Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsnbTNbQn4pBqNKTHwsrZnuhqYM.cer
File: wsnbTNbQn4pBqNKTHwsrZnuhqYM.cer (raw, json)
Hash identifier: 86qZkXq85kmGIn6rh/N4mIXiVmASRdckur2Vkhx12Zw=
Subject key identifier: C2:C9:DB:4C:D6:D0:9F:8A:41:A8:D2:93:1F:0B:2B:66:7B:A1:A9:83
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02211A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9175AFD/12ACF07C851611EBB6AE734DC4F9AE02/wsnbTNbQn4pBqNKTHwsrZnuhqYM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9175AFD/12ACF07C851611EBB6AE734DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Dec 2024 15:58:32 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 55861
IP: 49.143.224.0/22
IP: 2402:eb00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139546 (0x2211a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 6 15:58:32 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9175AFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ea:e3:08:9d:e3:fb:3d:9c:e9:18:8b:a8:c5:
2e:fc:eb:8c:33:65:0f:5e:8a:f0:6b:0c:0c:b7:86:
b0:e0:1b:0a:5b:71:4e:5f:3e:f2:fe:03:cf:51:c8:
5d:a8:cc:93:98:7d:82:02:0c:ad:fa:00:61:9c:bf:
30:88:63:8a:28:df:4a:80:18:ab:7f:67:af:74:e2:
95:56:d0:35:18:5c:37:1e:14:94:0f:ee:3f:78:7e:
2d:db:e0:32:cf:2f:99:24:18:24:fd:b0:c3:16:85:
14:e5:76:88:a8:8c:e8:a6:29:77:ec:92:23:89:20:
c7:c3:ca:61:ae:d9:bb:78:75:ff:63:55:00:48:71:
d2:50:ff:63:d8:3d:5e:33:e1:53:ed:97:40:b8:ba:
c4:19:02:07:d1:d8:e9:99:38:c0:cb:8c:5c:98:db:
52:e9:12:ab:06:64:e7:01:26:61:b1:71:a1:ef:67:
17:f5:a5:e6:75:73:7e:34:ee:c0:15:19:8b:72:a0:
23:52:48:9b:2c:19:f2:90:81:a9:23:a3:db:58:5a:
f7:9b:a9:61:ef:83:6c:cc:2f:79:49:aa:1b:3a:33:
e8:f5:0c:f4:77:2d:b3:f2:97:0a:30:3b:65:71:d3:
bb:ca:47:9f:af:f0:c8:57:cd:84:0a:6a:a0:8d:d2:
eb:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C9:DB:4C:D6:D0:9F:8A:41:A8:D2:93:1F:0B:2B:66:7B:A1:A9:83
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9175AFD/12ACF07C851611EBB6AE734DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9175AFD/12ACF07C851611EBB6AE734DC4F9AE02/wsnbTNbQn4pBqNKTHwsrZnuhqYM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55861
sbgp-ipAddrBlock: critical
IPv4:
49.143.224.0/22
IPv6:
2402:eb00::/32
Signature Algorithm: sha256WithRSAEncryption
2c:76:ea:d7:ff:01:01:d2:ec:6e:f5:29:a0:5a:5c:7f:e8:f1:
1b:be:f7:15:d9:61:07:19:bc:4c:ff:9e:95:0e:1c:5b:b4:eb:
4a:15:47:01:7c:5d:16:c1:41:ab:64:e5:a4:7f:05:09:d1:13:
be:f6:67:6d:f5:ab:a6:9e:88:b7:ba:49:75:a8:84:d0:45:36:
a6:7f:eb:9d:f5:20:2e:8b:dc:06:ac:cb:43:53:07:92:88:04:
fd:aa:64:20:ef:f9:e4:2b:be:f0:09:0d:f5:d8:d2:84:70:c6:
64:c9:74:f4:44:cb:b2:02:f3:23:5c:7a:30:04:97:2c:e6:62:
42:4c:1c:7b:af:10:5b:10:16:f1:11:53:51:42:8f:e1:86:5c:
a5:2f:b8:ff:92:5c:0f:b7:d7:e7:14:43:0d:1d:ed:4f:54:1d:
ea:fd:93:f1:e7:e3:b0:f0:83:c5:9e:e9:cf:47:00:51:39:49:
b9:62:b5:3d:00:fe:1e:48:f3:42:69:cf:2b:81:3f:f9:f0:59:
01:54:0d:c8:c7:0a:b4:19:ef:b3:c6:f7:0f:e1:07:a6:a5:94:
d7:78:48:cd:c2:d1:bc:7a:bc:e7:fe:60:eb:17:99:7b:f3:0c:
8b:1b:58:c3:b8:a9:ec:4c:4e:7f:ef:ac:02:a6:0f:d8:8a:05:
59:92:3f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:17:20 2025 by rpki-client