Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwZsuF9biPgjeA1flmJfQ4VIG78.cer
File: nwZsuF9biPgjeA1flmJfQ4VIG78.cer (raw, json)
Hash identifier: RGdCj0RnaatrZj7LH1bV5j/1KOKLuACeV2lmW80qBl8=
Subject key identifier: 9F:06:6C:B8:5F:5B:88:F8:23:78:0D:5F:96:62:5F:43:85:48:1B:BF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023172
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919DD44/D8E31E763A1E11EBAE4ED41AC4F9AE02/nwZsuF9biPgjeA1flmJfQ4VIG78.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919DD44/D8E31E763A1E11EBAE4ED41AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 15 Feb 2025 15:35:53 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 141458
IP: 103.160.16.0/23
IP: 2001:df2:7c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143730 (0x23172)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 15 15:35:53 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A919DD44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:11:fe:6d:ee:34:ed:eb:e0:7a:ba:1f:90:8c:
14:db:18:f0:2a:8f:6b:0c:e6:e2:db:46:13:6c:58:
2f:3e:63:9d:f8:74:dc:73:e7:a8:79:62:f6:07:41:
bf:ef:2c:59:6c:d3:8f:6b:72:1e:59:37:ec:53:3e:
ee:54:35:67:f3:fd:19:c4:22:28:4d:07:2a:1f:db:
13:82:42:bc:c4:3c:44:f0:d9:2b:74:35:d9:d2:74:
9c:13:a5:60:0a:e2:2f:5c:d8:59:b4:1b:b5:29:18:
48:d2:77:1c:da:41:b1:2f:43:25:c3:0e:16:5f:f0:
8f:bf:55:1c:b8:c6:1b:61:ed:76:78:d3:d8:f0:03:
84:09:97:8d:5d:49:82:30:6d:77:21:fb:c5:76:73:
e1:a9:95:3f:97:70:af:4e:1b:71:8e:b1:d1:8c:15:
07:84:c8:ea:84:f0:5b:13:24:25:53:37:d0:20:07:
5d:03:8d:13:37:dd:b9:ee:1b:a5:4b:3f:58:0d:78:
1a:a2:d1:4c:34:bf:b3:21:3f:3f:a4:cb:29:f8:fd:
94:77:ec:57:49:c0:2f:dd:e8:23:d0:d8:46:eb:f6:
b5:2e:10:05:05:45:34:fc:b8:43:55:d1:fb:89:97:
63:e7:4d:6f:6d:f5:ea:07:e7:cd:d4:50:e6:05:5a:
31:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:06:6C:B8:5F:5B:88:F8:23:78:0D:5F:96:62:5F:43:85:48:1B:BF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919DD44/D8E31E763A1E11EBAE4ED41AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919DD44/D8E31E763A1E11EBAE4ED41AC4F9AE02/nwZsuF9biPgjeA1flmJfQ4VIG78.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141458
sbgp-ipAddrBlock: critical
IPv4:
103.160.16.0/23
IPv6:
2001:df2:7c0::/48
Signature Algorithm: sha256WithRSAEncryption
05:e3:47:b3:8d:04:f5:1b:63:62:c7:22:06:86:79:3c:1a:c3:
11:46:d0:f6:d3:bf:eb:af:6d:bd:21:2e:75:63:77:ae:43:ca:
61:fb:22:77:d7:43:93:e6:8a:3c:6d:fe:eb:a2:9a:00:57:76:
62:5b:55:50:62:5b:72:60:eb:6f:5d:03:df:57:2f:86:b2:4c:
31:85:31:1c:37:76:74:f9:c4:38:19:d1:3c:8c:37:9e:02:27:
49:1b:4f:96:f5:90:45:cd:91:ef:a1:12:34:d3:33:30:a8:0f:
22:d0:e1:f1:0a:7a:da:39:94:fb:3a:80:f5:71:c1:07:ae:14:
bb:e2:b3:00:2e:d4:db:6a:b3:fe:58:90:33:35:ff:ba:9f:4c:
aa:57:a0:f8:1b:59:93:d6:4e:5d:92:02:52:0b:5a:0a:08:19:
67:4a:ea:e2:40:f2:11:6c:21:7c:26:91:2a:d1:97:7c:4c:94:
d8:75:42:e6:30:16:aa:ef:02:8e:79:93:fd:3d:33:f2:a8:e9:
76:cb:31:38:9e:40:23:d6:c5:c6:ea:fe:72:4e:a3:d7:63:fb:
84:9c:b8:1f:76:9e:ff:cc:3d:ba:10:c5:94:50:26:e1:08:68:
1d:ab:33:c3:25:97:57:48:54:2a:8a:b4:73:39:73:e0:e1:17:
c5:a0:4d:50
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:14:28 2025 by rpki-client