Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5h-hJKYY4lZnzDHM_EkWzgdv2lc.cer
File: 5h-hJKYY4lZnzDHM_EkWzgdv2lc.cer (raw, json)
Hash identifier: km34muoB6AtKBA79z9BIYr2r2XSlUA/cNsGDkUaWeus=
Subject key identifier: E6:1F:A1:24:A6:18:E2:56:67:CC:31:CC:FC:49:16:CE:07:6F:DA:57
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0215A3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F35BB/07637D0227FB11EC8880D170C4F9AE02/5h-hJKYY4lZnzDHM_EkWzgdv2lc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F35BB/07637D0227FB11EC8880D170C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 24 Oct 2024 01:46:02 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 23770
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136611 (0x215a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 24 01:46:02 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91F35BB/serialNumber=E61FA124A618E25667CC31CCFC4916CE076FDA57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c7:4a:d1:09:e7:e0:8d:ff:88:81:e1:c5:8f:
42:cf:3f:be:e2:5f:dc:ce:2f:69:3d:66:13:38:20:
83:10:88:cc:50:23:a5:0c:d4:04:49:6b:e7:5b:59:
f4:7b:eb:4b:87:7a:7f:95:88:4d:3c:c9:5f:b6:eb:
8e:49:e8:86:71:d5:52:c9:7b:ac:5d:c6:17:7b:5f:
fd:a4:bb:29:62:07:5c:18:31:9e:27:54:ee:2f:33:
3a:9a:09:2b:33:d2:70:63:e2:90:5c:5c:36:f1:c0:
77:da:aa:a3:d2:a5:4d:81:87:23:5e:79:e8:55:47:
1c:40:4e:97:70:f6:a3:3b:68:9c:0b:17:0f:15:67:
e5:df:00:ce:a1:72:a4:01:ae:1a:32:ff:c1:86:ba:
3a:fc:fb:64:40:de:f2:3a:be:78:b3:77:8d:ed:6d:
42:c1:4a:ed:9c:22:b2:b2:ad:60:43:3c:cf:7b:59:
b0:da:04:0c:45:f6:d8:e1:96:5c:4d:af:2d:10:dd:
36:23:7b:fe:14:4e:61:a6:ba:00:69:04:5e:89:f9:
47:2f:ed:2d:41:ee:50:ee:a2:48:8b:7e:60:08:39:
b8:02:32:b4:89:33:01:12:36:75:f1:38:b8:6a:ec:
03:f5:d2:eb:53:bc:34:dd:84:d2:99:56:50:98:cd:
06:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1F:A1:24:A6:18:E2:56:67:CC:31:CC:FC:49:16:CE:07:6F:DA:57
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F35BB/07637D0227FB11EC8880D170C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F35BB/07637D0227FB11EC8880D170C4F9AE02/5h-hJKYY4lZnzDHM_EkWzgdv2lc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23770
Signature Algorithm: sha256WithRSAEncryption
4f:68:25:fb:ab:30:28:9b:b1:35:46:0b:e7:03:f1:2b:d2:7d:
12:ae:dd:0e:c9:e6:69:b0:d6:ed:f5:bb:d5:98:e6:74:3c:bb:
a4:c9:86:57:23:bf:03:a0:f7:25:22:5b:ab:98:3d:ef:31:d9:
8b:6d:f7:d8:15:65:fd:29:c4:eb:ac:2d:fc:7f:ea:e0:23:5f:
11:44:db:10:6d:94:3e:df:29:48:d8:ea:66:c3:61:ee:a8:bf:
3b:fe:fa:f7:62:e0:3f:a7:44:e6:32:9a:e8:8a:c5:48:e0:7c:
f7:42:e9:26:a4:9b:bc:36:bb:11:e9:e0:86:30:16:ff:b1:5e:
42:83:1d:ee:91:e9:59:19:a0:46:e1:49:1c:92:ad:5f:a0:1d:
6b:f2:d7:58:f8:5d:f4:74:5b:07:87:00:62:3c:9c:aa:e8:d5:
2f:e8:7a:a5:d7:e9:82:bf:3e:61:98:c1:ac:e4:9e:4c:dd:93:
cb:cd:71:00:ec:7d:df:37:76:99:59:2d:71:c1:2c:ab:e7:79:
ed:d5:05:12:8e:b8:66:5b:d9:f1:09:0e:a5:eb:fa:85:21:76:
22:89:10:03:1a:a5:d5:29:78:2f:dd:fc:e1:ea:92:8e:cd:27:
26:2a:19:8b:e9:99:62:2a:c3:8b:15:37:58:5a:fb:b4:95:7d:
64:d0:ae:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:07:26 2024 by rpki-client on console-ams.rpki-client.org