Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer
File: 9lz9HPOxxajqYIcfo8NAYdtM84M.cer (raw, json)
Hash identifier: VpfIrBYQ244AWAL1KzkaYruy6H7BGa9V5rTDAHkMUdg=
Subject key identifier: F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 498D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Dec 2024 18:03:28 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 195.133.128.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18829 (0x498d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 20 18:03:28 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9195BA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1c:bc:8b:f5:e9:7f:4c:b4:67:96:2c:12:cd:
9e:ad:80:85:44:32:94:03:76:11:a2:55:4e:b1:01:
06:99:4d:6a:50:dc:1c:1f:ef:13:cd:49:5f:93:c3:
10:6e:94:0b:56:f5:d6:89:6c:c0:4b:2f:53:c2:92:
b3:a7:b7:fa:70:7d:4c:d4:e6:a6:3e:45:74:51:06:
ad:19:95:73:65:63:e4:a9:c1:8a:52:e7:67:87:28:
c5:6e:eb:84:a4:82:83:19:0c:e7:b0:3e:2d:12:44:
72:cf:24:ef:15:68:72:8d:d6:19:bb:b2:25:98:67:
9b:91:92:2f:43:43:ee:62:d7:7e:1d:45:b8:69:0a:
8b:67:8e:77:3e:01:bd:6e:6b:17:74:d4:ab:63:ec:
14:f6:b3:1a:d4:1c:05:dc:a3:7c:ae:15:67:04:2e:
96:58:3d:e7:f5:ad:f8:13:d1:d1:f1:87:6e:3a:04:
e6:c9:23:a6:3f:2f:74:87:b8:7e:f7:58:57:12:f5:
4d:12:2d:bf:35:52:e4:38:16:f2:17:6b:23:8b:35:
16:c2:0c:73:48:35:07:e5:78:ee:79:0b:93:d8:27:
7c:c4:af:20:04:e6:b0:88:a0:91:27:67:8b:a8:69:
6b:75:d3:40:cd:1f:cd:98:ad:b5:33:42:d3:33:a0:
c7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
195.133.128.0/20
Signature Algorithm: sha256WithRSAEncryption
36:df:06:5c:0d:38:ec:59:f1:53:4f:af:f7:08:e7:a6:75:f2:
13:5f:15:37:0e:b2:c6:81:db:12:da:08:6f:64:3a:3a:67:48:
97:8f:2c:a1:0a:0e:3a:32:bb:82:dd:cf:a1:83:78:e1:4c:0e:
2b:2b:d3:fc:80:2e:c6:29:75:6d:aa:cb:30:39:46:1e:19:41:
80:53:f4:b0:a4:24:7c:8b:53:76:48:df:25:ca:5a:a4:0a:1c:
c3:9d:18:ce:85:2b:07:4a:2c:ed:f2:89:92:76:cf:73:19:70:
d2:e6:60:a4:47:c3:ac:21:5d:84:3a:9c:d2:3d:a4:c1:eb:8d:
e6:1a:5f:fb:0e:26:02:86:ed:60:17:b2:e3:ee:17:3a:1b:06:
71:77:25:e1:16:8e:e6:e5:6d:af:ee:43:65:8d:90:96:9a:36:
9b:eb:16:41:55:af:71:27:4f:c9:95:89:b5:b3:79:5e:da:1f:
fd:5a:99:8d:d9:a4:7b:aa:3a:4a:be:21:b5:5c:2f:b5:ab:a8:
87:61:09:ce:d1:5c:d4:d8:26:f9:18:f9:92:8d:b4:38:43:2a:
78:63:3e:38:ef:a9:78:ba:00:19:02:34:42:ec:4c:46:57:2e:
c0:5e:2c:b9:7f:c2:8f:3e:3e:d7:31:0c:44:89:b9:9b:90:fe:
2f:40:98:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:58:08 2025 by rpki-client