Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer
File: JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer (raw, json)
Hash identifier: TFQb5WLES6zUPvAdV+Bk8pfB3I5WNZl/Km0SDiNfa/0=
Subject key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4AF2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 28 Mar 2025 13:37:13 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 188.95.8.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19186 (0x4af2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 28 13:37:13 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91820CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:36:ea:ff:55:34:87:ef:17:ef:5c:2f:ac:83:
ce:5b:4b:fc:19:ef:5a:69:bc:79:2e:64:cd:46:58:
b9:36:33:82:7c:21:ae:13:54:e7:9c:90:ef:54:fc:
ac:a3:e0:a3:0d:0d:a0:f3:78:10:ba:e7:e6:a4:d5:
cc:e8:24:57:fa:8b:a2:45:04:eb:b4:9e:0f:81:30:
f0:29:44:ee:8f:ec:61:96:dc:3a:94:40:c6:ad:fc:
f1:61:27:de:a9:6f:5a:44:34:e8:e9:73:a4:ea:00:
00:1e:e2:2e:0f:cc:fb:a1:27:eb:15:71:43:53:b5:
73:a8:0f:f3:ae:bb:d2:12:c1:41:e8:34:ea:f6:54:
3f:b8:7c:e3:12:74:b4:bc:ab:71:fa:ec:2f:42:b9:
f3:7b:ff:45:d2:f6:9c:56:c8:df:c2:f0:0b:de:66:
96:dc:97:9e:9c:25:74:10:ee:47:8a:ae:09:7b:91:
8b:c4:76:c4:de:35:0b:b0:26:4d:83:fd:02:59:8f:
7c:8d:a8:a2:38:3f:57:c5:96:c3:ba:2c:50:56:5b:
fc:6e:93:14:f5:af:5a:75:e8:5a:71:f4:3c:a3:1f:
65:57:e8:98:9e:8d:a0:3d:9d:68:7f:f7:38:97:95:
0d:2c:d4:99:d0:90:c2:75:c2:f5:1c:5e:39:00:b6:
d3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
188.95.8.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:79:68:a9:07:e6:10:35:68:a9:1b:f5:ad:a3:de:b8:68:14:
e0:cb:06:40:b9:44:a5:d0:0a:c1:6b:a6:8e:90:10:ab:f1:4f:
a1:1b:de:09:5a:1f:aa:e6:91:e3:d6:31:85:50:29:8c:a3:f4:
0e:21:32:ca:0b:8e:eb:60:f3:5f:00:ce:a4:fa:fd:de:a3:52:
d3:b2:3b:26:b6:dc:8a:63:95:6d:6b:d6:2f:3b:0c:60:b3:f3:
d7:f0:e1:60:04:e6:25:56:fe:9e:81:00:67:85:08:63:de:1e:
d3:af:21:7f:ef:94:3c:c8:7f:97:a6:3d:55:ed:6b:5d:01:34:
0a:92:92:2f:b6:c9:54:be:43:39:dc:cb:17:d1:aa:73:48:ea:
5f:db:72:20:e4:6a:b6:20:3b:00:aa:b7:d6:42:5a:84:4d:cf:
e2:41:5f:54:cf:d5:ca:51:37:6a:a7:93:7e:2c:9b:9e:17:55:
7b:73:95:22:02:84:45:f8:11:0a:5a:ed:8c:df:46:2d:ac:8c:
bc:94:e9:f1:2e:13:1c:9d:98:de:fa:89:e4:e5:3f:83:0c:f7:
32:0b:63:02:1f:90:dc:8f:95:9a:d4:98:78:e5:53:db:89:08:
5e:cc:f7:fa:37:ae:af:b4:3e:dc:90:90:42:04:53:32:9a:03:
f9:aa:e3:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:39:27 2025 by rpki-client