0:33:16:fe:29:02:16:90:4f:55:4c:dc:1f:49:0f:66:2b:
82:be:69:98:45:b5:21:1a:cd:f4:3f:ec:f5:99:80:43:25:f8:
b1:04:3b:b5:2b:e1:f6:65:86:bc:99:fc:45:ad:0f:38:b5:85:
46:a0:2e:46:10:e2:9a:32:2d:f6:08:2b:16:91:6f:ec:dd:04:
9d:ad:83:a7:94:a5:e7:68:f1:23:ff:72:2a:8b:af:31:68:15:
d2:43:5d:b5:18:e1:20:b8:3d:e4:c8:b9:e5:92:52:86:1c:0a:
c3:6d:f0:bf:5b:c5:7f:8b:3a:06:a9:70:ba:0e:27:96:cf:7f:
d7:e8:d6:ea:c1:3e:bf:6c:76:35:a1:37:1f:da:48:3d:bb:4a:
0e:58:6b:61:37:d7:f6:51:fe:40:9f:1c:d7:a7:7e:67:9a:1e:
47:3c:3f:48:ac:e6:c9:44:34:cb:1d:72:81:64:58:d0:71:09:
09:fd:da:fd:e6:27:b2:42:63:7e:99:2b:b8:ed:43:d2:c5:c3:
04:fa:f0:9c:e0:ba:dd:d2:82:f9:f8:92:2b:4b:39:73:dc:75:
75:67:1d:a5:35:b7:61:bf:88:d5:4a:aa:a6:9b:e9:3f:f7:88:
6c:84:8d:d8:d5:fb:83:6c:05:0e:f2:35:f2:d2:7c:fb:f6:82:
50:2e:f2:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:16:44 2025 by rpki-client