Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FjMWdiEa7mdzSFtlIzxiw6RYev0.cer
File: FjMWdiEa7mdzSFtlIzxiw6RYev0.cer (raw, json)
Hash identifier: ec0euOiJpA8GlcmLdXAAhwXNCejmrbWN8NEnrXl9NRw=
Subject key identifier: 16:33:16:76:21:1A:EE:67:73:48:5B:65:23:3C:62:C3:A4:58:7A:FD
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 48D9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Nov 2024 07:14:30 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 185.205.140.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 14:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18649 (0x48d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: Nov 2 07:14:30 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91A86D0/serialNumber=16331676211AEE6773485B65233C62C3A4587AFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ce:bf:ce:52:8f:9a:5f:28:68:9c:49:31:42:
14:54:6e:2f:71:b5:51:dd:24:ab:b7:c7:b9:58:f2:
50:e0:3b:f0:57:2e:1c:ad:d6:44:a9:07:f4:1f:db:
93:08:79:95:50:23:51:b1:77:1f:5f:d7:d1:69:7c:
ac:bf:62:e8:11:44:2a:a2:c8:34:2f:92:12:28:e9:
d2:a8:14:05:6d:4d:74:ac:7f:da:36:0f:f6:0a:3f:
cc:ff:5b:f7:f2:51:d5:aa:b8:37:53:34:12:15:ea:
90:2e:8d:20:2a:6d:fd:01:76:4e:16:bc:e1:26:ca:
73:d9:4c:76:b2:d3:48:fc:d7:00:f8:52:0e:d1:c7:
17:d8:a3:81:7d:e2:e7:8e:2f:20:42:98:65:44:e3:
d8:5d:92:fc:dd:7a:43:49:7e:eb:80:8c:a4:20:fc:
e9:a7:a3:c0:a7:b7:1b:d2:66:77:5a:7d:1e:8d:ee:
dd:88:3b:9a:ee:d8:7b:23:22:39:7c:07:5c:2a:3a:
5c:0e:03:f1:9b:37:a3:24:17:5b:bc:69:74:b0:6b:
63:6e:b9:71:fa:5f:1d:6b:9c:36:dc:ee:d3:c1:75:
90:e7:86:0f:47:ba:f7:c6:0d:51:cc:72:a7:ca:33:
5d:f9:d0:2a:01:b7:27:61:d7:b7:1b:00:4b:5d:cf:
c7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:33:16:76:21:1A:EE:67:73:48:5B:65:23:3C:62:C3:A4:58:7A:FD
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/8D8F0ABE0B5A11EA90923066C4F9AE02/FjMWdiEa7mdzSFtlIzxiw6RYev0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.205.140.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:7d:08:50:cc:38:26:28:8a:46:aa:c2:cd:63:a6:44:a8:3c:
2c:0e:b5:bf:0b:e0:c3:8d:ea:b7:51:50:76:b4:8a:e5:b5:de:
20:37:9c:5a:a2:00:d5:31:0f:f1:07:6c:08:88:29:24:f4:bc:
14:68:8a:af:09:c6:71:6e:20:5e:fa:e0:6e:a3:41:68:2d:08:
5c:5e:f6:91:e3:bd:12:51:e2:b8:92:fc:ce:73:fc:bc:01:11:
ac:30:23:ba:fe:e0:e3:af:01:45:87:ac:11:22:cc:ee:a9:93:
a1:06:8a:1b:b3:db:5a:a5:38:d6:b7:59:3b:77:50:1e:c3:c6:
7b:25:e3:51:a8:b3:ac:e1:58:cb:d8:70:45:10:08:33:4d:ee:
78:14:20:43:3a:bb:d5:fe:42:e5:a8:8b:46:c6:c6:9e:4d:65:
14:49:fd:a4:6f:1e:08:f5:fa:58:68:6f:44:a3:9c:ed:ff:f2:
af:de:52:cf:db:6e:ca:a8:6c:64:2f:4b:54:01:22:9f:d2:80:
cd:bb:1c:0b:c3:8f:9c:51:27:53:86:50:fe:d7:d7:b7:3a:56:
2c:3a:bc:ec:ea:8d:aa:74:cc:6e:ac:90:11:11:cc:f7:6d:12:
ea:4e:94:53:2b:f9:54:ae:49:27:a7:1e:cd:ff:f0:ef:71:da:
b1:5a:7b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 15:54:06 2024 by rpki-client on console-ams.rpki-client.org