Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer
File: 64P0iA8jV15XUXhcbgqyvgskm8M.cer (raw, json)
Hash identifier: J2x0oFzlq1j++/z2eFlVVgyKmjVleCdbplFLPSuOi/s=
Subject key identifier: EB:83:F4:88:0F:23:57:5E:57:51:78:5C:6E:0A:B2:BE:0B:24:9B:C3
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 60BF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 12 Jan 2025 07:46:39 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 160.250.44.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24767 (0x60bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 12 07:46:39 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A917C0F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:59:4a:0e:e3:2b:9f:4b:d5:b5:51:df:5a:29:
cb:df:ab:d2:8d:a6:f6:2b:d7:59:a1:64:ae:2c:65:
9b:fc:93:bf:c2:38:8f:06:34:7b:8b:af:0e:96:20:
68:64:18:ef:42:06:62:88:81:0a:60:b8:81:ed:ef:
ba:ef:87:cc:4e:24:f4:00:b7:f6:03:00:58:00:61:
48:35:ac:a7:b2:b8:ef:53:18:40:d0:95:4f:f8:93:
6d:47:67:2d:77:53:bc:7e:73:19:29:2f:b8:21:59:
b5:c6:20:f2:22:6b:6b:1e:40:4a:29:df:39:ab:fe:
d3:c4:ed:3f:41:15:a5:1d:f1:02:d4:2a:77:bb:5c:
99:1d:b6:85:6b:9c:dc:57:35:dd:14:a0:0d:db:e3:
bd:fd:86:d4:94:42:74:4c:d3:87:0b:71:38:07:60:
f0:8b:e4:83:42:f5:c2:c4:f0:d5:0d:78:9d:d9:5f:
cc:2c:7b:1f:62:57:92:b1:cb:cc:db:19:05:c8:89:
21:97:03:d3:77:78:0b:0f:0b:59:e4:55:dc:c2:fb:
64:65:c6:77:4e:0a:e1:51:50:8d:2a:73:eb:2a:b8:
6b:47:bb:46:84:0f:3f:0a:0f:3e:66:73:ae:a6:42:
a5:61:99:c3:d0:1f:12:6e:55:fb:4c:c8:28:85:67:
c3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:83:F4:88:0F:23:57:5E:57:51:78:5C:6E:0A:B2:BE:0B:24:9B:C3
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.44.0/23
Signature Algorithm: sha256WithRSAEncryption
25:f9:73:c8:9f:8d:f9:d6:65:6a:4b:88:00:f5:78:e9:8b:c5:
f4:79:f3:27:94:ca:c0:e2:43:b5:12:92:3b:55:f1:7c:42:b1:
eb:61:03:22:c6:da:0c:c1:a8:46:a0:93:07:08:2c:e9:6a:9f:
80:c3:95:0c:ca:3e:aa:19:1d:be:3e:1d:03:04:03:8e:07:7c:
cb:27:bb:3e:bf:f0:a1:ec:ce:90:f0:64:c5:ad:51:76:96:5f:
a3:9a:5c:5a:9a:69:99:5b:8d:58:c9:74:ac:3c:e5:7c:11:f8:
91:77:21:2b:69:35:91:c5:ee:64:ed:fa:23:9f:aa:05:9f:19:
70:3c:8a:67:bb:cc:87:8e:5c:7c:37:18:c6:80:21:ca:b6:29:
ea:aa:e2:7c:45:cc:53:bf:cf:bb:6d:7f:ce:21:0b:81:58:3f:
55:e1:b2:66:7c:7c:35:9e:1c:61:95:5b:9c:41:fd:3f:a2:76:
5f:08:a4:0e:42:6d:1e:65:d5:bc:49:d3:83:70:8d:ca:63:da:
b2:13:d6:91:e8:80:11:5f:64:5e:3e:45:cb:72:53:70:64:90:
3d:41:fc:79:ea:c5:44:7a:0f:67:0d:af:e0:dc:a3:c8:64:1a:
cd:ed:e6:71:e3:7f:cf:cf:78:d8:ef:32:c4:50:45:e5:7b:4c:
69:5b:a2:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 16:51:18 2025 by rpki-client