Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/akWKsPxWKCkzGD1GgFG_xQeRFjI.cer
File: akWKsPxWKCkzGD1GgFG_xQeRFjI.cer (raw, json)
Hash identifier: uaRF+N2i4iGB4A9dTXbMdO6hCGZwN/29zhP01/Iafgo=
Subject key identifier: 6A:45:8A:B0:FC:56:28:29:33:18:3D:46:80:51:BF:C5:07:91:16:32
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0223EB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CCA92/999E8EAC87BE11EFBC41C268C4F9AE02/akWKsPxWKCkzGD1GgFG_xQeRFjI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CCA92/999E8EAC87BE11EFBC41C268C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Dec 2024 19:58:41 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 152144
IP: 210.87.106.0/23
IP: 2401:5760::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140267 (0x223eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 20 19:58:41 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91CCA92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c4:4b:09:a3:13:19:22:6c:c1:a4:45:2f:71:
39:fb:fc:9e:15:97:0a:6e:4d:88:c8:29:03:69:b9:
54:9a:96:e4:21:c1:13:a4:b1:56:21:b6:3b:68:e2:
42:08:b5:33:40:d8:20:42:f5:ea:c6:bc:e1:a0:02:
72:56:1d:e0:a2:c3:5e:31:cf:aa:15:d2:23:b0:f6:
2e:8f:4d:43:1e:d9:60:a1:7c:c5:b4:c3:9d:c3:17:
df:7d:45:17:73:fc:75:5b:4d:5d:b4:db:61:17:de:
f5:7f:42:4d:1c:56:48:fd:22:82:04:40:4b:ca:a9:
11:df:51:b9:d8:1d:f2:9c:d6:3f:fa:4a:c0:be:19:
61:eb:a4:80:47:53:01:d5:e7:5a:3a:6d:19:2f:91:
49:8d:f0:b1:ca:df:39:4c:25:79:03:32:47:7c:a8:
6c:45:67:36:be:b1:75:05:79:bf:e7:69:d9:df:fc:
83:7f:df:ba:b4:cd:7d:4f:e2:c2:51:88:e5:3a:f6:
d8:13:de:7b:12:ed:91:70:12:50:19:71:cf:73:ad:
ab:99:58:a5:0b:2a:c1:5a:e3:55:ed:be:91:4d:d2:
0b:66:f0:0c:60:7e:de:a4:dd:a1:3c:71:59:5a:19:
a3:7f:d7:c2:da:f6:f0:24:16:f1:47:2c:cb:a5:96:
b9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:45:8A:B0:FC:56:28:29:33:18:3D:46:80:51:BF:C5:07:91:16:32
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CCA92/999E8EAC87BE11EFBC41C268C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CCA92/999E8EAC87BE11EFBC41C268C4F9AE02/akWKsPxWKCkzGD1GgFG_xQeRFjI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152144
sbgp-ipAddrBlock: critical
IPv4:
210.87.106.0/23
IPv6:
2401:5760::/32
Signature Algorithm: sha256WithRSAEncryption
20:0a:ec:9b:b8:c7:ea:93:56:de:17:a6:f5:4e:df:cb:93:5b:
5d:75:53:ea:08:3f:a2:6d:d5:05:9f:b5:c0:32:4b:d5:25:bf:
fa:ee:a6:3a:17:2c:4a:89:5f:1f:4d:77:5e:71:a7:93:79:43:
1d:e8:be:d0:e7:0a:a2:22:02:33:20:fb:0a:90:72:e9:92:c8:
be:2d:90:99:7d:cd:8f:1c:b9:58:a7:0c:eb:58:bd:38:90:1e:
34:47:b9:80:42:a6:af:b5:61:ca:42:a1:57:96:46:0b:0b:20:
96:0c:10:f1:23:b0:67:6e:47:96:7f:79:91:bd:30:8f:8b:a4:
fa:3a:bf:c6:c6:98:80:f4:6f:d8:44:c8:18:8f:fe:89:2a:b7:
30:11:13:a9:af:ed:0b:f9:7a:49:90:4c:ac:ec:fc:a3:8a:ef:
f3:76:c3:d0:b4:bb:57:33:c0:fc:44:30:fb:54:30:b4:2e:a7:
24:ce:c5:26:9a:9b:91:22:c1:d5:a8:b6:92:db:16:3a:ac:3e:
fb:ac:4b:0e:49:e1:5b:58:c6:1c:5d:9c:ad:36:43:88:aa:43:
63:1b:e9:b6:31:b7:2f:f9:81:82:a5:f3:e1:2d:e8:47:60:ba:
d5:5b:f0:64:89:33:37:3b:69:16:30:44:df:92:01:d4:d1:e8:
ce:4c:87:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:12:34 2025 by rpki-client