Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer
File: mMl-BS19mtU2CVm50-B22t126gE.cer (raw, json)
Hash identifier: 4Nt/eIDvp7N9sf+hImW+bmO+7iD/ofjnOOUtaRRlty0=
Subject key identifier: 98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 463E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 10 May 2024 19:55:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 194.180.111.0 -- 194.180.113.255
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 02:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17982 (0x463e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Validity
Not Before: May 10 19:55:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91CB435/serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:5e:fa:3d:88:f5:e2:ef:8b:eb:dc:00:80:
36:8b:07:ed:db:90:e9:2c:36:cb:04:f7:1f:82:3b:
c1:f9:18:a5:a4:37:49:ca:a3:71:a7:84:77:2f:19:
03:a3:78:ba:d6:84:d8:32:ea:49:79:63:07:a4:6e:
02:2e:8e:f4:b3:4f:01:fb:8e:b3:b2:8c:34:2a:c7:
0e:87:84:58:9f:c9:d5:38:f8:44:f2:90:d6:fd:d6:
6f:1b:c1:b0:63:94:0f:b9:9b:0b:cf:fd:2d:d7:00:
72:8b:68:1e:43:1f:8c:94:7f:86:03:ef:86:63:2e:
11:e8:3c:d5:12:f7:df:c7:d6:fb:db:cf:0e:18:f1:
c0:d1:3c:8b:79:6f:b3:93:f8:08:4a:b9:61:d7:5d:
d8:7b:1f:7f:63:3f:40:3e:dd:b9:26:41:d2:45:c0:
37:e4:a6:c2:cc:92:61:d4:60:cf:0c:b1:5a:2f:6b:
05:81:6f:45:0c:e0:00:d9:9a:ff:a7:c2:4f:0e:b2:
8d:24:da:5b:9a:ce:b7:e3:88:fb:50:15:84:d0:0a:
20:83:c4:30:0c:57:f9:7d:27:51:b6:ed:b3:df:2c:
10:6c:69:c7:ed:46:07:a9:17:7d:9f:a9:7a:47:1b:
cb:26:99:64:fb:5a:6f:77:5c:9f:b6:b0:e7:1b:e3:
0c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
194.180.111.0-194.180.113.255
Signature Algorithm: sha256WithRSAEncryption
5e:ac:cb:4c:26:81:a9:70:c9:3d:01:2f:4b:72:9a:64:13:50:
d5:50:8f:0c:4a:14:ee:ec:45:18:fd:5f:aa:4e:a9:a3:5c:fa:
f6:f8:38:2b:15:88:a0:75:d8:06:84:e9:26:bf:f6:67:a1:6b:
1d:92:0c:43:f8:b2:b7:46:52:83:56:d7:b0:0e:5a:8b:00:40:
49:33:a8:42:7e:87:f9:57:93:eb:e0:83:c9:90:d4:0c:fc:1a:
a9:e4:f3:1b:bd:98:c1:5d:b6:02:2b:14:6e:48:9b:79:f0:2d:
c3:cd:53:33:fd:c8:09:02:1a:ad:6d:ae:6f:0c:c7:dd:98:dd:
5b:d6:45:d8:45:d2:94:1b:5b:3f:fe:6c:63:c8:9a:d4:e8:45:
bb:ae:15:09:93:34:3b:3b:00:7f:6b:a6:52:d0:00:a8:f4:d6:
c2:08:5f:e2:89:c7:5c:08:16:aa:f0:c7:90:85:79:1e:b1:54:
8a:a8:8f:fb:6d:3e:cb:1f:ad:c5:62:f3:53:9f:e8:96:8a:90:
52:0f:48:5e:51:7f:dc:81:31:c4:2e:48:bb:cf:b8:7e:7d:52:
34:3c:30:8a:d7:f6:cd:5a:47:5a:20:f2:a1:cc:ee:b5:3e:22:
64:98:f8:f1:f6:d1:75:56:50:6d:ae:0d:74:fc:87:09:1c:56:
fb:d7:8b:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:41 2024 by rpki-client on console-ams.rpki-client.org