Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQwWqX7kC4mmTLMfYqmaVjAILcM.cer
File: aQwWqX7kC4mmTLMfYqmaVjAILcM.cer (raw, json)
Hash identifier: raVkJmT4qGt7/XHLU86Yt0VvcD4iKrPPBadisSVGXh4=
Subject key identifier: 69:0C:16:A9:7E:E4:0B:89:A6:4C:B3:1F:62:A9:9A:56:30:08:2D:C3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02353C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916763E/85795FECF90111EF9C24C812C4F9AE02/aQwWqX7kC4mmTLMfYqmaVjAILcM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916763E/85795FECF90111EF9C24C812C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Mar 2025 14:04:06 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 147065
IP: 103.174.8.0/23
IP: 2407:f7c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144700 (0x2353c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 4 14:04:06 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A916763E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1c:0e:9b:71:60:a4:01:e1:01:3d:31:8e:1d:
e4:0b:e8:d6:f8:1d:91:fb:5a:a1:5b:31:5d:ec:e6:
08:3d:39:f4:5e:fa:f1:6e:24:9f:ab:0b:3f:d5:47:
9f:cc:cc:7c:5f:7d:c8:37:fb:8e:06:14:5b:28:32:
f3:10:e6:d8:f9:16:12:89:dc:63:9c:38:da:a0:73:
fa:9e:fb:f1:b5:e2:80:64:ab:36:7a:5e:46:cb:63:
51:a4:b0:2c:5d:20:28:26:10:5f:eb:b8:18:a0:0e:
31:eb:54:d9:e4:fb:db:c8:82:f5:a2:9c:0a:b8:83:
e6:a0:17:5b:09:03:9e:06:55:0f:ea:e3:44:b5:1b:
cd:1a:b5:e9:69:75:28:2a:ee:64:81:76:04:24:03:
54:c8:c3:95:9b:3a:c1:b2:d1:c9:e4:4b:a8:34:6e:
b1:22:44:e0:de:8e:25:01:0d:42:e2:47:6f:a5:aa:
b6:cd:a6:39:b9:ce:35:66:25:1c:cb:00:d3:f7:c9:
00:4b:8b:74:fd:1c:5d:a3:04:f4:f1:3f:64:fd:e9:
cc:c5:b0:46:22:b7:28:b4:ec:67:55:1e:c8:1a:68:
f8:28:0d:2b:95:0f:8e:a6:04:8a:5c:6f:09:e6:d9:
74:2c:59:be:28:5a:ea:26:6e:3b:c4:2c:d4:d5:ae:
1a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:0C:16:A9:7E:E4:0B:89:A6:4C:B3:1F:62:A9:9A:56:30:08:2D:C3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916763E/85795FECF90111EF9C24C812C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916763E/85795FECF90111EF9C24C812C4F9AE02/aQwWqX7kC4mmTLMfYqmaVjAILcM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147065
sbgp-ipAddrBlock: critical
IPv4:
103.174.8.0/23
IPv6:
2407:f7c0::/32
Signature Algorithm: sha256WithRSAEncryption
32:a3:8c:57:c9:cd:f6:56:8e:4a:3a:6b:a9:a8:f3:7b:16:f6:
dc:fd:0a:30:3d:e0:e2:3b:13:59:de:ba:f1:05:35:51:a2:65:
f5:d9:be:f5:12:a7:ca:a9:c7:37:77:de:8d:ee:97:78:d4:f3:
e1:a1:e2:2a:f6:c9:58:10:84:0a:b2:fd:7a:27:62:23:be:d8:
fc:72:78:ba:5d:42:ac:c6:b1:01:a4:9b:10:5e:f2:1d:cf:72:
b0:df:5c:7e:cc:d8:8e:e6:f9:d2:ae:4a:8a:6f:9a:00:71:65:
a4:18:b7:e4:01:9f:7d:a5:bb:4a:09:94:4c:7a:b7:df:4c:33:
51:06:b7:96:88:0a:5f:5a:8d:99:12:a7:ee:d4:c8:fa:a6:bd:
08:7b:a5:f3:13:a0:5a:9f:03:dd:b5:67:19:35:af:58:4f:05:
cf:45:19:a4:d1:25:95:c4:e9:61:3b:6a:45:88:6c:a2:da:f7:
99:7a:7e:46:1a:05:90:53:58:21:67:3e:68:12:e3:62:8a:3c:
28:e9:be:78:ac:3a:83:14:c1:53:dd:fd:ec:82:14:72:23:51:
85:fa:3f:89:bb:74:99:bc:18:5e:61:97:95:6b:d2:8c:e2:cb:
19:8d:3c:5a:b4:49:44:bc:0e:bb:94:c1:44:ab:3a:04:d3:3b:
26:7c:b8:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:11:48 2025 by rpki-client