Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5h-hJKYY4lZnzDHM_EkWzgdv2lc.cer
File: 5h-hJKYY4lZnzDHM_EkWzgdv2lc.cer (raw, json)
Hash identifier: x5ovUnIRHy+feBBzPFNFo8Vc2Mq9qCQGJD48fNyNxEU=
Subject key identifier: E6:1F:A1:24:A6:18:E2:56:67:CC:31:CC:FC:49:16:CE:07:6F:DA:57
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C3DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F35BB/07637D0227FB11EC8880D170C4F9AE02/5h-hJKYY4lZnzDHM_EkWzgdv2lc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F35BB/07637D0227FB11EC8880D170C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 12 Oct 2023 22:06:58 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 23770
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115678 (0x1c3de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 12 22:06:58 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91F35BB/serialNumber=E61FA124A618E25667CC31CCFC4916CE076FDA57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c7:4a:d1:09:e7:e0:8d:ff:88:81:e1:c5:8f:
42:cf:3f:be:e2:5f:dc:ce:2f:69:3d:66:13:38:20:
83:10:88:cc:50:23:a5:0c:d4:04:49:6b:e7:5b:59:
f4:7b:eb:4b:87:7a:7f:95:88:4d:3c:c9:5f:b6:eb:
8e:49:e8:86:71:d5:52:c9:7b:ac:5d:c6:17:7b:5f:
fd:a4:bb:29:62:07:5c:18:31:9e:27:54:ee:2f:33:
3a:9a:09:2b:33:d2:70:63:e2:90:5c:5c:36:f1:c0:
77:da:aa:a3:d2:a5:4d:81:87:23:5e:79:e8:55:47:
1c:40:4e:97:70:f6:a3:3b:68:9c:0b:17:0f:15:67:
e5:df:00:ce:a1:72:a4:01:ae:1a:32:ff:c1:86:ba:
3a:fc:fb:64:40:de:f2:3a:be:78:b3:77:8d:ed:6d:
42:c1:4a:ed:9c:22:b2:b2:ad:60:43:3c:cf:7b:59:
b0:da:04:0c:45:f6:d8:e1:96:5c:4d:af:2d:10:dd:
36:23:7b:fe:14:4e:61:a6:ba:00:69:04:5e:89:f9:
47:2f:ed:2d:41:ee:50:ee:a2:48:8b:7e:60:08:39:
b8:02:32:b4:89:33:01:12:36:75:f1:38:b8:6a:ec:
03:f5:d2:eb:53:bc:34:dd:84:d2:99:56:50:98:cd:
06:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1F:A1:24:A6:18:E2:56:67:CC:31:CC:FC:49:16:CE:07:6F:DA:57
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F35BB/07637D0227FB11EC8880D170C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F35BB/07637D0227FB11EC8880D170C4F9AE02/5h-hJKYY4lZnzDHM_EkWzgdv2lc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23770
Signature Algorithm: sha256WithRSAEncryption
d1:68:51:70:df:68:9a:7b:ff:00:b5:9c:33:20:78:09:73:92:
00:b6:84:47:45:42:e9:45:75:a2:cb:f6:8e:0f:b6:91:6d:72:
0c:6b:45:65:59:16:3e:11:de:07:33:ec:a4:c6:7c:22:75:b9:
91:30:8e:91:4a:5a:13:5d:01:41:62:b1:63:98:28:48:d8:fa:
52:d6:55:b4:cf:23:42:6a:8b:99:65:d1:2f:0d:63:03:8f:cd:
98:21:73:58:0d:e5:45:19:c3:75:70:08:e7:cb:e8:44:12:1e:
fb:3f:0a:6d:11:d2:0f:39:be:37:59:47:ac:db:04:c7:01:c6:
8e:8c:c8:56:fb:9a:a8:7f:ba:ab:e0:ad:46:c4:75:09:eb:2e:
3b:eb:ed:10:fa:3a:e3:1b:f4:53:e4:74:63:9d:d6:42:b5:91:
e7:92:97:50:f6:b3:c6:67:79:b2:91:5a:9c:1e:f9:4b:95:68:
ca:2f:62:86:ea:1e:25:82:54:95:4b:45:03:b7:89:a1:b4:f2:
e9:15:65:d4:54:cc:98:8b:73:a4:a0:fa:26:25:1c:82:a2:31:
70:2a:97:b6:18:ed:2c:33:fe:f1:78:5d:46:cf:3f:97:ee:7a:
be:78:43:06:11:58:68:29:e3:1a:b3:11:37:82:3e:56:9a:09:
8a:0c:d1:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:11 2024 by rpki-client on console-fra.rpki-client.org