Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer
File: ghhST3oWtYwNm3OUAxk5fuT8pv0.cer (raw, json)
Hash identifier: RwetcQemQV92+dMRe8RF3fBygWWp4kBcEyjCLEV6DKk=
Subject key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022637
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Dec 2024 17:46:46 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 103.145.58.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 17:46:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140855 (0x22637)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 31 17:46:46 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9179EE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c8:78:a3:4a:f5:b6:34:64:a7:7f:00:c8:76:
04:82:2b:bf:ff:1b:a4:ef:a0:9e:05:2e:83:26:a8:
8f:04:b3:a6:fd:86:62:f4:95:8c:f8:df:a4:51:ec:
23:1c:30:d3:f9:9e:ea:2a:a7:a9:0e:10:72:86:3f:
a7:df:ea:a0:1b:d6:d7:5c:da:d1:b6:8c:32:4f:3c:
a1:5a:b6:9d:2a:7b:4e:1a:47:f4:d9:3a:4e:bf:2e:
bc:c9:69:2d:20:89:6f:82:9d:7c:4c:45:d8:39:22:
26:c0:a5:5a:45:69:b1:f3:d7:02:d6:68:da:c8:2f:
7f:34:89:89:1a:cc:4f:19:a0:e2:e1:50:65:c6:fc:
0a:46:27:18:9d:28:f4:87:7d:e6:14:65:22:af:6b:
4a:90:e0:63:1f:70:f7:ea:ec:ee:e7:ee:cb:8b:d2:
a9:50:a2:d2:fe:36:fe:d3:67:1f:a6:49:b5:a8:dc:
1f:23:43:a0:70:ec:d7:7c:74:e8:0a:8a:06:05:b5:
19:c1:d8:15:53:e9:f6:b0:d3:1c:2f:ce:0b:37:b0:
0d:b3:24:5e:1d:1f:99:32:ca:ef:56:d1:57:24:94:
92:ae:6b:bb:3a:1a:f0:3c:4d:b0:00:57:cf:f0:9a:
14:da:05:60:94:66:ad:38:f4:d4:5f:dc:0a:de:19:
c6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.145.58.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:96:e7:5b:e5:17:f1:90:92:65:2c:72:07:20:c0:0e:77:22:
59:1d:f6:18:7d:ae:a0:61:7e:97:dd:e7:f4:c7:e6:57:0c:83:
11:04:bf:56:fa:b2:20:59:0c:08:a4:e6:84:67:e7:05:f7:bd:
69:e2:d1:c9:84:60:97:b6:40:c2:4e:7d:c6:05:50:6b:7c:87:
12:77:1d:6f:8f:73:c0:17:be:a1:48:39:53:1c:18:94:f2:ff:
f7:ff:93:00:49:8e:76:e4:14:ee:db:93:1e:1a:2a:6f:8b:cc:
24:73:df:fa:f4:51:f6:99:ae:2c:bc:79:8a:49:ee:83:83:22:
e4:39:c2:79:bd:0a:0d:81:88:5d:e1:e5:97:6f:ac:20:d2:70:
b7:31:ae:03:f5:ea:d8:fc:d6:cd:4e:3d:a4:f4:1a:26:9d:14:
cb:8d:10:99:9b:35:6e:39:37:b9:d7:e0:b8:53:55:f7:43:3f:
8c:b2:57:c6:73:de:58:70:af:72:7f:a5:13:f5:49:ba:07:39:
ce:cc:fe:e0:a6:b4:27:5d:00:f3:75:ec:51:50:35:3a:0a:d3:
29:f5:a5:ab:30:3d:06:98:44:c0:a6:d2:53:78:0d:78:cc:6b:
4b:05:d0:c0:a1:42:88:83:0e:42:fb:8d:e9:90:a9:e6:0b:a2:
ed:6a:7a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:42:05 2025 by rpki-client