Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer
File: YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer (raw, json)
Hash identifier: XhWInvsMV9j2FzCryTaj5lzpxJVedwWpcwAtiShyYTQ=
Subject key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023B5D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 31 Mar 2025 23:48:15 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 4643
AS: 4778
AS: 4794
AS: 4804
AS: 7474
AS: 9243
AS: 9250
AS: 9252
AS: 9257
AS: 9261
AS: 9279
AS: 9426
AS: 9438
AS: 9447
AS: 9473
AS: 9477
AS: 9480
AS: 9550
AS: 9553
AS: 9564
AS: 9624
AS: 9626
AS: 9668
AS: 9672
AS: 9682
AS: 9746
AS: 9932 -- 9933
AS: 9983
AS: 9985
AS: 10115
AS: 10119
AS: 10128
AS: 10134
AS: 10142
AS: 10150
AS: 10218
AS: 10221
AS: 10237
AS: 17461
AS: 17662
AS: 17719
AS: 17722
AS: 17738
AS: 17757
AS: 18102
AS: 18191
AS: 18208
AS: 18213
AS: 18430
AS: 23895
AS: 23909
AS: 23968
AS: 24340
AS: 24510
AS: 37931
AS: 38214
AS: 45206
AS: 45228
AS: 45623
AS: 56084
AS: 56104
IP: 1.44.0.0/16
IP: 59.154.0.0/16
IP: 61.88.0.0/16
IP: 119.225.0.0/16
IP: 123.102.0.0/16
IP: 124.19.0.0/17
IP: 125.63.128.0/17
IP: 202.2.56.0/22
IP: 202.139.0.0 -- 202.139.191.255
IP: 203.2.75.0/24
IP: 203.10.64.0/21
IP: 203.13.96.0 -- 203.13.143.255
IP: 203.16.64.0/18
IP: 203.17.138.0 -- 203.17.143.255
IP: 203.22.136.0/21
IP: 203.29.192.0/21
IP: 203.29.204.0/24
IP: 203.29.206.0/23
IP: 203.94.128.0/18
IP: 203.110.248.0/21
IP: 203.202.0.0 -- 203.202.191.255
IP: 210.0.0.0/19
IP: 218.185.0.0/17
IP: 220.101.0.0 -- 220.101.191.255
IP: 2405:9000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146269 (0x23b5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 31 23:48:15 2025 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91514B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ea:0b:54:d0:95:cb:cf:7a:42:e8:e6:a5:e3:
ef:aa:b7:af:64:33:49:35:92:6d:38:74:a7:e0:9b:
13:ec:7c:69:17:e5:e1:59:ea:d3:48:ba:8f:b8:1d:
0d:8e:c1:42:f4:80:e0:29:ed:ea:48:0b:78:52:d4:
51:73:4c:8b:0f:c4:b3:0b:1c:90:41:4b:7c:c1:e1:
c9:06:7f:47:33:7d:5d:aa:fc:0e:9e:b8:57:34:3e:
d3:fe:66:79:45:d4:a6:bd:6d:53:c8:23:c3:a0:95:
8a:43:43:3a:bc:14:75:35:55:b7:df:69:95:56:28:
31:b7:a5:aa:80:48:3b:55:f4:84:c2:44:23:82:8c:
99:7a:a0:7e:a4:3f:23:fa:d3:fa:2f:c3:6a:5e:ff:
59:60:ba:74:46:51:83:ca:4f:86:d0:12:e7:81:00:
ce:01:99:98:c5:15:67:9b:b6:c4:31:da:1e:bd:7b:
4d:3c:e1:fe:3c:89:b8:a4:eb:a9:64:86:e5:e1:c9:
4f:b9:c0:a7:ec:89:97:db:2e:a6:91:76:39:08:16:
cb:12:c9:49:87:2a:e7:50:13:41:d5:ab:ba:c9:09:
e9:41:e6:dd:2b:e1:37:30:8c:16:8f:1f:34:8f:bb:
6a:1d:1c:11:20:f9:a5:37:33:e0:08:ef:c4:ca:dd:
e4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4643
4778
4794
4804
7474
9243
9250
9252
9257
9261
9279
9426
9438
9447
9473
9477
9480
9550
9553
9564
9624
9626
9668
9672
9682
9746
9932-9933
9983
9985
10115
10119
10128
10134
10142
10150
10218
10221
10237
17461
17662
17719
17722
17738
17757
18102
18191
18208
18213
18430
23895
23909
23968
24340
24510
37931
38214
45206
45228
45623
56084
56104
sbgp-ipAddrBlock: critical
IPv4:
1.44.0.0/16
59.154.0.0/16
61.88.0.0/16
119.225.0.0/16
123.102.0.0/16
124.19.0.0/17
125.63.128.0/17
202.2.56.0/22
202.139.0.0-202.139.191.255
203.2.75.0/24
203.10.64.0/21
203.13.96.0-203.13.143.255
203.16.64.0/18
203.17.138.0-203.17.143.255
203.22.136.0/21
203.29.192.0/21
203.29.204.0/24
203.29.206.0/23
203.94.128.0/18
203.110.248.0/21
203.202.0.0-203.202.191.255
210.0.0.0/19
218.185.0.0/17
220.101.0.0-220.101.191.255
IPv6:
2405:9000::/32
Signature Algorithm: sha256WithRSAEncryption
5f:0b:27:8c:e6:f2:41:1c:04:27:32:92:ee:2d:3f:da:7f:58:
d2:14:2f:33:b6:f8:a0:2b:4a:bc:91:c4:a1:eb:6c:07:95:f2:
b8:c0:e6:ec:7d:13:c0:db:a2:c4:02:65:d5:5a:8c:a4:b2:06:
ac:90:da:55:c7:93:61:df:08:e8:e9:dd:ce:cf:66:fc:66:e8:
ff:d4:f5:22:6c:84:56:98:34:62:66:08:0f:b6:0d:4b:3a:97:
09:58:d1:6d:fa:92:91:13:d5:d0:ae:51:3e:e1:59:9d:c0:05:
d4:b7:b6:ed:68:44:f6:81:86:14:67:1f:c5:a5:63:c4:27:c4:
c0:f5:33:df:53:a3:90:c4:9d:ce:da:af:90:1d:c3:a1:a1:9a:
d5:c8:04:72:01:6b:32:d1:6d:88:48:06:93:f7:b9:9b:f7:3a:
d7:b8:13:b7:69:fb:8e:e5:68:95:77:c6:e5:ce:62:d8:dd:2a:
f0:f0:ea:f6:a3:2e:74:d2:3c:6b:87:3a:4e:19:e8:99:dc:7b:
06:dc:d2:c4:40:f3:eb:61:89:29:c9:01:27:9f:96:bd:33:de:
d0:0e:03:56:af:1e:2f:49:67:be:24:73:65:22:4f:03:3e:5f:
b1:11:2f:a2:b3:7a:6a:b4:75:41:37:89:8b:81:a0:e5:1c:b9:
6b:55:2c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:10:17 2025 by rpki-client