Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer
File: mke_QL1Ih-IkFTMnnn8dfypfb7s.cer (raw, json)
Hash identifier: kDUqCJqph7D+LCBDA8osyhfFQC0bFxD9QEZCQBedL08=
Subject key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 53E7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Mar 2024 06:55:49 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 157.10.6.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 28 Nov 2024 15:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21479 (0x53e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Mar 28 06:55:49 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:13:51:37:71:6f:f9:06:6a:9e:61:54:5b:77:
0a:ab:0e:9b:bc:4f:b6:f7:b3:ed:56:0a:47:3f:86:
4f:57:6a:24:a2:45:41:25:67:d8:74:a9:7b:39:7f:
04:3e:91:39:54:db:5d:64:4d:ea:49:a8:65:05:4a:
0d:69:dc:58:11:ce:b5:2d:6f:d5:5d:bc:f3:8b:10:
a0:9f:dc:88:f8:ff:3e:2f:7a:a5:3a:a7:37:af:bb:
f9:4a:3f:00:4e:47:d3:56:39:fb:ec:b7:f0:7d:95:
f5:09:a5:8b:d6:16:4b:fb:98:75:09:64:1a:46:ed:
72:da:dd:5f:8a:66:7c:89:68:53:ef:0a:d2:96:5a:
62:30:89:23:28:2e:aa:f2:94:fe:1f:85:f7:49:89:
0a:0a:1c:a5:52:be:d8:c3:ba:89:a4:d5:e7:c0:14:
94:bb:76:e1:fa:ae:09:e8:a7:a1:ff:88:0f:43:e6:
81:5c:c7:6e:91:0d:5c:30:79:bf:00:7b:3b:b7:88:
06:23:c8:34:bc:7e:f9:19:09:93:6f:9f:1b:08:77:
22:1f:2c:8d:ed:cd:bf:13:06:ca:b1:5c:d6:74:7c:
e8:8e:72:74:fb:fe:9b:bc:bf:3b:7c:cc:f0:97:0e:
8d:d8:93:74:94:1d:37:4c:fe:f1:05:81:19:b9:64:
9e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.6.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:07:d9:72:3e:32:ab:f4:c0:f4:91:55:65:85:31:4b:9c:f0:
a0:cf:19:83:93:29:b5:a0:24:7f:56:a6:f3:ad:ce:24:4f:8a:
eb:45:67:7d:f2:9b:fd:ea:1a:1f:a1:f3:1e:4d:0c:47:9f:20:
ee:16:00:bf:1a:85:37:a6:f8:65:66:20:e1:dd:a8:c7:dd:80:
12:fa:a7:c4:53:12:fa:ff:af:cf:e6:9c:4f:36:c2:65:d5:85:
6b:93:d3:8b:b8:fa:1f:ab:e3:b7:7c:21:9e:ac:d4:49:ae:74:
6a:02:b6:1f:16:72:0b:4f:ac:ae:1d:62:ac:59:a6:8e:c0:f5:
da:34:b5:50:b4:31:a4:ea:d2:6e:75:ab:31:82:49:ab:e8:c9:
3f:90:b2:31:4b:a6:d2:4a:78:32:aa:9d:c2:63:eb:e5:77:ba:
8a:68:43:88:18:22:46:89:52:f8:22:f4:4e:c6:bd:06:f9:ab:
d9:fd:ab:14:50:93:00:f1:f1:7e:21:86:84:ac:69:29:9b:94:
f0:99:58:b1:60:2f:00:75:c2:22:5d:2d:68:84:f6:8e:69:96:
37:11:5b:6f:3e:82:01:37:05:90:ca:6d:d6:df:84:d8:32:fe:
1e:2b:95:f8:de:d3:6d:e5:dc:dc:2b:7b:2b:cd:86:d7:97:48:
c6:10:b3:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 18:50:41 2024 by rpki-client on console-ams.rpki-client.org