Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer
File: rehZrZQNGhc_pkzXBYZ9SH5nNog.cer (raw, json)
Hash identifier: EPmAUm9rdMXQZ+DP0fyY1kRzjqv/+HBDD1il9bo4YaY=
Subject key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4A55
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 12 Feb 2025 22:17:48 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 193.57.57.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 02:50:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19029 (0x4a55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 12 22:17:48 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91FDAD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bc:16:dd:ec:22:9d:33:e0:52:76:8a:d3:5c:
68:74:54:f7:61:1d:97:b2:fa:1b:45:53:19:3f:52:
97:ab:7d:00:41:f3:b7:06:28:63:2d:9b:ad:03:00:
09:43:fc:5f:dc:05:35:0a:be:f3:0c:c5:12:b8:7b:
4e:ec:ff:68:ad:d6:33:19:87:a0:a3:06:e9:9e:89:
50:18:3d:73:de:d6:57:f8:9d:ea:94:9f:81:14:cc:
2e:ae:dd:16:61:b4:ff:97:5e:fc:00:fd:80:1f:ad:
30:3e:b7:ee:a5:b9:df:eb:11:e8:f6:48:68:a3:57:
06:c8:a6:44:56:ab:fe:0e:47:6e:6f:7b:27:5c:b6:
a0:8d:ef:2d:cb:25:17:75:6c:b2:9f:b4:5c:04:60:
e4:70:96:50:78:f2:bd:ef:ce:b0:7d:96:3d:7d:8c:
5d:fc:93:17:3a:29:cf:73:73:d0:c0:5e:2e:2c:71:
27:e3:ec:cc:dc:55:3a:eb:71:e5:d3:36:fe:be:49:
52:bb:ce:20:9f:82:52:f0:71:da:78:56:d0:cd:4f:
a1:c4:22:43:ee:68:29:af:70:bb:8d:a3:17:b9:9e:
15:8c:93:68:10:c5:5f:ed:11:d7:13:5c:fc:84:3a:
4d:10:25:3f:3e:85:16:cf:0a:87:0c:17:bc:23:84:
d5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
193.57.57.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:52:cd:33:cf:6f:0a:23:93:52:e1:82:92:c1:e2:cc:4c:35:
4d:6e:c7:56:58:80:cf:57:52:fb:77:6d:43:e1:78:f0:ab:12:
e5:92:77:79:86:cb:2c:35:c3:35:8b:87:93:fc:c4:e3:dc:5a:
8e:b5:e4:d8:2b:93:52:72:90:f0:be:56:15:fb:2c:1b:d3:44:
1b:92:ac:9f:f5:f1:d2:4e:fd:a0:44:3f:c3:c1:63:22:22:57:
b7:1b:56:27:7c:b5:4d:c3:6f:67:c0:9f:31:9e:9e:c3:f3:c0:
95:14:b3:84:d1:d8:6f:fa:c4:9d:80:f6:7d:ae:ec:2c:e4:7c:
df:28:3b:bb:33:4c:a8:89:80:45:e3:1b:6e:5c:34:d7:c0:e6:
8a:98:bd:08:ea:88:8e:28:03:1a:42:03:9e:ab:53:89:a8:13:
f8:79:04:d5:10:83:65:29:ac:c8:ba:a8:31:c5:78:32:86:78:
25:11:b4:9c:03:c7:60:18:87:d3:89:0a:77:30:69:28:63:12:
49:59:d0:f2:54:8c:8e:8e:a0:5e:30:7b:1b:6c:71:62:b2:86:
3a:ee:12:e2:2e:8b:b5:cc:5f:63:be:67:b8:ea:e2:07:af:35:
29:e9:4e:ca:4b:08:83:9b:07:02:78:02:09:a1:46:fd:6d:1d:
89:3f:c7:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:58:28 2025 by rpki-client