Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7v_N3U7qvWZtJL3wLGR32Fqd29g.cer
File: 7v_N3U7qvWZtJL3wLGR32Fqd29g.cer (raw, json)
Hash identifier: aH2mwx3joehsbM1rSGeWT+C7i4TIkt5leYWvZkKpZKg=
Subject key identifier: EE:FF:CD:DD:4E:EA:BD:66:6D:24:BD:F0:2C:64:77:D8:5A:9D:DB:D8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022F58
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9167307/DBBC8B6433BC11EAB51FA00CC4F9AE02/7v_N3U7qvWZtJL3wLGR32Fqd29g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9167307/DBBC8B6433BC11EAB51FA00CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Feb 2025 14:51:39 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 2400:eac0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143192 (0x22f58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 5 14:51:39 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A9167307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:4c:bd:46:37:0b:5c:d1:6c:25:ec:92:23:76:
bf:96:c9:07:a2:b6:13:e1:28:09:0f:40:83:3d:b3:
a1:53:29:0c:9d:aa:93:47:a6:f1:88:b6:0f:37:67:
e5:99:4d:c8:1e:d1:45:c9:3a:18:5b:46:0e:ac:3e:
50:49:86:d5:09:8f:bf:bc:6d:0f:3f:5d:7b:a9:aa:
ac:07:e3:d5:89:bd:a8:5b:1e:39:7b:e7:a5:9b:7c:
39:d5:fc:3a:42:44:2a:e3:f7:2a:f7:a4:d5:6c:70:
4b:7c:e9:f6:3f:ff:30:9a:44:d9:a3:75:48:ae:6c:
57:19:90:8c:77:ef:89:01:d2:0b:7f:4d:4a:80:52:
10:91:ed:3c:7d:13:9d:fe:56:96:e5:20:dc:26:33:
9d:52:8f:81:b4:8b:5d:23:c5:7b:b8:46:f8:57:b4:
6f:a3:2f:10:41:df:45:5d:df:81:34:8e:54:47:fc:
14:42:d3:6e:9a:d5:67:b9:77:cb:a3:4d:e7:76:c9:
96:35:7d:f3:0e:2c:64:e2:2d:8d:5e:2c:04:e4:bf:
2c:ab:27:20:68:3a:f4:b9:ec:5d:df:6f:9c:45:6b:
94:6b:db:8d:21:4c:3d:01:48:d8:c9:bf:27:21:21:
a1:50:40:c7:c2:52:90:e9:3d:8b:4f:07:be:40:28:
88:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:FF:CD:DD:4E:EA:BD:66:6D:24:BD:F0:2C:64:77:D8:5A:9D:DB:D8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9167307/DBBC8B6433BC11EAB51FA00CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9167307/DBBC8B6433BC11EAB51FA00CC4F9AE02/7v_N3U7qvWZtJL3wLGR32Fqd29g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:eac0::/32
Signature Algorithm: sha256WithRSAEncryption
83:66:fc:b0:e0:7d:a7:3c:f2:ba:90:79:ff:04:4b:83:23:01:
f6:51:8b:b3:7f:48:81:5e:7b:ee:5d:3d:73:de:3e:ea:f4:fa:
4e:c5:4e:ec:a0:ef:d8:2e:5a:f9:73:3f:a9:b7:ae:56:21:29:
84:1e:a4:db:81:b5:24:85:98:27:7f:45:1a:54:f9:e5:40:06:
be:28:6d:36:e0:66:31:21:6e:d9:9c:e7:2b:9f:b6:29:cb:e9:
03:13:b4:90:3e:e3:a2:86:e3:65:f5:81:54:4b:2b:36:1b:86:
66:49:16:c8:c3:ba:d1:2d:e8:24:6a:01:78:c7:9b:60:1a:c2:
10:6b:c3:83:d9:19:9b:ec:15:72:d2:3a:1e:63:0e:6e:58:d3:
e5:36:42:6f:5a:8f:9d:d9:8a:a1:13:15:69:77:a4:3a:dc:fd:
f8:f5:ee:a0:de:f5:75:66:b2:a3:c7:db:8d:52:d9:94:1c:71:
d9:eb:58:b5:0a:4f:0f:cd:e9:2d:41:f0:d1:8a:6f:4e:3c:6e:
3b:55:92:82:09:37:82:36:74:d2:4d:3a:27:86:d0:5e:b1:fa:
56:e5:3b:4a:9e:40:dc:db:27:88:d6:64:f4:1b:74:27:36:c4:
de:02:87:0d:09:8b:94:ea:17:9a:96:97:1b:3c:42:33:92:a3:
2e:64:02:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:05 2025 by rpki-client