Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1mk-41xy689CY8aYRW2C9o5xT1w.cer
File: 1mk-41xy689CY8aYRW2C9o5xT1w.cer (raw, json)
Hash identifier: NCQzPpfaNKABlCbaZYO//z65K5g5x4VqgKufRCLzDrU=
Subject key identifier: D6:69:3E:E3:5C:72:EB:CF:42:63:C6:98:45:6D:82:F6:8E:71:4F:5C
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5D3B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Nov 2024 00:01:34 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 54415
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 20:12:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23867 (0x5d3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Nov 2 00:01:34 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A916EF5E/serialNumber=D6693EE35C72EBCF4263C698456D82F68E714F5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f8:68:a7:1f:a7:98:41:e8:ec:81:38:62:86:
19:2c:9d:2c:86:08:85:38:64:b6:35:7b:28:6d:ce:
a3:10:06:84:f7:be:a9:c7:e7:f3:8f:52:1a:52:05:
43:c4:0d:ed:10:6c:e1:28:fa:55:6e:be:41:48:7a:
c7:a5:2f:f2:98:5e:11:47:3e:6e:6f:d4:ea:fc:90:
df:04:d0:b4:17:88:8d:8d:68:2f:5a:72:69:0e:c4:
78:33:65:f0:44:75:41:07:ed:09:1d:17:ab:0f:db:
bb:80:72:0a:3c:cc:4a:03:7e:5a:0a:39:e8:65:5a:
34:0f:8e:15:14:9b:a4:fa:f5:e4:df:ca:42:2d:1e:
0b:3c:78:1a:c2:c4:7f:dd:00:a0:d7:22:77:70:d2:
12:d7:15:8f:c7:14:82:96:8d:a0:32:b7:a7:ce:a6:
c1:1d:3b:7c:59:61:66:43:ba:dc:04:28:eb:52:88:
39:b7:a8:c3:27:09:e5:8a:10:0e:6e:e3:67:7d:43:
f2:52:e6:bc:f3:09:fe:ec:dd:79:01:6f:19:64:f9:
bf:e1:2f:94:8c:1a:79:a5:38:b5:0f:dc:77:a8:60:
84:b5:08:e3:80:03:24:a5:74:1a:57:e8:58:cf:a9:
ab:e0:5b:82:31:e3:1f:9b:0f:57:77:b8:fa:b0:77:
95:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:69:3E:E3:5C:72:EB:CF:42:63:C6:98:45:6D:82:F6:8E:71:4F:5C
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/2CE494C08F9611EA9ACB7E7FC4F9AE02/1mk-41xy689CY8aYRW2C9o5xT1w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
54415
Signature Algorithm: sha256WithRSAEncryption
74:41:a9:a7:b9:f2:7c:6c:fe:40:b4:67:2e:fc:1a:6f:a5:4e:
79:9a:ce:2b:eb:7a:a5:2b:9e:dc:d0:40:04:da:8f:8e:22:e8:
4c:82:3d:f2:69:b8:a3:56:06:3c:6e:9c:09:60:b0:99:35:80:
7b:11:90:19:e9:c9:ee:09:6f:50:e7:2a:76:44:78:b2:b0:da:
55:1e:94:62:e5:7d:42:6d:21:58:ec:97:34:17:f7:73:b4:37:
cf:22:25:a1:81:2e:3d:66:53:9e:1f:1f:a3:41:9a:d6:b1:a5:
71:a6:b1:a8:dc:18:56:6f:3f:c8:7d:63:2e:fa:1c:7f:de:c6:
b0:db:e6:9c:80:c1:83:69:4d:71:6a:96:22:01:a7:57:f2:51:
4e:e7:9b:df:fd:fc:6c:71:e3:a8:28:33:e6:68:63:fb:b9:09:
2b:6e:91:85:c9:83:25:b0:9a:9a:1d:ff:bc:1a:a7:c2:ad:2c:
ae:b8:54:95:3d:e0:20:d9:20:2d:2b:c1:59:03:60:91:88:b8:
c9:a2:9e:10:e9:74:7e:dc:15:4a:9c:10:8c:e4:05:fc:fe:8b:
1a:f8:9f:6b:ba:6f:08:a0:ca:77:cf:f3:3d:09:10:e3:4e:95:
ce:d0:c6:e7:a6:74:ea:d2:cf:d6:ad:c4:3c:0f:dd:c5:01:ab:
9b:8b:70:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org