Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer
File: MGSQ23RcleyGYUmf_IJkZnumf4o.cer (raw, json)
Hash identifier: PpBy2DciLt74L4ov1dSe8uFkYF6HEw52BQwF5wPf8b0=
Subject key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 604E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 06 Jan 2025 09:22:21 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 161.248.100.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 12 Feb 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24654 (0x604e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 6 09:22:21 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91CE7A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d8:a9:87:fa:ed:53:97:f2:4f:58:67:a1:17:
7e:7b:80:2d:24:39:04:ff:99:6b:3e:d2:fe:28:b3:
ee:99:1c:ae:72:5f:b3:96:9e:8f:df:58:81:5b:e0:
f5:56:98:f6:55:de:bf:24:3e:8e:60:05:cc:23:33:
bd:c8:28:97:23:6c:68:7d:e3:56:6b:6c:a7:44:25:
8d:16:c5:b4:89:68:ff:21:0a:ea:ff:8b:6d:dc:a7:
dc:a3:2f:83:f4:20:d8:82:f7:13:64:11:f3:21:f4:
0c:8b:90:50:02:5d:53:90:29:e8:3f:53:ff:17:c3:
51:58:dc:b5:9d:12:de:b2:63:72:e0:81:f1:51:8b:
a2:fa:a5:2b:0c:ee:52:8c:56:4b:d7:3e:54:bd:66:
67:6a:45:45:76:ea:4c:c8:47:a9:5b:49:14:f5:ae:
5a:4f:d2:3f:8a:42:e5:a5:ec:fa:65:91:68:38:33:
61:21:01:de:c7:61:30:f8:4c:f0:31:28:0f:fa:90:
37:36:f4:ed:d7:d0:36:ba:a6:26:6b:6b:04:1c:f0:
a8:90:9b:44:ac:36:9f:76:a1:23:e9:27:16:c5:84:
72:c8:e3:33:4d:6e:51:bf:a4:f1:af:8e:f1:a0:d4:
ea:f0:be:be:fe:a9:48:89:e5:45:1d:ee:47:0f:17:
d3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.100.0/23
Signature Algorithm: sha256WithRSAEncryption
37:56:77:38:3f:05:1d:52:66:77:36:b7:81:d2:61:cc:77:f7:
72:29:e4:7c:36:f6:b5:14:d3:4f:24:e1:d9:ed:a1:fc:de:3b:
23:22:36:69:dc:5b:07:9a:03:10:15:df:77:26:73:ef:08:1e:
07:b6:c9:f6:7b:7a:f6:b3:f0:8e:0e:4e:f3:1b:0d:81:99:1a:
d7:8f:05:22:cc:23:8d:10:56:60:c0:0d:df:0a:bc:f7:ed:00:
a2:8f:55:b8:54:61:16:c2:b7:42:fb:e4:69:0d:43:82:bc:be:
b7:3b:c2:76:c9:97:21:5b:6d:d1:db:dc:43:fd:9b:96:0c:5f:
a4:bc:fd:dc:04:95:a2:47:c6:a9:05:2e:df:34:9a:7f:51:f8:
47:ca:af:b7:14:84:60:43:85:58:80:db:23:98:5e:9d:af:21:
7d:80:65:b2:d6:04:67:be:72:84:65:51:b1:7b:5e:4f:91:30:
57:f2:af:ae:26:80:cb:e9:54:b5:d2:2a:de:26:b4:99:de:0c:
de:d9:e7:cf:f0:e6:0a:76:84:a9:e4:10:b0:8b:5f:2a:2c:97:
73:ff:65:bd:77:f8:5d:54:00:4c:9d:18:05:2f:91:c0:51:60:
0e:e5:a8:a6:b7:36:9c:c6:ac:5f:64:74:62:61:ba:ff:17:2a:
a1:42:ff:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 16:55:41 2025 by rpki-client