Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer
File: 4YMttqUeSiWekP7IHkfFRpxSpok.cer (raw, json)
Hash identifier: dXXbEPJFztn6BhwbrBE7PeiZr9vGQTQU+7ytvYA2CIw=
Subject key identifier: E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02271A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 Jan 2025 15:03:05 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 55446
IP: 49.128.108.0/22
IP: 2407:9a00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141082 (0x2271a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 3 15:03:05 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A916814B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:47:a7:e7:44:e9:e6:98:76:57:03:38:de:14:
42:08:25:c4:dd:23:ad:86:b2:fa:89:f3:e3:05:13:
86:8a:7a:8d:ce:8b:4d:7e:9a:0a:2a:2b:ec:77:37:
2f:78:58:11:78:8f:0b:b0:f3:c0:2e:ba:bf:02:cc:
d4:23:bf:73:a6:b1:46:33:75:29:90:84:f6:fb:06:
44:8b:f4:48:60:23:1f:c7:a4:a3:6a:25:bc:31:16:
12:a8:5b:23:20:45:6d:ba:1e:03:89:0e:dd:09:29:
61:1a:19:07:f5:00:7b:af:94:83:2b:2a:94:8e:c3:
61:c1:9b:1d:24:36:5c:8c:13:05:b6:ae:4d:d0:8e:
b9:cb:c9:7a:cb:70:0e:f9:56:93:1e:55:a1:6a:83:
58:f1:d3:d3:b9:b1:b5:c4:ce:e7:2d:cf:8a:3f:98:
ab:6b:86:67:89:57:10:79:71:bc:24:a7:71:0c:83:
ae:58:43:87:b5:fe:c3:e6:da:d0:27:83:8b:81:08:
a4:f1:ff:41:53:79:a1:66:0c:16:34:67:64:c4:37:
90:23:cc:58:21:22:d6:7a:2e:f5:da:65:12:d3:d6:
83:59:2b:1b:97:04:1a:f0:94:f1:ab:46:60:0e:c2:
26:e5:42:04:36:d4:26:a7:b9:b0:a0:23:d3:4f:c7:
79:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55446
sbgp-ipAddrBlock: critical
IPv4:
49.128.108.0/22
IPv6:
2407:9a00::/32
Signature Algorithm: sha256WithRSAEncryption
72:9d:3c:c4:eb:23:48:e4:05:f1:3c:90:5d:be:8a:4f:fc:4c:
74:31:6c:f5:77:cd:51:ea:68:c7:3f:bd:0c:e4:91:68:a9:74:
cd:6f:23:24:5c:3c:ed:54:01:c0:8d:5a:85:b5:ec:47:0b:41:
d0:3a:34:97:59:67:86:51:ed:96:3d:f4:e6:cf:b8:63:40:1c:
c6:a6:41:e9:60:dc:9d:89:b2:ee:28:31:22:a2:e5:1f:c2:5a:
3b:61:82:e9:02:56:f2:ff:5a:93:c0:5c:f8:8a:4e:4b:8e:54:
c0:c3:c3:b3:91:9a:29:c5:cf:65:fa:94:11:1c:d9:e7:30:95:
e6:25:76:84:f4:49:d0:74:42:bd:c8:0b:8d:4f:9d:f8:95:69:
dd:e3:4a:b1:c6:7d:0d:66:2f:69:23:3e:16:ed:93:61:cb:2a:
5d:5c:05:78:79:0a:c7:88:0a:a4:65:ef:34:b9:65:da:a4:30:
37:b2:c1:39:93:17:f6:38:f7:a4:ad:a4:24:a4:57:da:63:d1:
7c:7b:12:3c:de:e3:ce:cd:be:76:e3:9c:8c:b3:66:84:29:f7:
ff:5a:44:fa:5d:6e:e5:c0:c6:dd:b5:52:67:f4:b7:24:81:0e:
cb:8c:bb:c3:22:3c:fb:f1:4b:54:6e:57:48:0c:46:2b:85:1a:
8e:0f:72:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:00 2025 by rpki-client