Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer
File: 4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer (raw, json)
Hash identifier: b9F/fvwW+ajubCBk8sX5bCoH5/pX3okyldSS5DDcXk4=
Subject key identifier: E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020946
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Aug 2024 14:32:19 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 132561
IP: 103.58.180.0/23
IP: 2400:9a60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133446 (0x20946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Aug 27 14:32:19 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A914E1C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bf:35:ae:90:5e:53:d4:50:aa:2f:ea:79:f1:
ee:c9:2d:8f:af:4a:9c:15:d0:c9:21:95:05:c3:80:
0a:f6:a2:94:a1:fc:5c:bc:5d:8a:1c:4e:e2:cb:76:
b6:18:ce:fb:c1:7c:19:4e:6d:d2:4b:64:93:34:f7:
51:41:1f:4a:08:4d:40:94:83:78:c3:b2:34:e7:c6:
e6:45:35:83:04:8e:bb:9d:c1:19:aa:55:e4:4e:d3:
bc:c5:86:4f:74:35:a0:35:99:1e:87:0d:ca:c9:77:
f1:3e:67:e4:a5:e1:ef:fa:93:48:0b:10:f3:83:7b:
ce:b2:cb:2b:40:1f:65:9f:a1:a1:e7:e4:6e:10:dc:
c9:dd:fb:33:2a:ff:22:8f:00:7b:e9:4c:da:ed:30:
a8:35:bf:ad:31:f7:3e:da:46:72:02:7a:67:09:b1:
6f:53:66:d5:ab:53:dc:2f:5d:f4:c2:0b:36:42:5d:
d8:92:4f:47:8b:66:ec:61:d7:81:65:78:b6:25:28:
23:62:b5:08:61:dd:08:cf:2e:47:f2:af:65:7b:5d:
bd:37:96:e6:cd:5a:3c:b9:b9:33:52:b5:8a:1d:cc:
04:5d:57:14:58:a0:19:e5:f4:09:6f:bc:57:15:84:
dd:60:c1:6d:9c:8f:36:88:d9:37:f8:b3:5a:4d:44:
8d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132561
sbgp-ipAddrBlock: critical
IPv4:
103.58.180.0/23
IPv6:
2400:9a60::/32
Signature Algorithm: sha256WithRSAEncryption
86:00:ac:bc:26:c5:d8:52:f6:05:e4:6e:2d:55:22:07:fc:62:
51:fa:69:a7:8e:3a:6f:f4:cb:ca:d8:30:9d:a2:d5:b9:ea:1a:
e0:b6:5d:9f:c4:a5:bb:ab:2d:bd:31:9f:f4:dc:a8:2d:a5:e6:
a3:5b:4e:f8:86:9a:bd:4a:ec:1c:19:f3:94:7f:db:39:40:30:
31:88:46:65:fe:50:3f:53:0e:03:ec:ef:00:21:1d:79:e2:3b:
27:9f:99:97:57:17:ac:f8:19:b6:a9:c7:2d:31:64:fe:94:14:
4b:aa:5e:9c:90:47:bc:72:1a:3e:51:50:51:12:19:a5:2e:53:
3a:c7:47:f8:a5:46:a1:a3:d9:65:ef:ba:50:49:33:67:93:19:
9f:8e:67:94:5b:c4:df:da:2f:76:75:05:75:d4:d2:9b:43:50:
94:f2:d9:df:f3:13:16:df:2a:92:ce:be:99:ce:38:f9:12:4c:
e9:fa:98:8f:d8:91:ea:90:7b:aa:2d:60:de:8d:7e:69:37:1d:
d1:7d:5a:68:ee:3a:20:38:0c:9c:59:af:c2:57:5f:0d:0b:a8:
d1:76:0e:75:d0:e7:69:94:ab:57:33:74:d7:bc:be:64:ea:e9:
8f:7f:a1:af:b0:78:44:bf:9d:a3:a1:69:4f:70:ea:48:38:54:
8b:f3:98:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:26 2025 by rpki-client