Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer
File: A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer (raw, json)
Hash identifier: 3srMF/UXl4Awf+n9yxVqAZme9AmlML3CKdv+lb64nkg=
Subject key identifier: 03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021CBB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 21 Nov 2024 11:06:33 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139469
IP: 2001:df4:a6c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138427 (0x21cbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 21 11:06:33 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91380F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:52:94:1c:2f:53:a8:50:9c:09:50:87:a6:f9:
59:d4:55:92:8b:59:5f:ac:d5:8c:50:06:6f:17:dc:
cb:24:09:e9:c2:bf:b1:8c:b3:d5:55:ca:e5:19:b9:
9e:92:49:6b:1a:43:1e:b3:ce:e4:0b:14:43:86:83:
60:75:21:70:fa:85:7e:9b:6b:b3:6f:a9:cd:9b:c5:
bd:8f:47:cf:c9:ba:cd:50:52:b5:73:77:54:73:a9:
4f:10:32:c8:0a:ea:20:bf:33:0c:72:04:6e:3d:e2:
a8:4c:a3:73:f7:a6:80:49:49:dd:8d:63:f9:b8:78:
73:66:b3:d5:8b:e7:7a:f2:7a:c4:d9:3b:c2:c2:ad:
b3:80:00:bc:2a:31:fb:06:01:14:5f:3a:2e:64:b4:
53:c8:54:31:2e:a0:f1:88:26:9b:59:af:86:38:cf:
6d:39:29:20:e9:2c:9a:5d:4c:0b:5d:72:45:62:b4:
95:a8:90:9e:f2:47:17:92:0e:9e:2c:29:7a:6a:a9:
03:3f:79:4e:1b:06:9b:10:81:5e:65:84:2e:47:f4:
15:01:b7:34:57:97:ee:4e:f5:4c:ea:69:2b:6a:91:
7a:f4:fb:bd:db:6c:85:d1:6d:a6:6b:13:fb:1b:8f:
4d:f5:0b:73:00:ea:b5:e5:cc:23:36:82:3d:cf:fa:
25:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139469
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:a6c0::/48
Signature Algorithm: sha256WithRSAEncryption
28:27:c8:67:15:cd:74:83:db:df:5d:1d:cd:5f:e4:b0:e4:c2:
d2:b3:77:c3:f0:ff:73:29:da:2f:1c:f0:21:87:a1:4b:65:d9:
c0:70:7d:d0:1c:9b:dd:dc:6d:be:5f:fa:e7:a0:70:9d:5d:7c:
0d:8d:c7:9c:63:ce:25:da:a3:9d:72:c2:6d:66:db:32:d2:40:
ca:11:8c:a9:e6:ad:27:8e:22:fb:08:69:ef:1d:02:11:04:02:
9f:13:96:17:b6:72:a9:15:7b:45:37:57:1a:26:72:f7:d7:fd:
75:e9:e0:1b:e6:3e:72:39:54:57:ca:36:11:04:79:e9:3c:cf:
b1:a3:ff:95:3c:16:1c:4f:37:2e:6c:bd:05:00:ef:ff:ac:79:
be:04:5f:fc:1f:9c:6b:ae:be:2d:23:c4:ce:41:02:bc:d2:4e:
77:bd:31:f2:52:44:fb:65:0d:1d:86:bb:6e:b2:21:c8:ea:e5:
01:6a:fc:5c:cd:8b:48:cb:25:91:c4:81:39:6f:12:c4:12:0c:
bc:4a:69:df:d6:27:8b:ed:f5:0b:65:ab:78:29:fd:0f:59:8b:
c6:ea:0e:b0:22:b0:e3:2a:e5:23:c8:dd:d4:bf:7a:87:77:f3:
fe:a2:fe:dc:dc:62:f5:68:e5:02:5d:cc:28:d0:05:58:58:d7:
49:c7:0e:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:23 2025 by rpki-client