Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRH-79yX09DgVRW7QMF431FGqcQ.cer
File: dRH-79yX09DgVRW7QMF431FGqcQ.cer (raw, json)
Hash identifier: JNt8JFnDTQkNvig2pkLyjpH6Gw5KQDIE79lnDSriQIU=
Subject key identifier: 75:11:FE:EF:DC:97:D3:D0:E0:55:15:BB:40:C1:78:DF:51:46:A9:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0230FC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9131F8A/4127CE3EA1F811E9A1883F17C4F9AE02/dRH-79yX09DgVRW7QMF431FGqcQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9131F8A/4127CE3EA1F811E9A1883F17C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Feb 2025 13:18:14 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 55420
IP: 27.0.4.0/22
IP: 103.29.198.0/24
IP: 163.61.18.0/24
IP: 2401:2200::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143612 (0x230fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 13 13:18:14 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9131F8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:17:71:e0:0d:13:54:f3:d1:d9:d7:24:4c:5e:
8c:c6:fd:ab:1f:6b:58:83:88:f0:44:56:44:10:7f:
07:c4:a7:4e:0c:70:6f:0e:2c:01:40:49:18:12:d5:
1a:77:95:5f:8d:0a:03:40:a7:8d:8b:ce:6c:f5:72:
72:b1:10:12:bf:4d:a0:fc:54:89:b0:2b:d6:c9:f5:
b4:f5:a9:d5:3d:1c:17:9d:09:28:02:eb:e7:42:bc:
a0:ec:de:12:67:6c:6d:eb:94:88:18:1f:c4:4a:68:
f6:e8:3b:4e:6b:0a:b9:24:98:99:ae:3d:31:17:83:
fd:a0:6c:84:ee:93:94:e0:1a:dc:8c:06:8d:f9:92:
a2:a1:f4:ce:45:36:76:47:2e:d0:ef:ac:3d:5c:ab:
7d:5c:2d:5a:0b:63:dc:64:c6:fa:5e:96:a6:dc:cf:
de:29:e9:01:7c:91:83:52:f9:74:aa:a9:a0:e4:66:
d0:f8:a2:a1:45:13:b5:e7:2c:1b:7a:79:63:96:85:
ff:99:c6:9d:64:0a:5d:2c:ec:87:8c:c3:7e:bd:c1:
b6:76:7b:a3:ff:3f:a2:28:6a:0d:99:1f:96:20:d1:
94:4e:9b:68:37:a3:97:fe:e1:16:6a:80:2d:5d:ee:
6a:73:d4:83:06:6d:8f:84:fd:13:78:75:5c:ca:6c:
91:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:11:FE:EF:DC:97:D3:D0:E0:55:15:BB:40:C1:78:DF:51:46:A9:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9131F8A/4127CE3EA1F811E9A1883F17C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9131F8A/4127CE3EA1F811E9A1883F17C4F9AE02/dRH-79yX09DgVRW7QMF431FGqcQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55420
sbgp-ipAddrBlock: critical
IPv4:
27.0.4.0/22
103.29.198.0/24
163.61.18.0/24
IPv6:
2401:2200::/32
Signature Algorithm: sha256WithRSAEncryption
00:ed:86:c5:a4:52:03:fd:63:af:f5:48:eb:28:79:da:b8:33:
05:dd:a6:fe:15:ab:56:b7:51:9a:c4:f4:d0:36:34:05:c3:a5:
3a:4a:d4:10:1c:3a:b5:b4:92:dc:b1:a7:c3:7e:8e:64:97:95:
20:6c:5c:6a:d5:a2:74:6c:71:7d:af:96:f0:a5:94:9d:00:2c:
5c:62:cf:a0:75:b4:c0:6a:5e:80:ba:a1:3b:2a:72:95:46:58:
f0:1c:1e:af:20:c9:1f:db:2b:5d:ff:94:bb:bf:c8:b7:ca:7e:
83:2d:4b:a4:84:79:3d:3f:c1:6e:17:89:9c:0b:cc:91:3f:ab:
3b:65:ed:60:8f:82:a4:6b:96:04:c5:ce:f6:f7:58:6c:fd:2d:
3c:52:26:c1:a0:1f:f8:9a:2d:8c:02:6a:b7:f1:d3:b1:c8:20:
83:07:ee:68:d8:8d:48:58:de:ed:ef:e2:3e:97:30:09:54:68:
a6:19:51:75:c4:6a:16:c6:59:ff:e5:b7:79:3e:44:16:99:2a:
c6:10:d3:84:b2:2c:23:13:9b:c4:c2:ff:60:9a:5e:82:f5:07:
0a:d7:05:4c:32:2d:06:cc:a2:b3:89:48:a2:5f:12:c7:62:34:
3f:5e:44:e4:75:74:c1:4d:9d:20:87:46:fd:68:cb:e2:01:bc:
2f:60:dd:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:12:46 2025 by rpki-client