Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer
File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer (raw, json)
Hash identifier: ZyAi13WIElt6CVHPOK4Q9ui12apHjgvdlb7GrvVwiPY=
Subject key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023713
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 11 Mar 2025 21:20:45 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 138633
IP: 103.135.98.0/23
IP: 2404:79c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145171 (0x23713)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 11 21:20:45 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91F8AC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e2:7c:77:6a:78:9f:be:f1:d6:52:21:75:3d:
5a:4e:23:e7:e7:d1:63:c1:13:da:81:2b:61:77:3b:
d0:ab:dc:72:11:31:24:f1:c3:1b:cf:f8:be:5e:b1:
69:e1:ee:a9:b6:40:5c:33:c0:a3:89:a5:73:29:0a:
a2:06:f2:75:2d:f0:77:ca:c3:f5:73:c4:2a:af:04:
b3:62:67:e7:12:86:f9:ab:f3:79:a4:a8:28:43:22:
30:b7:6c:12:2e:48:67:54:a8:62:f9:3f:61:22:5f:
89:2a:3a:5f:2a:80:b7:d8:f3:9c:c0:d1:73:f5:ef:
89:60:b7:5f:6e:b2:fa:fe:85:61:0a:d5:c9:e8:9c:
d3:c8:1d:a1:ac:b9:1d:4a:71:cb:79:bb:f0:d6:af:
36:a3:2f:3a:27:61:e8:df:25:0c:7c:69:14:1f:b6:
87:99:f4:50:d4:ec:56:c6:f9:b4:4a:e0:83:84:00:
8a:a6:7f:f7:17:2e:7b:09:a2:54:fb:d7:64:9d:5e:
9c:0c:61:f2:6c:c5:6b:f7:dd:7e:66:52:5f:9d:ee:
98:43:00:86:f7:83:78:1e:2f:1c:0d:33:39:87:ea:
c7:c9:8e:c3:01:53:32:aa:71:4b:ed:bf:59:10:e0:
8a:50:c0:34:8f:f8:09:81:cb:15:fd:11:94:5a:bc:
78:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138633
sbgp-ipAddrBlock: critical
IPv4:
103.135.98.0/23
IPv6:
2404:79c0::/32
Signature Algorithm: sha256WithRSAEncryption
0e:92:3e:40:9a:23:46:03:04:76:9a:0f:98:a7:fc:a1:1d:ea:
6c:50:ef:3e:83:90:c0:6f:b9:c8:50:d0:9e:86:1d:8e:e6:54:
b9:21:b8:2e:ed:10:40:5a:a1:c3:ab:f1:b9:bc:77:f7:7e:32:
8c:7c:67:52:4c:2f:32:65:bf:69:b1:07:b0:ad:5e:27:e2:b2:
33:1e:9f:db:74:7d:2e:29:70:36:fc:6c:4f:2e:a6:3d:0d:4a:
18:72:ae:d6:43:73:a9:a8:d6:da:4f:44:27:bf:4a:96:80:8a:
86:26:ab:71:7e:b0:73:58:a8:12:a6:98:bc:1f:da:7c:7a:2d:
5c:33:03:dc:3e:30:fc:1e:65:62:10:e2:98:b7:1b:33:d7:33:
88:a4:24:50:82:6d:66:b4:5b:87:1e:cd:0a:27:af:ca:e1:0d:
84:8e:f4:e3:90:4d:d3:87:b0:ca:89:5c:e4:48:fd:1a:84:12:
f6:f1:14:a1:e7:35:44:85:eb:94:9f:b6:3f:be:01:62:4f:3e:
75:62:bd:43:b0:a1:19:48:c2:cc:72:6f:36:11:a4:f9:61:b5:
3f:95:ab:9f:50:5a:da:32:f0:4a:cb:f2:51:b7:d8:f2:37:ec:
9e:c8:53:ed:d2:60:ee:8f:56:46:fd:fd:b1:27:77:eb:df:3f:
e4:8a:5e:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:11:43 2025 by rpki-client