Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer
File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer (raw, json)
Hash identifier: sRrkG8+EKY9S6e4eFIcFmxojQfeO7qEoeAE/+9V3Uig=
Subject key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 49CE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Jan 2025 15:43:25 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 37.111.192.0/18
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18894 (0x49ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 8 15:43:25 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91C3A74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:eb:d0:73:c9:f7:5d:72:de:fc:05:8b:84:2a:
9f:be:7b:32:73:f7:ca:3d:f8:88:03:1b:62:03:37:
c8:dc:d8:4e:0b:99:1f:6a:60:a8:0e:c1:dc:e8:72:
4a:d5:54:2c:68:90:63:92:13:7e:23:f2:a0:4d:74:
78:f9:94:37:13:34:c5:e4:00:1c:c5:57:e6:08:e4:
9f:25:55:a0:74:fc:75:0a:74:fe:75:2e:20:cc:ab:
6b:ed:a5:2d:8c:8f:12:4c:97:3f:07:b2:c9:95:ca:
17:6c:41:44:98:e3:4c:67:95:61:49:60:a9:cd:c8:
bf:59:4f:8a:1f:a8:17:fc:f2:b0:51:29:78:e1:b3:
16:72:c1:80:b0:8b:03:9f:60:2b:c6:c1:ff:b8:c0:
6f:44:aa:78:5e:64:82:a6:b6:ce:af:72:4e:9a:8f:
35:86:00:03:51:81:0a:e8:78:a9:ea:7c:dd:82:f8:
af:40:9f:9d:6d:c4:61:c9:fa:c5:b4:18:ef:8c:66:
6f:17:5c:cc:87:54:d0:f2:ab:ed:83:e1:74:1d:bc:
15:c6:35:39:3a:53:5e:36:2d:1a:37:00:f5:0e:01:
b2:6b:d5:13:1c:45:ff:28:bd:6c:b3:be:cd:a2:93:
ff:b0:e8:fd:df:44:d0:4d:a5:43:0f:43:19:92:e7:
58:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
37.111.192.0/18
Signature Algorithm: sha256WithRSAEncryption
75:4b:0c:4d:bb:3f:20:dc:8b:ab:d1:26:98:0c:e8:0a:39:01:
02:98:fe:26:f5:27:26:f5:4f:6e:46:d8:94:76:b8:1f:fb:a7:
82:2e:fd:01:19:10:1d:e3:59:64:08:04:49:52:f9:12:98:51:
05:f5:65:09:78:06:93:1f:07:c5:5e:c6:1c:e0:8c:08:2f:f8:
fa:a5:82:18:c8:bc:b2:c7:59:2a:5e:18:6c:93:bb:ca:e2:80:
f4:7c:ec:b9:a8:4e:1d:53:42:a4:00:19:c1:08:ea:c6:f1:e8:
7a:1f:c8:ae:4f:b7:0e:66:ef:70:5b:33:d0:cb:0d:c4:99:96:
ac:44:3c:04:7b:85:82:50:18:0c:31:b5:0c:8b:09:d5:15:4f:
0f:4b:5d:20:27:77:2a:23:44:77:22:65:16:62:8e:cd:0c:d2:
27:c0:f0:70:0c:05:e9:c6:46:f8:f4:3a:db:10:c1:f5:41:bf:
89:6d:88:31:5b:fb:a9:11:06:ba:a1:1f:fd:01:de:6d:2a:39:
8a:ce:a4:db:a1:5a:6d:5a:7f:68:96:42:03:b9:99:b5:3f:ac:
ea:c1:59:84:d8:53:5a:1b:95:53:76:79:e4:e3:b1:f0:3f:6d:
d0:82:47:11:2a:f2:81:92:ac:13:d2:57:4e:54:a8:6d:36:a1:
8b:a2:de:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:58:09 2025 by rpki-client