Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9_nYpDVdZzudTn8VXTp45eZg_qU.cer
File: 9_nYpDVdZzudTn8VXTp45eZg_qU.cer (raw, json)
Hash identifier: +mxDBMaFxWIz7vRaLfkrDVf6m89R30iuM6pbtnSLVJk=
Subject key identifier: F7:F9:D8:A4:35:5D:67:3B:9D:4E:7F:15:5D:3A:78:E5:E6:60:FE:A5
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4949
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9136DD6/D162E03A3D3A11ECBEF77C76C4F9AE02/9_nYpDVdZzudTn8VXTp45eZg_qU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9136DD6/D162E03A3D3A11ECBEF77C76C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Dec 2024 14:50:36 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 178.160.128.0/18
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18761 (0x4949)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 2 14:50:36 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9136DD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9b:0c:3e:9f:0a:35:71:1d:4a:e0:3e:9b:65:
f6:8b:1b:51:01:5f:b5:48:67:4a:4d:84:0a:2c:4f:
1f:32:32:f5:21:54:59:94:f2:73:4c:be:12:1e:4f:
d4:a1:65:dc:8c:28:56:50:a8:db:27:ff:e3:79:26:
bb:72:43:62:28:a9:d7:8b:06:75:aa:57:4e:ac:92:
44:7a:cd:f3:65:d8:fa:04:c3:55:20:61:00:a7:da:
c0:7c:d6:da:55:34:c3:ee:09:33:ba:65:1d:2f:95:
62:a5:cb:70:97:32:a6:9e:65:b6:bc:68:33:a6:49:
0a:7f:14:ba:e2:6d:06:39:be:c2:47:8f:ff:c0:77:
d1:8b:24:b4:97:72:58:db:44:d3:00:05:a6:7c:96:
9d:2b:e0:cd:67:f5:31:aa:2e:e9:ce:43:02:fb:37:
d6:f0:5c:67:07:21:11:ce:9d:e6:55:0b:4d:39:9d:
09:82:7c:0b:7b:f5:e9:04:eb:30:e1:a5:62:d9:97:
2e:bc:0a:a5:69:cb:24:68:0d:fb:ae:8e:70:a3:4c:
53:9d:a1:7e:4c:74:db:7e:41:dd:67:a3:ff:6a:a8:
59:c8:47:30:d0:23:01:74:3a:32:ed:f7:d0:cf:41:
e9:ab:1f:eb:b9:5d:45:4e:a7:2c:f3:0a:1f:df:8c:
6a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F9:D8:A4:35:5D:67:3B:9D:4E:7F:15:5D:3A:78:E5:E6:60:FE:A5
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9136DD6/D162E03A3D3A11ECBEF77C76C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9136DD6/D162E03A3D3A11ECBEF77C76C4F9AE02/9_nYpDVdZzudTn8VXTp45eZg_qU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
178.160.128.0/18
Signature Algorithm: sha256WithRSAEncryption
b5:8a:47:27:13:89:d5:85:54:c5:d2:93:b9:f5:1f:94:6e:8b:
0b:f3:96:b1:99:4e:cb:89:0e:4d:1b:52:9e:51:9f:bf:ea:f0:
d3:ca:ec:28:db:c7:e8:09:a4:86:22:22:28:f2:9a:8f:e4:6a:
a8:a0:17:ef:21:d0:ae:fc:d0:c2:4d:19:2f:da:69:81:b5:5a:
e8:b2:5e:75:c6:41:79:3f:77:1f:6d:ba:dc:c9:b2:5a:5d:bb:
11:2d:8a:aa:f8:13:ba:ec:fe:8d:d0:10:57:f2:43:21:76:24:
90:a9:0a:26:ed:81:d6:7b:15:89:90:04:d9:d7:bc:08:f0:a4:
f2:be:a0:85:3e:2a:8a:81:68:5c:63:14:46:3a:b9:fb:64:4a:
ca:27:4a:f8:20:37:3d:47:85:b6:df:b4:01:b6:05:66:e7:b8:
9b:50:a0:c7:43:a3:04:53:ed:cd:b0:c9:5b:06:76:4d:17:20:
07:e1:d9:74:37:6a:25:ea:a4:38:06:27:39:3a:b3:0d:ae:52:
a1:0b:f6:55:13:3d:83:17:7a:11:68:f0:6c:a9:48:51:71:17:
35:89:8e:06:84:f8:55:ea:1b:e1:19:00:64:95:a0:e4:28:c6:
70:03:9e:34:64:c6:d6:0c:a8:00:b0:af:ab:67:e3:eb:8f:72:
bb:2a:10:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:38:45 2025 by rpki-client